www.oberoihotels.co/
81.171.22.7200 OK 480 B IP 81.171.22.7:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (480), with no line terminators
Hash a51bf12237bb36a405a5acc98f0d09b3
ca790f173ebdf47b890698ba2949fbcd663f387d
11bbca003de9fcaf613e600e1f3eae0416aab16e227b6794d27e93bc4ad51f7d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.oberoihotels.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 480
content-type: text/html; charset=utf-8
date: Sun, 05 Feb 2023 22:36:16 GMT
server: nginx
set-cookie: sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad; path=/; domain=.oberoihotels.co; expires=Sat, 24 Feb 2091 01:50:23 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11460
Expires: Mon, 06 Feb 2023 01:47:17 GMT
Date: Sun, 05 Feb 2023 22:36:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2868
Expires: Sun, 05 Feb 2023 23:24:05 GMT
Date: Sun, 05 Feb 2023 22:36:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 21:36:23 GMT
content-type: application/json
age: 3594
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19141
Expires: Mon, 06 Feb 2023 03:55:18 GMT
Date: Sun, 05 Feb 2023 22:36:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +0YjBXUzb3zXAFfiPRT58RSmrXpAr2bpDRjynGOb0gdkWmueUlCz5WORY6HWiEejlRN6LHmNUXk=
x-amz-request-id: GCSE0X9CFX2BR2MP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 21:53:27 GMT
age: 2570
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 22:36:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.oberoihotels.co/favicon.ico
81.171.22.7404 Not Found 9 B URL HTTP/1.1 www.oberoihotels.co/favicon.ico
IP 81.171.22.7:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: www.oberoihotels.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oberoihotels.co/
Cookie: sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sun, 05 Feb 2023 22:36:17 GMT
server: nginx
www.oberoihotels.co/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTY0Mzc3NiwiaWF0IjoxNjc1NjM2NTc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBndDVsdm50Y2xzMGFkMDAwZHBscW4iLCJuYmYiOjE2NzU2MzY1NzYsInRzIjoxNjc1NjM2NTc2OTgzMjc0fQ.FBZSpT4e8ywZxanKIhWNgzmwyDv2ZmAJEqzAleVKCAc&sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad
81.171.22.7302 Found 11 B URL HTTP/1.1 www.oberoihotels.co/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTY0Mzc3NiwiaWF0IjoxNjc1NjM2NTc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBndDVsdm50Y2xzMGFkMDAwZHBscW4iLCJuYmYiOjE2NzU2MzY1NzYsInRzIjoxNjc1NjM2NTc2OTgzMjc0fQ.FBZSpT4e8ywZxanKIhWNgzmwyDv2ZmAJEqzAleVKCAc&sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad
IP 81.171.22.7:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NTY0Mzc3NiwiaWF0IjoxNjc1NjM2NTc2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDBndDVsdm50Y2xzMGFkMDAwZHBscW4iLCJuYmYiOjE2NzU2MzY1NzYsInRzIjoxNjc1NjM2NTc2OTgzMjc0fQ.FBZSpT4e8ywZxanKIhWNgzmwyDv2ZmAJEqzAleVKCAc&sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad HTTP/1.1
Host: www.oberoihotels.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oberoihotels.co/
Cookie: sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sun, 05 Feb 2023 22:36:17 GMT
location: http://click-v4.celxkpdir.com/click?i=YN5J-gOcGng_0
server: nginx
set-cookie: sid=80ef96fa-a5a5-11ed-828f-dc66d0c235ad; path=/; domain=.oberoihotels.co; expires=Sat, 24 Feb 2091 01:50:24 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 21:51:16 GMT
age: 2701
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2205
Expires: Sun, 05 Feb 2023 23:13:02 GMT
Date: Sun, 05 Feb 2023 22:36:17 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.84.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.84.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SvYZ7hI9iUaCFWMCYZ/d+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DOBuGPtNyxZaf1niUte9hMeu72c=
click-v4.celxkpdir.com/click?i=YN5J-gOcGng_0
198.134.116.17302 Found 0 B URL HTTP/1.1 click-v4.celxkpdir.com/click?i=YN5J-gOcGng_0
IP 198.134.116.17:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=YN5J-gOcGng_0 HTTP/1.1
Host: click-v4.celxkpdir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.oberoihotels.co/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
Pragma: no-cache
uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
23.36.76.130302 Moved Temporarily 154 B URL HTTP/1.1 uuid-a.akamaihd.net/sb/?r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /sb/?r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D HTTP/1.1
Host: uuid-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.oberoihotels.co/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiNetStorage
Content-Length: 154
Content-Type: text/html
Location: /sb/?cc=1&r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
Set-Cookie: b53eedc13__=477d3e02a535a7870ab26e2da5f23a5892857348d.1675636578; expires=Mon, 05 Feb 2024 22:36:18 GMT; domain=.akamaihd.net; path=/; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
P3P: CP="We do not have a P3P policy."
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ETag: "6558d9a5dda24e8cad3ddca92e03b4c6:1666638465.144293"
Expires: Sun, 05 Feb 2023 22:36:18 GMT
Cache-Control: max-age=0, no-cache, no-store, private
Pragma: no-cache
Date: Sun, 05 Feb 2023 22:36:18 GMT
Connection: keep-alive
uuid-a.akamaihd.net/sb/?cc=1&r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
23.36.76.130302 Moved Temporarily 154 B URL HTTP/1.1 uuid-a.akamaihd.net/sb/?cc=1&r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D
IP 23.36.76.130:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /sb/?cc=1&r=https%3A%2F%2Fbetterbatchbrands.com%2Fclick%3Fc%3D813674fea5a511ed9b5a0242ac110003%26i%3D786%26n%3D3%26subid%3D424864_oberoihotels.co%26sid%3D HTTP/1.1
Host: uuid-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.oberoihotels.co/
Connection: keep-alive
Cookie: b53eedc13__=477d3e02a535a7870ab26e2da5f23a5892857348d.1675636578
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiNetStorage
Content-Length: 154
Content-Type: text/html
Location: https://betterbatchbrands.com/click?c=813674fea5a511ed9b5a0242ac110003&i=786&n=3&subid=424864_oberoihotels.co&sid=477d3e02a535a7870ab26e2da5f23a5892857348d
Set-Cookie: b53eedc13__=477d3e02a535a7870ab26e2da5f23a5892857348d.1675636578; expires=Mon, 05 Feb 2024 22:36:18 GMT; domain=.akamaihd.net; path=/; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
P3P: CP="We do not have a P3P policy."
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ETag: "6558d9a5dda24e8cad3ddca92e03b4c6:1666638465.144293"
Expires: Sun, 05 Feb 2023 22:36:18 GMT
Cache-Control: max-age=0, no-cache, no-store, private
Pragma: no-cache
Date: Sun, 05 Feb 2023 22:36:18 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 3f7fc27a8f67aedf19ab88631ef66aa9
672b8b63d9ed9184c69fedd851d9e1360732324a
d75d82cd98ae77c563c9f293afbcaf8cb6333ae8db5db2d46eb952c5be50be9b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116427
Date: Sun, 05 Feb 2023 22:36:19 GMT
Etag: "63df48db-1d7"
Expires: Tue, 07 Feb 2023 06:56:46 GMT
Last-Modified: Sun, 05 Feb 2023 06:12:43 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aU3KkHDvx-jlTVoDNRiQqjYweQVLJA2glv-j59tJKA61-kCy8iq33g==
Age: 2644
betterbatchbrands.com/click?c=813674fea5a511ed9b5a0242ac110003&i=786&n=3&subid=424864_oberoihotels.co&sid=477d3e02a535a7870ab26e2da5f23a5892857348d
52.200.237.189200 OK 513 B URL HTTP/2 betterbatchbrands.com/click?c=813674fea5a511ed9b5a0242ac110003&i=786&n=3&subid=424864_oberoihotels.co&sid=477d3e02a535a7870ab26e2da5f23a5892857348d
IP 52.200.237.189:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (529)
Hash 0293e9d5686672f513633ced74643454
0ae0502c658b0ae415eb560456d721af84957244
eae3d8bacebe4474ea7871b3dfacf0e3a4df3db06ea3c3b178b0bcaac928046d
GET /click?c=813674fea5a511ed9b5a0242ac110003&i=786&n=3&subid=424864_oberoihotels.co&sid=477d3e02a535a7870ab26e2da5f23a5892857348d HTTP/1.1
Host: betterbatchbrands.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.oberoihotels.co/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:36:19 GMT
content-type: text/html;charset=utf-8
content-length: 513
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
link: <https://v.verytraveling.com>; rel=dns-prefetch,<http://betterbatchbrands.com>; rel=preconnect,<http://betterbatchbrands.com>; rel=preconnect
content-security-policy: default-src betterbatchbrands.com 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src betterbatchbrands.com 'self'
x-content-security-policy: default-src betterbatchbrands.com 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src betterbatchbrands.com 'self'
x-webkit-csp: default-src betterbatchbrands.com 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src betterbatchbrands.com 'self'
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, sec-ch-ua, sec-ch-ua-mobile, sec-ch-ua-full-version, sec-ch-ua-platform, sec-ch-ua-platform-version, sec-ch-ua-arch, sec-ch-ua-model
set-cookie: tp_usr=254af5b78be311ed938d0242ac110003; Path=/; Domain=.betterbatchbrands.com; Expires=Tue, 07-Mar-2023 22:36:19 GMT; Max-Age=2592000; Secure; SameSite=None
cdt=1675636579326
vary: Accept-Encoding, User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2939
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 22:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2939
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 22:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2939
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 22:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2939
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 22:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2939
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 22:36:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 2776
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f54c8725e5dab88b12d42876fa61b12
89c734d690981e30f9d566a7763a1870724d65aa
b8cc5148ae01e1a1fe32f56bdce71de086da320cdd8a55a746609c9773fdaf77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9809
x-amzn-requestid: 60ff8265-45f4-445b-bf49-e0f1ba4cc3da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzRVKFf7IAMF9hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfc20-3390f67342da01416e720af6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:33:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3ven3rHNpHQ94K0pntkthMllzUZIpGAGGNe_-zGTmYTtIhuQ3tZ7rQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 17:57:59 GMT
age: 16700
etag: "89c734d690981e30f9d566a7763a1870724d65aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:05 GMT
age: 1514
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c145b7d4f95cca98f9b942a291c9d60
967e1da2df2ce864b1c67e28099c8b161810e240
01f3a9d99b735eb512dd8a251b926eccb05a960e03056fe0a50d4bad7fc4b5b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e717762-1012-4c44-9171-7c40ae8127ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6116
x-amzn-requestid: d6d032ad-c788-4b63-aab5-fdb9f110f86a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okcGmOoAMFp-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214f-172d50bc478a1fac5d4442cd;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2Hl7AlAxp405wt3wk8fRiEr3xMyslJjpKXgSlyU8Hvv23HogWQFvUg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:45 GMT
age: 1534
etag: "967e1da2df2ce864b1c67e28099c8b161810e240"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 2770
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:54 GMT
age: 1525
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 99b975612b21b0e1aadbac6fdd5f67c9
5e47a32b3a483b5a8eccb20b356b5adde0232b50
08d78509fe8bd460c30d6dfd8e4d40b469d9bc66ef471e4bfe22d75caf3bd6be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08D78509FE8BD460C30D6DFD8E4D40B469D9BC66EF471E4BFE22D75CAF3BD6BE"
Last-Modified: Sun, 05 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Mon, 06 Feb 2023 04:35:32 GMT
Date: Sun, 05 Feb 2023 22:36:20 GMT
Connection: keep-alive
v.verytraveling.com/tracking202/redirect/dl.php?t202id=81697&t202re={referrer}&C1=www.hotels.com&C2=http%3A%2F%2Fwww.hotels.com&C3=1079&C4=1079-bv8a3v&utm_source=813674fea5a511ed9b5a0242ac110003&utm_medium=utm_medium&utm_campaign={campain_id}&utm_term=1382&utm_content=3377004&t202ref=verytraveling.com&t202b=0.0402&t202kw=hotels.com_DOMAIN
144.126.138.3302 Found 0 B URL HTTP/2 v.verytraveling.com/tracking202/redirect/dl.php?t202id=81697&t202re={referrer}&C1=www.hotels.com&C2=http%3A%2F%2Fwww.hotels.com&C3=1079&C4=1079-bv8a3v&utm_source=813674fea5a511ed9b5a0242ac110003&utm_medium=utm_medium&utm_campaign={campain_id}&utm_term=1382&utm_content=3377004&t202ref=verytraveling.com&t202b=0.0402&t202kw=hotels.com_DOMAIN
IP 144.126.138.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking202/redirect/dl.php?t202id=81697&t202re={referrer}&C1=www.hotels.com&C2=http%3A%2F%2Fwww.hotels.com&C3=1079&C4=1079-bv8a3v&utm_source=813674fea5a511ed9b5a0242ac110003&utm_medium=utm_medium&utm_campaign={campain_id}&utm_term=1382&utm_content=3377004&t202ref=verytraveling.com&t202b=0.0402&t202kw=hotels.com_DOMAIN HTTP/1.1
Host: v.verytraveling.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: tracking202subid-legacy=71565; expires=Tue, 07-Mar-2023 22:36:20 GMT; Max-Age=2592000; path=/; domain=v.verytraveling.com
tracking202subid_a_142-legacy=71565; expires=Tue, 07-Mar-2023 22:36:20 GMT; Max-Age=2592000; path=/; domain=v.verytraveling.com
tracking202subid=71565; expires=Tue, 07-Mar-2023 22:36:20 GMT; Max-Age=2592000; path=/; domain=v.verytraveling.com; secure; SameSite=None
tracking202subid_a_142=71565; expires=Tue, 07-Mar-2023 22:36:20 GMT; Max-Age=2592000; path=/; domain=v.verytraveling.com; secure; SameSite=None
location: https://v.verytraveling.com/tracking202/redirect/cl.php?pci=2715658&202vars=dDIwMnJlPXtyZWZlcnJlcn0=
content-length: 0
content-type: text/html; charset=UTF-8
date: Sun, 05 Feb 2023 22:36:20 GMT
server: Apache
X-Firefox-Spdy: h2
v.verytraveling.com/tracking202/redirect/cl.php?pci=2715658&202vars=dDIwMnJlPXtyZWZlcnJlcn0=
144.126.138.3200 OK 487 B URL HTTP/2 v.verytraveling.com/tracking202/redirect/cl.php?pci=2715658&202vars=dDIwMnJlPXtyZWZlcnJlcn0=
IP 144.126.138.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash f004fd4615f6eb36669e61fe80888f70
a5445d70fecb47031c21e599c1c6d89f085f2c40
e68b5335283b7c321fa67b0a1a385f0f40668216c175a2baf06bfacf07427119
GET /tracking202/redirect/cl.php?pci=2715658&202vars=dDIwMnJlPXtyZWZlcnJlcn0= HTTP/1.1
Host: v.verytraveling.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: tracking202subid-legacy=71565; tracking202subid_a_142-legacy=71565; tracking202subid=71565; tracking202subid_a_142=71565
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 487
content-type: text/html; charset=UTF-8
date: Sun, 05 Feb 2023 22:36:20 GMT
server: Apache
X-Firefox-Spdy: h2
v.verytraveling.com/tracking202/redirect/cl2.php?q=https%3A%2F%2Fwww.stay22.com%2Fallez%2Fhotelscom%3Faid%3Dgladis2%26campaign%3D71565%26t202re%3D%7Breferrer%7D&r=never
144.126.138.3200 OK 305 B URL HTTP/2 v.verytraveling.com/tracking202/redirect/cl2.php?q=https%3A%2F%2Fwww.stay22.com%2Fallez%2Fhotelscom%3Faid%3Dgladis2%26campaign%3D71565%26t202re%3D%7Breferrer%7D&r=never
IP 144.126.138.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 46b8f0c6eaa8a0c70680a6a396458118
945904ee1cb4eebf473d7bc34c1538e2c1323200
6870f9fac903c5e8a299e947d4ce8e2ca9eae486e0158f3635e323925136afab
GET /tracking202/redirect/cl2.php?q=https%3A%2F%2Fwww.stay22.com%2Fallez%2Fhotelscom%3Faid%3Dgladis2%26campaign%3D71565%26t202re%3D%7Breferrer%7D&r=never HTTP/1.1
Host: v.verytraveling.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: tracking202subid-legacy=71565; tracking202subid_a_142-legacy=71565; tracking202subid=71565; tracking202subid_a_142=71565
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 305
content-type: text/html; charset=UTF-8
date: Sun, 05 Feb 2023 22:36:20 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6c54d930a5134442433e9c6d01aa6684
ce943a43dc3855daef048c67372673746f7a696f
0571d9262a9f3f143f566420b025302fb19937f20df4d36fdce1dc7e0cb5c130
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=105146
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:36:20 GMT
Etag: "63df271e-118"
Expires: Tue, 07 Feb 2023 03:48:46 GMT
Last-Modified: Sun, 05 Feb 2023 03:48:46 GMT
Server: nginx
Content-Length: 280
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 591ad4022b63985d1e6b88c94f9867ad
c4feca61c61ddbbee246902af471d6cb7441a559
90153609cede4f51eb7662fed8a3f98572f27a50466c7b6f592f22092099ea35
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 22:36:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 16:02:05 GMT
Expires: Sun, 12 Feb 2023 16:02:04 GMT
Etag: "c4feca61c61ddbbee246902af471d6cb7441a559"
Cache-Control: max-age=580542,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794f1fdadc8cb505-OSL
prf.hn/click/camref:1100loZ2o/pubref:v3.cldryr8yl4d380854ljn2v6nc/destination:https://no.hotels.com
5.150.170.4302 Moved Temporarily 0 B URL HTTP/1.1 prf.hn/click/camref:1100loZ2o/pubref:v3.cldryr8yl4d380854ljn2v6nc/destination:https://no.hotels.com
IP 5.150.170.4:0
ASN #31151 Performance Horizon Group Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/camref:1100loZ2o/pubref:v3.cldryr8yl4d380854ljn2v6nc/destination:https://no.hotels.com HTTP/1.1
Host: prf.hn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sun, 05 Feb 2023 22:36:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
P3P: CP="NOI DSP COR PSAa PSDa OUR IND UNI"
Set-Cookie: tPHG-PS=1011l8315301794; expires=Monday, 05-Feb-2024 22:36:21 UTC; path=/; domain=.prf.hn; SameSite=None; Secure
Location: https://r.bttn.io?btn_ref=org-4250020ab4443b4b&btn_reach_pub=1011l45458&btn_reach_pub_name=stay22&btn_mobile_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&btn_network_ref=1011lwwIfvgf&btn_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&original_destination=https://no.hotels.com?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6c54d930a5134442433e9c6d01aa6684
ce943a43dc3855daef048c67372673746f7a696f
0571d9262a9f3f143f566420b025302fb19937f20df4d36fdce1dc7e0cb5c130
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5273
Cache-Control: max-age=110418
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:36:21 GMT
Etag: "63df271e-118"
Expires: Tue, 07 Feb 2023 05:16:39 GMT
Last-Modified: Sun, 05 Feb 2023 03:48:46 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 945d236bb38270be53cac07f96d30705
1057caa5d148f739877c83855e4168c0c18a6d1e
b6c0a5f023f684809b84084eff40cec2951675f95c561174ce2a2bdd503f8f95
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 22:36:22 GMT
Last-Modified: Sun, 05 Feb 2023 21:23:55 GMT
Server: ECS (dcb/7EC9)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VaL93niw4usqd9kj3cojASHweJgS0v178Fs_KV7YQ6Q-B8zNKzThkQ==
Age: 4347
r.bttn.io/?btn_ref=org-4250020ab4443b4b&btn_reach_pub=1011l45458&btn_reach_pub_name=stay22&btn_mobile_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&btn_network_ref=1011lwwIfvgf&btn_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&original_destination=https://no.hotels.com?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
3.23.221.15302 Found 315 B URL HTTP/2 r.bttn.io/?btn_ref=org-4250020ab4443b4b&btn_reach_pub=1011l45458&btn_reach_pub_name=stay22&btn_mobile_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&btn_network_ref=1011lwwIfvgf&btn_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&original_destination=https://no.hotels.com?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
IP 3.23.221.15:0
File type HTML document, ASCII text, with very long lines (315), with no line terminators
Hash b63393b9bc6478bf3f2e8c4b9cbddfaa
628a5e5059bb1fb3b55944d263329e544c16c4a0
e5b873d616445da78d6a4165d21c74dff65fc0ae68c820f3572023b8b9829df0
GET /?btn_ref=org-4250020ab4443b4b&btn_reach_pub=1011l45458&btn_reach_pub_name=stay22&btn_mobile_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&btn_network_ref=1011lwwIfvgf&btn_url=https%3A%2F%2Fno.hotels.com%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf&original_destination=https://no.hotels.com?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf HTTP/1.1
Host: r.bttn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 22:36:22 GMT
content-type: text/html; charset=utf-8
content-length: 315
location: https://no.hotels.com?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
x-button-request: req-cldryr9loi59a0snw1mqxab1r
set-cookie: btn_rcid=2a3f4fa84a7c118e; path=/; expires=Mon, 05 Feb 2024 22:36:22 GMT; samesite=lax; secure; httponly
holdout-150b962b6c7a8ad18832d2928a2ba514b39185ea=treatment; path=/; expires=Mon, 05 Feb 2024 22:36:22 GMT; samesite=lax; secure; httponly
linkexp-30415fa79d55029a=default; path=/; expires=Mon, 05 Feb 2024 22:36:22 GMT; samesite=lax; secure; httponly
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-robots-tag: noindex
X-Firefox-Spdy: h2
a.travel-assets.com/travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_hero_1856x796_20220812.jpg?impolicy=fcrop&w=1400&h=600&q=mediumHigh
23.38.200.200200 OK 121 kB URL HTTP/2 a.travel-assets.com/travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_hero_1856x796_20220812.jpg?impolicy=fcrop&w=1400&h=600&q=mediumHigh
IP 23.38.200.200:0
File type ISO Media, AVIF Image\012- data
Size 121 kB (121357 bytes)
Hash 956fc40791078082efbd52b53be2074a
a55e847e0d41298bed5957fd53af2b0cf3ffd200
131495eb9b98299cb50be0b052f29fdaef2178c11eb8df585c5f556de4d46933
GET /travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_hero_1856x796_20220812.jpg?impolicy=fcrop&w=1400&h=600&q=mediumHigh HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "92e6c14de86f9ef7bedabb5411e0a488"
last-modified: Fri, 20 Jan 2023 15:18:07 GMT
server: Akamai Image Manager
x-serial: 1318
x-check-cacheable: YES
content-length: 121357
content-type: image/avif
cache-control: no-transform, max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
a.travel-assets.com/mad-service/footer/bnaBanners/HCOM_POOL_Stocksy_300dpi.jpg
23.38.200.200200 OK 179 kB URL HTTP/2 a.travel-assets.com/mad-service/footer/bnaBanners/HCOM_POOL_Stocksy_300dpi.jpg
IP 23.38.200.200:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 118x118, segment length 16, progressive, precision 8, 725x483, components 3\012- data
Size 179 kB (179190 bytes)
Hash 3479f61e921de4207a6e140b009cee9a
7af82203fc8fa6f588c7f688f8180887e643a765
4fa8bb4b400e46be6a00516be056b4bba21fd967b305a28b940b57749a718a00
GET /mad-service/footer/bnaBanners/HCOM_POOL_Stocksy_300dpi.jpg HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "c3888beea43b1e8d873f03de720f0bfd"
last-modified: Fri, 22 Apr 2022 08:00:45 GMT
server: Akamai Image Manager
content-length: 179190
content-type: image/jpeg
cache-control: no-transform, max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
no.hotels.com/_dms/header/logo.svg?locale=nb_NO&siteid=300000012&2
104.110.17.60200 OK 1.9 kB URL HTTP/2 no.hotels.com/_dms/header/logo.svg?locale=nb_NO&siteid=300000012&2
IP 104.110.17.60:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (4710), with no line terminators
Hash 68dbdfeff5f66d425df48afa00d8eee8
b6fb96cb70382c9ecbc3ae2a509001f6fa8fc50b
1ff19443fed8e4049e2f5c75b8a55b4ccfd817c58365919632583a16f643fd62
GET /_dms/header/logo.svg?locale=nb_NO&siteid=300000012&2 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kFzkviBGGAQAASSu5IwnUxJAgjITSPgV3NS+Ju02nx8Y2+fCZH31YU0l36YXqGeIDF9ZrDVRYkelQ9rbsLrSKssIB1ndQpKXvUr2HzCLCVf1jdXKvMUqq4TprhHiOjhTFqwuJuIb+N5ce6S6PbG/LgX29FeIY60t83eBAqSpO4sU5rAID+c47XN1peQOBSjcfHtnepYIa0bcVPYK0KgTziBBVkq7Az0uV4abpbPga8sAU0IAeBpNhfJvfXDvdELQ7ZsaCHxB2l7Fva3VnlqrWqHU9LZgNKNuWugtkVxcvxr1HHF5qVGJyFKu+5sUnY/yxABP8zECNqBhqDNkXWXDJiKd6itNOtSTFDivYTy/fJ8hNSCotlxCh~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800 s-maxage=604800
content-type: image/svg+xml
etag: "b5a669d3164282ecc654bf2068d2271895639f3d"
server: istio-envoy
trace-id: 9aaa56ca-022b-4a62-973d-825c0dad454e
x-cgp-info: noJvmRouteSet;82fa9aaf-9eee-11ed-a158-0242d03aad4e
x-envoy-upstream-service-time: 3
content-encoding: gzip
x-edgeconnect_guid_debug:
content-length: 1870
date: Sun, 05 Feb 2023 22:36:23 GMT
vary: Accept-Encoding
x-b3-traceid: 9aaa56ca022b4a62973d825c0dad454e, c9656f6a3f280fd1fdf9db0a2718ed0f
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
a.travel-assets.com/egds/marks/loyalty_hotels.svg
23.38.200.200200 OK 686 B URL HTTP/2 a.travel-assets.com/egds/marks/loyalty_hotels.svg
IP 23.38.200.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (617)
Hash 9f530520546638adaa8efc0c7f6eb955
7cc95a32cdf439b9e74f05b8e96cf61d95427ca8
255047904a358d9185fe2567d771777d172121b33417e73df688da81c9a0ada9
GET /egds/marks/loyalty_hotels.svg HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ocHz/xFIjRYXVcWoI8Om+xu4mBih0rsy6n4jb5SJ9/rj367Q9XmQ4BxBG37tuTf/YPSpjPaFeKQ=
x-amz-request-id: 67S05GJZSC17MGZJ
last-modified: Mon, 24 Oct 2022 23:43:14 GMT
etag: "9f530520546638adaa8efc0c7f6eb955"
x-amz-version-id: Dj_U1ztNwEKen3xFLmTiZy3qSMu_qZRM
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 686
cache-control: public, max-age=396035
date: Sun, 05 Feb 2023 22:36:23 GMT
access-control-max-age: 3000
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.travel-assets.com/egds/marks/brands/hotels/mod.svg
23.38.200.200200 OK 736 B URL HTTP/2 a.travel-assets.com/egds/marks/brands/hotels/mod.svg
IP 23.38.200.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (735)
Hash df58dbb4bf789a7bedd4aaf7d64dca34
8d8ddf64153c37d3d23020c19a2bf3878ac42a81
86a8d6c3c55453538a49e7d95bf0ae7e4199e1d97b8f21de8a06e9e1c86f436f
GET /egds/marks/brands/hotels/mod.svg HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 00V8HHS8fBTz0AH9kZ24AGhgEmt1ch82F19aDUA6CciwjDPbaBH08VPPflRRyTXfKpddy3GGcTY=
x-amz-request-id: 7E1J8CWY7XAYQ1NV
last-modified: Thu, 27 Oct 2022 16:32:15 GMT
etag: "df58dbb4bf789a7bedd4aaf7d64dca34"
x-amz-version-id: rypaTsZPehamdOeai6SWpDjLH7vu3Aja
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
content-length: 736
cache-control: public, max-age=429029
date: Sun, 05 Feb 2023 22:36:23 GMT
access-control-max-age: 3000
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.travel-assets.com/travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_img_480x270_20220812.jpg
23.38.200.200200 OK 54 kB URL HTTP/2 a.travel-assets.com/travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_img_480x270_20220812.jpg
IP 23.38.200.200:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b280303774631910b0ce99e6013fe706
a3c8380be534ac1deb2ecfc0bc8554b557cb9138
91152c703bb65625e87aca5ea2e1630d2e27aba612b75a92cf31916bc4d463f7
GET /travel-assets-manager/ceorg1202-hcom-secretpricesdeals/HCOM_SecretPricesDeals_Version_4_img_480x270_20220812.jpg HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "a084548165ec35d6902af0ce7399b133"
last-modified: Thu, 08 Dec 2022 11:36:07 GMT
server: Akamai Image Manager
content-length: 54242
content-type: image/webp
cache-control: no-transform, max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
a.travel-assets.com/travel-assets-manager/cread-609/HCOM_LastMinuteRomantic_ROW_img_480x270_20230105.jpg
23.38.200.200200 OK 52 kB URL HTTP/2 a.travel-assets.com/travel-assets-manager/cread-609/HCOM_LastMinuteRomantic_ROW_img_480x270_20230105.jpg
IP 23.38.200.200:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3e0e19506e828669f99d4dc42120e7f1
5dbbd2579693a0bdd645a927deb250157ee5e972
271c74de8d1da7d0ff2a3d4158442ee5dc8097a091ddd76881e8333ca52cd3da
GET /travel-assets-manager/cread-609/HCOM_LastMinuteRomantic_ROW_img_480x270_20230105.jpg HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "548a95c98edf92dc3ad22ec3c7041bcb"
last-modified: Fri, 20 Jan 2023 10:58:05 GMT
server: Akamai Image Manager
content-length: 51594
content-type: image/webp
cache-control: no-transform, max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
forever.travel-assets.com/flex/flexmanager/testimages/2021/09/10/f6d44ef153d84fa217f3.svg?impolicy=fcrop&w=900&h=506&q=mediumHigh
23.38.200.200200 OK 3.2 kB URL HTTP/2 forever.travel-assets.com/flex/flexmanager/testimages/2021/09/10/f6d44ef153d84fa217f3.svg?impolicy=fcrop&w=900&h=506&q=mediumHigh
IP 23.38.200.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7718), with no line terminators
Hash fe72ae081a0657c2faee3c841bf22591
b1bfa57d6967c931a71763753fa0fbeea8daf99d
68228b44eb8f650c238ce21004adca84298dae2f959deddaa60ecc48774b9ce5
GET /flex/flexmanager/testimages/2021/09/10/f6d44ef153d84fa217f3.svg?impolicy=fcrop&w=900&h=506&q=mediumHigh HTTP/1.1
Host: forever.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: AsPaRKfp8rgJJedi5BQTKLiSXsChH5csRLdricw84u8qX6n3TumCOeeDqjnuW5FdDW5n3eq2dnA=
x-amz-request-id: FDMPT2WCPP68CA06
last-modified: Fri, 10 Sep 2021 20:34:28 GMT
etag: "eccb6e99b701d62c79f0245050de08a0"
x-amz-meta-cache-control: max-age=31557600
x-amz-version-id: idVmHWwKzR1Ue0otmm61uWV5xoMWT9Lw
accept-ranges: bytes
content-type: image/svg+xml
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
content-length: 3241
X-Firefox-Spdy: h2
forever.travel-assets.com/flex/flexmanager/images/2022/06/23/HPTile3_VIPAccess_480x270.jpg
23.38.200.200200 OK 49 kB URL HTTP/2 forever.travel-assets.com/flex/flexmanager/images/2022/06/23/HPTile3_VIPAccess_480x270.jpg
IP 23.38.200.200:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3f9b3ed374a8f7afd14b8879b8074205
2921bceb0af2408729f8a7a653276091371d8593
c552a12725c13fb78ee572c6f8ed006d35a370fd90b3496f4a85270ff7be6509
GET /flex/flexmanager/images/2022/06/23/HPTile3_VIPAccess_480x270.jpg HTTP/1.1
Host: forever.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "527328630da19c47a697c96a262e4fa5"
last-modified: Thu, 23 Jun 2022 10:54:04 GMT
server: Akamai Image Manager
x-serial: 1676
x-check-cacheable: YES
content-length: 49434
content-type: image/webp
cache-control: no-transform, max-age=31536000
expires: Mon, 05 Feb 2024 22:36:23 GMT
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/app.b272da867ad446bfe98f.js
23.38.200.200200 OK 54 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/app.b272da867ad446bfe98f.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bf5f8843c098ec2d689ae072430e03cf
0f1a29f04125a069254e71ef30c6f64f901790c6
885092f8eff686153b5851feebfb367afcb95b5409ad60b7adb404a61335ed72
GET /blossom-flex-ui/app.b272da867ad446bfe98f.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "d9a6e727435c4735496c36f3b34eaf06"
last-modified: Fri, 03 Feb 2023 20:10:04 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: I3NpFXGYIZm5AVvaTBkZARFJDd67hDMuz7i3AP98fO/32cMQsgEkrO5bQskqQvK6wr6BMglIwuo=
x-amz-request-id: Q8XFD6ZD1XJ2PMX5
x-amz-version-id: 0GaakEWG_gtdUBcUd8mPerFP9eHZapEM
content-length: 54117
cache-control: public, max-age=1032183
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/l10nBundle/nb_NO.d3554dbb45337c5bfb22.js
23.38.200.200200 OK 40 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/l10nBundle/nb_NO.d3554dbb45337c5bfb22.js
IP 23.38.200.200:0
File type Unicode text, UTF-8 text, with very long lines (64863)
Hash aaf255b4be3f28d529f63a23c922279e
6ed340b27c35164aab5d03a05d8e366f68426775
56e12727af2f761f5f8910bfc180e538d4f41066de52dbfb3bf19b11736179b5
GET /blossom-flex-ui/l10nBundle/nb_NO.d3554dbb45337c5bfb22.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "337c3a5aae9df88be34a1cd9d82df909"
last-modified: Tue, 31 Jan 2023 23:48:18 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: LCLmqsIrlTlJMWcWVx8UAwHlvIQNPAb230JoG7jYWPGpRqmZHDy6zHegxrNcH/LN7+zyDmm/DxA=
x-amz-request-id: 7TRM4YA2VE0X1GSH
x-amz-version-id: Ex80j__ykcVPq0jw.upFvpvQVQRqb3Nx
content-length: 40258
cache-control: public, max-age=785692
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/vendor.c7dca7ac6d79fa9fa79e.js
23.38.200.200200 OK 53 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/vendor.c7dca7ac6d79fa9fa79e.js
IP 23.38.200.200:0
File type Unicode text, UTF-8 text, with very long lines (65449)
Hash 525246af33803e0c0ebd91cc13b10023
f28d5c5710dd1e205cbef95d71d7e3b75babab2a
135d19372a6a2717e56921d4243a68db9101c1e86bfa1b88c6b2bb0c56139fb6
GET /blossom-flex-ui/vendor.c7dca7ac6d79fa9fa79e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "9253183693e6141ea91b0d9b1dcde021"
last-modified: Fri, 13 Jan 2023 20:46:26 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: jKEXAlEQBRqgrBhZB9Onv8135RJnLBngIlntguio71odk6wj7obzg+6HseELr+VMuBWBuvzXkOs=
x-amz-request-id: AZ770SWX8R6KHBJ9
x-amz-version-id: DVzWr0Sg_2YRESX_BjT9rHB8mm4zfO7v
content-length: 53240
cache-control: public, max-age=312667
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui.e438c485c7e15162b596.js
23.38.200.200200 OK 34 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui.e438c485c7e15162b596.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65448)
Hash 9870ffffadbe118c79ca0ae65d96c20e
20974fc524d4d4ac98063dd7b3b4e307dfdcd4b3
0a820245b6ea11f35c078af3d5958764caa9cd32deb0e3353493292f81aec115
GET /blossom-flex-ui/shared-ui.e438c485c7e15162b596.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0cb2afd876886fdeac78a533414f631e"
last-modified: Fri, 03 Feb 2023 10:54:40 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: oCYPRk9uHsx5QsimUd5iefYFYycmwnI+j2mx6R8nJRA2QZLBTUoZr2yxIowkMprrYEsva8fRaXlngPF1gZ47a60nPeBDFvj1
x-amz-request-id: BTW8C8Y3T5650MFB
x-amz-version-id: sSMBRUHinyouQl7t2OdtZil9pcAcnpxw
content-length: 34150
cache-control: public, max-age=1007317
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/pap.8fbc3b3273abc274047d.js
23.38.200.200200 OK 53 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/pap.8fbc3b3273abc274047d.js
IP 23.38.200.200:0
File type Unicode text, UTF-8 text, with very long lines (65452)
Hash f22a92c8f6307fb8efc6cd09bbf4b601
93efd08b604c5367b185121be814ce410ed1005d
b25af2781989b33ea39376cc2b5a4aeba6f3ea6641095b2c54b3ea755b573d53
GET /blossom-flex-ui/pap.8fbc3b3273abc274047d.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a90ff7a6c163ea9c1a60f15694cd2f20"
last-modified: Sun, 01 Jan 2023 15:39:02 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: UgI5jdpZhXRBv6lS/jIwP2OaEPuKpQsdeFV/Il9DE4Fb3XVOmy7L/ew57SFoVtxcrseLiSSRZ20=
x-amz-request-id: XAQQMTTJEJ0DS53S
x-amz-version-id: KRVKwv7fWC4YigkjTYj4T6avvStczRc6
content-length: 52559
cache-control: public, max-age=293850
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/global-components.0c6cec97cf474ed2abf8.js
23.38.200.200200 OK 16 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/global-components.0c6cec97cf474ed2abf8.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4bba09781b0356b718c09c3900974401
63f89268d9737bd16f0a163dab46cb4a8a6da8a9
d3d6cb414795ec6fa2307841bcea89c53c8ca6c008ced3ff3e127af75bb75139
GET /blossom-flex-ui/global-components.0c6cec97cf474ed2abf8.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "858f2481f68bda17eaaf18c96a4fcee9"
last-modified: Fri, 13 Jan 2023 20:05:43 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: uEv360t09+FHiyofwXY185ZHJIA4JZxOo4HU9Z8CcRPR+tS1alg295T3naCZLWMXQve7N/PhUqU=
x-amz-request-id: SR4VS19N66E9FH64
x-amz-version-id: UqEyX1fMcjCXDLySTEdFF5IcljuQ_9iN
content-length: 16016
cache-control: public, max-age=301095
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/graphql.7277593f6cf248ae7e88.js
23.38.200.200200 OK 38 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/graphql.7277593f6cf248ae7e88.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f5fc10a2406026268a5f3079d9549f41
6ba7e9840a7f10ee6a702de07642b048ef60794b
a0716f5e5a63f341089d609f44b50a63d5a82d085cce3a86aa07f5e171fb8ab4
GET /blossom-flex-ui/graphql.7277593f6cf248ae7e88.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "86e12294bc81e7907a6aee8bab9713f0"
last-modified: Mon, 26 Dec 2022 11:14:13 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: vSexvcKZnQZTxN8YaQIQeLrmZ9t1AKdu28cUu9An0ij+2MT5pMxBWox76NvEGSXPCWJKO1HK7a4=
x-amz-request-id: 8K2HCY2KAZ4NTRCC
x-amz-version-id: p0t9I1Aj1JVyBW37qlpE43bD7jD4vL0x
content-length: 37830
cache-control: public, max-age=293850
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/uitk-icons.b4d78d345cf536a85dec.js
23.38.200.200200 OK 2.0 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/uitk-icons.b4d78d345cf536a85dec.js
IP 23.38.200.200:0
File type HTML document, ASCII text, with very long lines (5072)
Hash ef90b471f3047cfa6839918a544a812b
bb39daf419f3c5ba2a2bfdb3de824ccfe062c4f8
a0971f98798c5ee42954877ed81075240879ff0c2f134fd467c13c4d75a5933f
GET /blossom-flex-ui/uitk-icons.b4d78d345cf536a85dec.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "26f9f3e4a72f0f2320a31379201b66f5"
last-modified: Sun, 20 Nov 2022 23:06:28 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: MZ2+pTd2bpO6LQ/enZ8L5DF2Fuz9y+nnkM2/tZn6HoAe2m1NKy/o2ibfxhGJMeGILg+cH1cHhlM=
x-amz-request-id: 1VJ4T2P2WR86KXS0
x-amz-version-id: HY2IybMlrVajBQT2jWLY18ChDwyGt3M5
content-length: 1980
cache-control: public, max-age=293850
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/uitk-typeahead.5b313ed021416f5a0642.js
23.38.200.200200 OK 14 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/uitk-typeahead.5b313ed021416f5a0642.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (54024)
Hash a147944b1b2c8d8faafa89eedda8aac8
d297b6df6f64909b387849b0b1b2615fbfd4148b
817c8a20d8fcc721d6c0e7a2b3d53e0beec452bffe7db6f19fb35f33bea35721
GET /blossom-flex-ui/uitk-typeahead.5b313ed021416f5a0642.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "8c5bc2e2fffdeb08a756cb7ea5eb742c"
last-modified: Wed, 04 Jan 2023 01:14:19 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: 8q+f2wq9Kg7LKDUY/PKePnmAyAElZWjkLeg2ktXcyNfhbcjUbKX9+qLGQfYviuNhZiY+dzgMdl/1ExwPX25Zfw==
x-amz-request-id: 59K3SNBXAD7PFQ0R
x-amz-version-id: 1RTBBgv_HR35UiutdMyACv.Mb7QV0_lL
content-length: 14066
cache-control: public, max-age=419025
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/bernie.d1815dfe08074e71a949.js
23.38.200.200200 OK 23 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/bernie.d1815dfe08074e71a949.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65451)
Hash 15997291c36a67370a086313faef155b
bd9c57318a2267d00f89caadd54914edac91508f
54b61b3d9856fd2f52cdc7047bc3034175414a41139d502b01d020186f814dd3
GET /blossom-flex-ui/bernie.d1815dfe08074e71a949.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "7f09d9933f5ca90631379929c4b048d2"
last-modified: Thu, 19 Jan 2023 21:31:50 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: qQ0yX+g5egd4in4gUmwgGmPgx4r3zgESP80DpuYHx398egdrX4O4/T9qhQJ9WSRaABAMqcNjOG4=
x-amz-request-id: 8E4TSBV4QT7TYY3W
x-amz-version-id: EJqRz1DpYrmMxsTRC6qaE_qxkOVLkCau
content-length: 23364
cache-control: public, max-age=827180
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~TravelersField.95173d9c21cd4e36140c.js
23.38.200.200200 OK 6.2 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~TravelersField.95173d9c21cd4e36140c.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (25059)
Hash ed023e8fb2a65c496bf185a6309ccf07
d3aeaa2d1dab6ec03dfdde583c9dcb3b67ff07d3
c1733604d9c3283212bf0ca2adec28c22624ab9117150880042f5bfc2c31b487
GET /blossom-flex-ui/shared~TravelersField.95173d9c21cd4e36140c.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "aa27e64cf78d3a225531e28e31b74e76"
last-modified: Sat, 21 Jan 2023 21:16:09 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: HCG6vb4CudLUcRn8lj+TBI8Av+XXB86cyC7fXjm4o0sbkcQ4bRd+3SCB1KUGU09eWqdBWLURwBI=
x-amz-request-id: AAEEVV1S74Y055KH
x-amz-version-id: GjbydhM1LbaeGiG1y31C4mmd8HomB2HT
content-length: 6193
cache-control: public, max-age=964569
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-FlexPage.9512a5f6bac47f9daca1.js
23.38.200.200200 OK 3.7 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-FlexPage.9512a5f6bac47f9daca1.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (11240)
Hash d6193ff2b87f721be4700e242af38418
1f75523635a8df857140849fbf5f1dae85c7adae
b33e36d2ddb2c34101db47ca367549b1268c706082e27075d1f738c418be10d8
GET /blossom-flex-ui/blossom-FlexPage.9512a5f6bac47f9daca1.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "6c69562da00055f6b7fca193b1864914"
last-modified: Fri, 03 Feb 2023 15:44:21 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: IJoDwECvRaFm1crDqeXVyVu0dkqt2hTgEQS7obpCePULk9ZvpnESbggDyZeM3kSvXu74NKMydgI=
x-amz-request-id: J52Q9DM1QXZ572HG
x-amz-version-id: BzDoX0kjCLNoKSKex1HLEkgFwu3f5TdP
content-length: 3725
cache-control: public, max-age=1013599
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/app-shared.a8b09b8bf1445d5b9d08.js
23.38.200.200200 OK 47 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/app-shared.a8b09b8bf1445d5b9d08.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65447)
Hash ae452fc90c1c128a731f69afec3720f1
05c55bb36bb7c0899f2b1fc590aa0f9329768e6b
beeb884a51d239db17d1e973b716c4e07bbee53db8145bc11881cc1b08ad26f8
GET /blossom-flex-ui/app-shared.a8b09b8bf1445d5b9d08.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0f5f03e4704ec40fd4d704c8022009cd"
last-modified: Fri, 27 Jan 2023 19:01:05 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: LGG3ic5Kxne2DDmICIU+k5q+07uwMJWqXFm5xG4yCbNIYpywq9YPx6bof6T8UaTQLgi/sHuWF4I=
x-amz-request-id: 4A05WT7F5AEQ5VDK
x-amz-version-id: GtjqfEtTdWUcghJqNwmX6iSmRqvK4nda
content-length: 47420
cache-control: public, max-age=419591
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-picker.b1922f2f4d51322baee5.js
23.38.200.200200 OK 3.2 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-picker.b1922f2f4d51322baee5.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (16858)
Hash 16777854e421a22cb449b112df70267b
acb062d8e4629f4de49e8252b67e07e48ef7958f
e38c3082e40869f69869bbe247fc9243a8358e4e413bbe893ec22c8f0f2314cc
GET /blossom-flex-ui/shared-ui-global-navigation-picker.b1922f2f4d51322baee5.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "05bb0e0e7aae1e788e3bc144bd28f264"
last-modified: Fri, 27 Jan 2023 03:24:17 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: tonldxUPv6AtSRHA+PGycm+5zo+deBAbmwPdke1elJezWeWDb9pRXJE6sn8kLXy3uFUZSbYqX2Y=
x-amz-request-id: EMBECB5MANBVZ3Y4
x-amz-version-id: hLvjaKdq.fi0Sb0fvs8zJgkAbUJNDsFe
content-length: 3230
cache-control: public, max-age=366899
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-member-wallet.1217183195c55047f57e.js
23.38.200.200200 OK 3.2 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-member-wallet.1217183195c55047f57e.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (26049)
Hash 3a35b2ae092defc824bbed1bc972cde2
845514956c5612ce70f7f2b6267aba68fa0f322d
326db1bc398f05dc7ca88a03398bf7d41a033ccb5a609e4f249b95a4f338c5c8
GET /blossom-flex-ui/shared-ui-global-navigation-member-wallet.1217183195c55047f57e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "80098befd38ab58471aa417953e9f863"
last-modified: Thu, 05 Jan 2023 23:59:12 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: tgKR6cfo/5jp6GsXDzMcJyH0TDe0BXsXjjMrjuTyI/gfvsmbRrwvw2DHdDbcCZf3w9bILSvlARg=
x-amz-request-id: 05DVC4AZGZ8NFPT0
x-amz-version-id: nXYiOQSPY4P8jvsE2iBCKFx8hqwWABBT
content-length: 3215
cache-control: public, max-age=714573
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-footer.4d46911e09c54560846f.js
23.38.200.200200 OK 3.3 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-footer.4d46911e09c54560846f.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (29453)
Hash 44ea5a61b97d3320116dcfc281ad03f0
13a6f47c8ad472680fb645658f0fc686dd2f3c5d
7c500d50152cf13168c69d357669f0e3331c3a35e11af793a2c99cc951e06c8f
GET /blossom-flex-ui/shared-ui-global-navigation-footer.4d46911e09c54560846f.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "845b0a8af1e4fff82d0c22d665f3185a"
last-modified: Tue, 03 Jan 2023 18:13:32 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: xj91eno5eiNJJbI//fwPF0rfOsqf+xGc7YbLi6wnnpWDR7D8Wtlz4qipUCon8QQhBEQlC6hTgvY=
x-amz-request-id: MN0CZZDQXSH21DJ9
x-amz-version-id: eiM_6k166JlMoP3CCpQRBjxKjZXRqiay
content-length: 3314
cache-control: public, max-age=661139
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-trips-navigation.f93c72b1eaf9e5aa8a03.js
23.38.200.200200 OK 5.4 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-trips-navigation.f93c72b1eaf9e5aa8a03.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (24518)
Hash e087e32b272528f8e466f48e32ff4db2
97819283be3680d7d4e844a42d2de676bacb1bee
90755ff62f0e3acaa0b0b00c25968be0e872aea751dc2dbec1fda4b14a05f52f
GET /blossom-flex-ui/shared-ui-trips-navigation.f93c72b1eaf9e5aa8a03.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "288186c717820e562d73c7dadeb6f6bd"
last-modified: Tue, 24 Jan 2023 17:53:16 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: oZVB18HNqPIhPKds9sd94Dyz3e8zRcQBVxwAKAxHE8TtdnSaVWxsGDzA3S0l0MUrEvhDMfQfCCk=
x-amz-request-id: FEF3WH7CARS63REX
x-amz-version-id: VCqW00C_99X.cEO.kM40LK9rj7d5dEMC
content-length: 5352
cache-control: public, max-age=160546
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-header.1b429b83563d52559114.js
23.38.200.200200 OK 6.7 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-global-navigation-header.1b429b83563d52559114.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (33943)
Hash ad480b14ac843d8720aab59b267f6e3a
479cb45d8170fa7358b963f54e060bb5bf2b271a
30d16f868a2aa8ab836c29ce63c46205c73097376a69cfc0b0e6d463b84cb296
GET /blossom-flex-ui/shared-ui-global-navigation-header.1b429b83563d52559114.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "7f13c7a60947f88351640e3862cc2129"
last-modified: Fri, 27 Jan 2023 03:04:39 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: 6Qho2gRWv0e8WxTnbJA1SU9o6dpkYSB8/i4XpWt8Fb+z+gFTnJf9XS/ild1mlStlzqRiM7mGKZ8=
x-amz-request-id: 4J12W22SN3EGYJJ3
x-amz-version-id: y3msGmuaEK2jz7p9pBUSW22d5rFZra2Z
content-length: 6721
cache-control: public, max-age=369797
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~StackedSticky.58ecc536f55917d17d89.js
23.38.200.200200 OK 1.2 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~StackedSticky.58ecc536f55917d17d89.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (2764)
Hash 0e1f15cabdfd85892b49821639381771
487e3e56993cf637772b425ec905dc628ebba574
2404ebdab23a3545f6df2af13aa3ef9a15479368b4b52a2e9454536a612d6b08
GET /blossom-flex-ui/shared~StackedSticky.58ecc536f55917d17d89.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "97f164e5f09aaeaec80b32bd494c9ab5"
last-modified: Fri, 16 Dec 2022 00:06:38 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: Pd3/KZIOl0WbzV/HutRxEZ51sF2MctFVwv7KhTHD0s9wBl6Rji03sQH6evcjyobtKxWSQqfvb4sbh1ztUi2otw==
x-amz-request-id: 13AZ1QCJ1S1WKQY0
x-amz-version-id: xdQAuUl0xWbeIZssVzGmNUZwSme4p6TK
content-length: 1160
cache-control: public, max-age=293850
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/flexComponents~SimpleContainer.1f2bb3e14d2b13214d71.js
23.38.200.200200 OK 1.2 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/flexComponents~SimpleContainer.1f2bb3e14d2b13214d71.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (3292)
Hash 33324c168b019557c9839f32611c8c08
abfe29abe4d6a326ce193fa6e33dbcd82e784480
91ed711f79de22899dd29638aa858493fbcb2647837f3d8e940aeb3355cf09f2
GET /blossom-flex-ui/flexComponents~SimpleContainer.1f2bb3e14d2b13214d71.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "272deec726964c898308c9628b77b3e5"
last-modified: Mon, 09 Jan 2023 08:56:15 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: l+v6qBbtxH1ONUMBoGDdcnu/LVAVdWBLI7cj4SrAD6Nu0X2gt177QyKakmToRNT/ilVIOIgjrYE=
x-amz-request-id: 6SWNP72QW86EGTYZ
x-amz-version-id: eKGeHFcLFjGNO6bYwJ0CSiAuUH7Uee0H
content-length: 1221
cache-control: public, max-age=757609
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-customer-virtual-agent-control.59b4fddda1ee821fe872.js
23.38.200.200200 OK 3.9 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-customer-virtual-agent-control.59b4fddda1ee821fe872.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (16085)
Hash 16202f5f99741477f22b0e013b0dd64a
a0548f7d7f9e1e5ae428030d3f83847cafe500cb
c68d84aaa0c6246e3ca3293997ec40cf48de2259adf43606ca8d7f5d7c03a58f
GET /blossom-flex-ui/shared-ui-customer-virtual-agent-control.59b4fddda1ee821fe872.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a8f8168e6c4d910e9e1996e1bda476a1"
last-modified: Fri, 13 Jan 2023 00:19:44 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: vNHnujys4PyhtnZkxMsf7tk1v7CwZp5p0m0d8+wSivtFGC0hBB1WREPtP93zRiNnNAHR+auPW3o=
x-amz-request-id: 02790JQ2C27CMNP1
x-amz-version-id: f0BR01BGXATTjpo7DcSim46bwxDKl1RG
content-length: 3862
cache-control: public, max-age=231931
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/utility~analytics.146cf6d16c30b3c2f1e4.js
23.38.200.200200 OK 2.1 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/utility~analytics.146cf6d16c30b3c2f1e4.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (6124)
Hash c834b68f1513fba56ced1c88632d5d00
8ce94abfadf457eeaf9f61ecec1803b964e8037c
25287ecc15f276ffd4c64683dc7681580218873ea4c4fc2aeab61a308662fd0a
GET /blossom-flex-ui/utility~analytics.146cf6d16c30b3c2f1e4.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "91ba95de105d38844f2c235a090fef26"
last-modified: Sun, 01 Jan 2023 10:06:48 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: ArjaOCuhUcS353f0Crs/TpVzsieZXjOzneJU4fPVoiVEE6D+uKbmFNUfJyNQhsIR0czVmFQP73Y=
x-amz-request-id: JKXX063V89HQXQEC
x-amz-version-id: TnK1bvIuUFX2zPGnVy6EzR.rd0RJfMWC
content-length: 2079
cache-control: public, max-age=293850
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-customer-notifications.83fdf8b5f62c162877d6.js
23.38.200.200200 OK 16 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-customer-notifications.83fdf8b5f62c162877d6.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65425)
Hash 96397afb64d9c619627d14d1ceca4e0d
1641455c18fc7b1a75de884711595208736754fd
f6c01007562afa6c34b751c2b0323c4067c235cbc35deed9590669776a855b8c
GET /blossom-flex-ui/shared-ui-customer-notifications.83fdf8b5f62c162877d6.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a4e957c152653c6eebf9e6e23a8f21f0"
last-modified: Tue, 24 Jan 2023 18:26:23 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: hRIOKpgfnXh0+waBYb8AgZC1vP+IF/zhZ5rtMU0/XJL5ADcJ4/T7b3JJNWhtxR/+czPl4i1tdvw=
x-amz-request-id: RSMWMHHRGG7X70N1
x-amz-version-id: jrEfPpTZhf4Co6sLFLdcTrtTymsbvhVF
content-length: 15694
cache-control: public, max-age=159711
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
www.uciservice.com/assets/md-libs/1.0/ss-resources/meso-ssads.bundle.js
104.110.9.240200 OK 13 kB URL HTTP/2 www.uciservice.com/assets/md-libs/1.0/ss-resources/meso-ssads.bundle.js
IP 104.110.9.240:0
File type ASCII text, with very long lines (9781)
Hash 6e4022a3d500c7e3d320f4ffe3e60328
4ce965b08f7437536357cf71a258b10779cc4ffa
7108240ee1ef8916abc8a2f6e2d9e9229d2f13ed23fb8726a154fdebcafef784
GET /assets/md-libs/1.0/ss-resources/meso-ssads.bundle.js HTTP/1.1
Host: www.uciservice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d0YkXmE1bPpIgcdY7v68y5SGI3XFTTLPxaI4+7xVWq+IWgxM6ux2yqjFJFsFzPFN85QWx7SP1Rk=
x-amz-request-id: Y5H9T0QWS3WFWR9Y
last-modified: Thu, 19 Jan 2023 17:38:08 GMT
etag: "847039ff0ead21026f6d2633e9b006a8"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=129
date: Sun, 05 Feb 2023 22:36:23 GMT
content-length: 13020
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/flexComponents~ResponsiveToggleContainer.bd6619208ca452d19efc.js
23.38.200.200200 OK 1.3 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/flexComponents~ResponsiveToggleContainer.bd6619208ca452d19efc.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (3759)
Hash 4c724ab63d721f8f8cf69a5c1e1790fc
07a3c8663b11ff17ecd5990985f19e2726c80742
088c40ad22998591e66c6e58f510675090e4cdf69ebbc55ffb5583b55f9dfaf3
GET /blossom-flex-ui/flexComponents~ResponsiveToggleContainer.bd6619208ca452d19efc.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "35f8efbed5b57346e055c3a24083d57a"
last-modified: Fri, 27 Jan 2023 19:28:04 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: k1ClYmUTHvB4yEM9CWcTkCWpyYo7M9+xh1RZ3zaynGbG8kuI4RqgOuDh+h9khT5MwuuVg0knobM=
x-amz-request-id: NTA4Q8K0JRW459NJ
x-amz-version-id: NPt7ZaIMvFKjYOd053YcpEDvYBwIm4Nr
content-length: 1334
cache-control: public, max-age=421299
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
www.uciservice.com/assets/meso-loaders/expads-blocked.js
104.110.9.240200 OK 596 B URL HTTP/2 www.uciservice.com/assets/meso-loaders/expads-blocked.js
IP 104.110.9.240:0
File type ASCII text, with very long lines (553)
Hash 215f45b66496ce086a4dcd68f28a8037
db779fe2e5adc86466ab40123c26e936e821f500
e4802e9d8a732fe0f028e26f113a84df08627bdc9d84931fa60bc4c80a5f2089
GET /assets/meso-loaders/expads-blocked.js HTTP/1.1
Host: www.uciservice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +rlcj/HrkDsSej5tYqB1jXxlGUzia3dTLjoQoFTB2NNn/e6jI8OTcVO5e647O+FJaaJ3GIpfYQ8=
x-amz-request-id: P2M71K6MP7JBPARA
last-modified: Sat, 28 Jan 2023 01:12:08 GMT
etag: "215f45b66496ce086a4dcd68f28a8037"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
content-length: 596
cache-control: public, max-age=2354
date: Sun, 05 Feb 2023 22:36:23 GMT
access-control-max-age: 3000
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/flexComponents~Editorial.2576e8787c6c182e32d7.js
23.38.200.200200 OK 15 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/flexComponents~Editorial.2576e8787c6c182e32d7.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 47e5a7ef019d83fd8e84130390152146
72489e702f098c0bd74c03e0ed1d2655f433446f
32a29fbbc2234c3ad552b685d314b85009d7bc4024d7a971e2bc5433c6c0610d
GET /blossom-flex-ui/flexComponents~Editorial.2576e8787c6c182e32d7.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "6d7da298010804d4c888e024fa59a5a7"
last-modified: Wed, 01 Feb 2023 20:05:27 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: 0bi3wh2E/KERBmfGqvxfnljJIisPfpOzEwgyURcuxoBPnSXP0zSjjFbI5FNwmSlguHsgdp9eudg=
x-amz-request-id: NFAZMHDKSCNY5WYD
x-amz-version-id: XC9osieP3ur5SVhN8p.21L4XmvrvJxso
content-length: 15115
cache-control: public, max-age=855662
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/flexComponents~ToggleContainer.68cb51081a3a067413e9.js
23.38.200.200200 OK 1.6 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/flexComponents~ToggleContainer.68cb51081a3a067413e9.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (6186)
Hash 4de6ff0b6bd6ffe5e4524e56284d0b7e
035dded6a1464ecc09f567b9956be157dfc5afb6
52c6f3f28a4c618de4da2cda07348a4dbbff449150fc19345a83da36cb3ff789
GET /blossom-flex-ui/flexComponents~ToggleContainer.68cb51081a3a067413e9.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "f3c22586ab44dbb35556275022836811"
last-modified: Fri, 20 Jan 2023 04:05:58 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: +MXqYAQZgGQ7ZT4DYMdYmoTEz4j9Uf5Ihm4vuM0zrKiyOkkinLYG96B4jcctGOOTgc5MgVrl5Hw=
x-amz-request-id: S1GDC8AQ2PVVFCCT
x-amz-version-id: bjSWFqFo6P9VdrPHDY0bRqrBHTBUZ1NW
content-length: 1614
cache-control: public, max-age=901180
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-page-heading.21b1e4cbeb87807eb7ef.js
23.38.200.200200 OK 749 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-page-heading.21b1e4cbeb87807eb7ef.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (2086)
Hash 2960b0a24712f1a742e1ab161ce7e517
3312445ca70ed3b9b6771473aa068ea8c583de48
df1f0f793dc06abc17f87b799e5ae016d534cad9c71226ee9d956703ec3486e2
GET /blossom-flex-ui/blossom-page-heading.21b1e4cbeb87807eb7ef.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "f29499518463e3be5e4e803beba5ab88"
last-modified: Tue, 10 Jan 2023 10:50:56 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: rN2N31VqkY9UAePgsO4EuaulId4raikNqs4HEROxITuKkGCyDo5R3d96AlA5WbNCWAA/sFrIkHs=
x-amz-request-id: 4PRZYYMH7MQKPD2S
x-amz-version-id: oRx6HQ8Ni6s08mRKLJFZOFzeqoEKvSt4
content-length: 749
cache-control: public, max-age=188512
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~BlossomImage.6329f42d43cc3608274b.js
23.38.200.200200 OK 883 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~BlossomImage.6329f42d43cc3608274b.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (2310)
Hash f7491d0492d6022f775785a9dc749e3f
641c3b55d771b4bf9d5d873016fef64ab0c7be9d
31fd47651ef1d962d43e8b57ad5a1bf08fe0b3ec074326e5db15e6b59bda540e
GET /blossom-flex-ui/shared~BlossomImage.6329f42d43cc3608274b.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "471e7b4f932262f15d5983dfb35c4b5f"
last-modified: Thu, 19 Jan 2023 04:14:52 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: D+ebEpFmK5YrGF2ZO8ZKszqWBy6JXIozKGRog6G0HdmgAyzo6a+f/2ak6my5ZbuSP3NBKf8siYg=
x-amz-request-id: J1G74FN8HVNGFHE9
x-amz-version-id: QdtgO1KjmYRE.gri9Eu4rsikfTv1TqoC
content-length: 883
cache-control: public, max-age=1205487
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-links_card-carousel.c50386505b6fd7461734.js
23.38.200.200200 OK 917 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-links_card-carousel.c50386505b6fd7461734.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (1872)
Hash d4efa5609b5e9f9edbab61ceb50c9266
27efd2d598edb12da141101383a6d3a2e0bec209
d6f1c6ca9e3ed55e3bc8fc106c0781ebf03c187c1dd15ef2eb9966757ba6aebb
GET /blossom-flex-ui/blossom-links_card-carousel.c50386505b6fd7461734.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "d55c72a57c23418367690fedcd2e5a5e"
last-modified: Sat, 14 Jan 2023 01:25:49 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: UBN6KQeeXaPqxdo6wEnPIo1pzEj+7wHR//MWtxEmOuAUN6PFONvp3tSfpxQSIstKN3qpmQQzExg=
x-amz-request-id: YDWKHMHTXKFXDQPK
x-amz-version-id: yWWa08rJv1AuJ0jJNzuFbFDLHRx06ytN
content-length: 917
cache-control: public, max-age=295057
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-ad.855d6df127cdbc7f420e.js
23.38.200.200200 OK 846 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-ad.855d6df127cdbc7f420e.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (2118)
Hash 83de0fcb1f5e9b45a26b1c4fd2d7b5ce
71221d5cadc1028692873f80a5db80e30a18af0e
3c670a1c989f4bf47bf9ef30ac49239a794841a249ee664a029a2ff5d53abd7c
GET /blossom-flex-ui/blossom-ad.855d6df127cdbc7f420e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "fec298c9e402970f2aebe2bbcbf5ab17"
last-modified: Thu, 29 Dec 2022 00:38:52 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: sPVApmz40L/bjm8R53ZKOsotj1NzEXcGOExwbnSfNBZTQui4TG7sUFGDfWkyxdJxk1qE2GfgRDE=
x-amz-request-id: GPSK3X2W7N7X0RE9
x-amz-version-id: BPbTuTarLNNjtk1yBlrGUrgkjcAsumGo
content-length: 846
cache-control: public, max-age=298028
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-recently-viewed-hotels.94781083937edd85297e.js
23.38.200.200200 OK 2.4 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-recently-viewed-hotels.94781083937edd85297e.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (6652)
Hash 57e530f6f6d5ca3e730155eab5aac571
11757d28e7fb3dc39a60aacb730898f834e08b2a
916287c38e084fdc6291b4dfbc75a683a6511839d8331fa3fcce4c27e7d2b15f
GET /blossom-flex-ui/blossom-recently-viewed-hotels.94781083937edd85297e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a93cd4bbb96d953258cc3ede58cd5b4f"
last-modified: Wed, 11 Jan 2023 13:50:29 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: Ux9vNBqsOg0uTzKUIsMHUnoSiWRdUg2hjjvi10rk/qC+Oue5jDpb2sw3Ip9WCC46gS96Qnb9NCU=
x-amz-request-id: QMVV1VPQF0APG5C4
x-amz-version-id: eIO_I4lZ32VghAwU4ge5zziYr3gQr5Tb
content-length: 2414
cache-control: public, max-age=927560
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~PriceLockup.243d5a19b19ff3e39907.js
23.38.200.200200 OK 1.6 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~PriceLockup.243d5a19b19ff3e39907.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (4768)
Hash a47bd6ac0452cff90daf1df5ff9ea6f2
64dddd15f022c717f8abbfb277b041f6da1474a2
924f5f4427892b9fb3cedfe552ddb8c2f30284ab8a8375b3ed25d3c07446491f
GET /blossom-flex-ui/shared~PriceLockup.243d5a19b19ff3e39907.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0ea41d3846126734ce4129b64955eb52"
last-modified: Thu, 05 Jan 2023 23:59:22 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: AoeJJhT0LgTYjFY9AqMoDVFGVuOCpszrgKKnxZCGYTGibOFgHILJ93pGVb2vKZoHPArPuGxBgI8=
x-amz-request-id: BRTRK71NC7B0VC9J
x-amz-version-id: ixyZNV35wqkZabQgyRpAULC0N_1jHEwA
content-length: 1550
cache-control: public, max-age=715255
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-separator.2fc9b7854bec3ca8e847.js
23.38.200.200200 OK 376 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-separator.2fc9b7854bec3ca8e847.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (606)
Hash d7ecc79dc5f37ccd8790222cedb8d9c5
122b5dc047e838b43c3d1af0b96cebfcdd66861d
3a6322108fe4e62d7a15b8d6720d279e5efbc224e84bad4b3951a4c59f1f443e
GET /blossom-flex-ui/blossom-separator.2fc9b7854bec3ca8e847.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "3a308088292fa3054daa26c9fb946535"
last-modified: Fri, 20 Jan 2023 02:11:48 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: /RHC8Rtt3tkTSZr+Gpjx4+C9aaBYcCHDvreDRvrLkmIrDFeya+B732yjLyS5JB1BosjssR8eJDI=
x-amz-request-id: WEJYR88XN0F8NPEJ
x-amz-version-id: MSXQb6YRxoJ9gFGzm63AVHu0r6VgaaoU
content-length: 376
cache-control: public, max-age=187919
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-region_native-ad-container.0fabb3e317570f2fcebd.js
23.38.200.200200 OK 533 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-region_native-ad-container.0fabb3e317570f2fcebd.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (997)
Hash f2826dbb01a8f9df22f634e26f187f46
9dd7e0573897d2c69298da19cc11855ebce1da95
9ae404c913967bdd37cc5228ce338a663bf5232645b6c96114706c33e8c5568d
GET /blossom-flex-ui/blossom-region_native-ad-container.0fabb3e317570f2fcebd.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "78f4099b0ef50e509207f3102591267a"
last-modified: Wed, 04 Jan 2023 21:00:13 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: +0/mpzbKTgAgjs6h6UoXzTLdceddq9ZtO0SbtxE02L/DnFvCARn16HtQTeEU0Zy4Yx46EdhKWpk=
x-amz-request-id: F9PRMJX7G43WR8FY
x-amz-version-id: LvpcywXlqvougsgAc3qf7SJhIMxEu5MP
content-length: 533
cache-control: public, max-age=298028
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-mad-marquee.a312f03b085b96fecf3e.js
23.38.200.200200 OK 624 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-mad-marquee.a312f03b085b96fecf3e.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (1092)
Hash 3e0eb4077b3b401f1d48fe63a71f1910
0ecd9ebe648550fc3d66da19509138d55e73b738
12bb6d6b10b669c37416b8b4393c660a4075db93cbfb710f57563a2a09075f30
GET /blossom-flex-ui/blossom-mad-marquee.a312f03b085b96fecf3e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "9574a9d53fddf9d2cd03e2e874f02925"
last-modified: Thu, 22 Dec 2022 15:45:36 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: aTIabzq2HXcgW2MlGD8P/I8mLGtSKBzf1D2eqSs99rXmtT2alodw2qX/NjbOpRh0H8LVlOslPwQ=
x-amz-request-id: 466JX9MGFF7H9M40
x-amz-version-id: RL_obH.bUwZim8NRGm74njeor2OktyyJ
content-length: 624
cache-control: public, max-age=298028
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-region_auth-container.9562f3e0c61130291c18.js
23.38.200.200200 OK 859 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-region_auth-container.9562f3e0c61130291c18.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (1815)
Hash 2fd802f001b299faa107c53ba81eaee9
f17527905ff855bb05cde4f3b4f5924a5733b7be
3fb1c612fe1648d8100f00611275c51f7280e700ef38786bdc6f820d849c94bf
GET /blossom-flex-ui/blossom-region_auth-container.9562f3e0c61130291c18.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "775e599d3ce1188e5f8b79bd119920dc"
last-modified: Mon, 09 Jan 2023 18:28:20 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: ewq/FRTY0TxP5tA13/KMsedcX5OCVIb6aZgKDEBZMrM5nLC0RiJ0XIgNLQyze7xzA8Iur5lCHso=
x-amz-request-id: 28GN2WNVY6HN2FTA
x-amz-version-id: lT6mEdI299jHlHER0ynrR.S1dEksIsbi
content-length: 859
cache-control: public, max-age=298028
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~ReasonsToBelieve.94e4a0d1fd4181576ea0.js
23.38.200.200200 OK 2.7 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~ReasonsToBelieve.94e4a0d1fd4181576ea0.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (9047)
Hash 1d126907887849db2748d465fbe91d66
bdd7d4b4f9c80eae9e2fc2250e8ea37a508175a0
f612d697936bfb82b541bcc574077581574ef12c0bc0060a4e9def2b0ecd6cee
GET /blossom-flex-ui/shared~ReasonsToBelieve.94e4a0d1fd4181576ea0.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "d545a18aae2a891dae3e408e1d4ff837"
last-modified: Wed, 04 Jan 2023 19:23:25 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: TJ6BzCGdxqfZO5FNkdMfpf6mIM8q6Bharuqz+lrt8P8UFPkvwnHsLCjHhLHFkxGc2Cm+g9tkDmE=
x-amz-request-id: 5JAW6BNTZDGP98P0
x-amz-version-id: iPq1p7_wLAGDNWpamC_ZyBvhbYI0foHT
content-length: 2722
cache-control: public, max-age=617462
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared~CustomerNotifications.099f57b4a90835f7b71d.js
23.38.200.200200 OK 2.8 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared~CustomerNotifications.099f57b4a90835f7b71d.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (8951)
Hash c5f802b78597a9f969a05c3c381e1c93
ecdbeaf00ae08479d33ca667f3d4e6719e980ef5
a52030dbc1152e09db0494d4bc7fd65bdfe6a6ce03dc287ee00d8228ef0bde34
GET /blossom-flex-ui/shared~CustomerNotifications.099f57b4a90835f7b71d.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "d4c47deed5ed084c432db4c1141438e9"
last-modified: Thu, 19 Jan 2023 21:55:00 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: OfJFqBKX2GRc4PSnx/IXqOhgfjS8YPWga4hZHD5Qc3SnBsHfaDoWbXWMrnXszH/IjuOnAQObYYk=
x-amz-request-id: TZ0JCAA19NY1ZJYR
x-amz-version-id: WdmLqEorw.toVsHq2CD0q_ZbsaVU4jsg
content-length: 2840
cache-control: public, max-age=827240
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-editorial_banner-hero.fdf267c14157a749df1e.js
23.38.200.200200 OK 1.6 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-editorial_banner-hero.fdf267c14157a749df1e.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (4103)
Hash 3387222ef6853849dd7146daebb9b729
a10e2e9161c9de7b4e8986cbaa841bb98566af16
686724e4cfed25b5af0692c5ff7fdc469388c76a6b0285f069d6daff9d44b63c
GET /blossom-flex-ui/blossom-editorial_banner-hero.fdf267c14157a749df1e.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "897a3bed154d91de80ff4611cc293ba8"
last-modified: Fri, 27 Jan 2023 18:44:56 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: FV2+5sWZZLlhY38tfDTCaT3ilQSUpmDvVqi/s/ptqEzYbpNgME38iUUIOMCZzE5Cy1jjkHWuBnY=
x-amz-request-id: RZ8C77VCFR7X4JPH
x-amz-version-id: mhIXTi1WvmD_nDN8rJzrPIsZlZeAym_N
content-length: 1604
cache-control: public, max-age=418761
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-region_meso-ad-group.a07d483d206f1c440162.js
23.38.200.200200 OK 832 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-region_meso-ad-group.a07d483d206f1c440162.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (1934)
Hash 50d78dfc0c6b0e6308d5569858788387
854fa797bf040ba2902153fbfc63600686637bb0
4a5780badf5796b3605f3577d77809439d864230c0882d7ff802b9ab9b0486ba
GET /blossom-flex-ui/blossom-region_meso-ad-group.a07d483d206f1c440162.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "b2467aea4b3c4c05168ddd922204d6c5"
last-modified: Tue, 27 Dec 2022 15:38:16 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: M9F9AYrYPClaRDvkSNqn2TKMnB3OTepcKINixKUWSEjvjGWnMQ4Iss+Jc7WDGyveuV1rnswSJYA=
x-amz-request-id: 9E8ASSXN4SJWYT64
x-amz-version-id: 5rQFTOIYecX9L2voUjJCD0s4frrYiEPZ
content-length: 832
cache-control: public, max-age=298028
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-rewards-banner.1070635ab1c594f0b9d3.js
23.38.200.200200 OK 1.0 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-rewards-banner.1070635ab1c594f0b9d3.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (3403)
Hash 4977b14e1b5cf464e030e119caa1b063
36c98b8d4257f15d73d8da6835155617cecc99ae
2671213c7d789bf7740814e57415737554d4be16334f07b8f9d062569fcdcb25
GET /blossom-flex-ui/blossom-rewards-banner.1070635ab1c594f0b9d3.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0426b9a72888276617bc467e0371e126"
last-modified: Thu, 26 Jan 2023 23:10:32 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: I2PGjfi3pWIA5CI8hoJ3hFzAR+17NTiAnisgypl7VWAkIzwR7DIlCeo0iW11KFI6QV27kkubh44=
x-amz-request-id: 2CDH5E6DC92Z24GD
x-amz-version-id: ntaFOn2Aqfpu3OeA5kRJQHpV0Ca4tbYR
content-length: 1017
cache-control: public, max-age=349313
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-lodging-search-form.c2951a736c1cd4db9649.js
23.38.200.200200 OK 846 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-lodging-search-form.c2951a736c1cd4db9649.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (2137)
Hash a0d99dc9b23f8b3b5a007effb4be5c98
35cc57585316c8752dde67198aefe2483ffe69cd
c398f3b604e94cb54c565cb6ddbd822d7d5d95c0c7f78f8c292eb844cfccb840
GET /blossom-flex-ui/blossom-lodging-search-form.c2951a736c1cd4db9649.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "7410deaf72006270a8ca05868e173a7c"
last-modified: Fri, 23 Dec 2022 13:41:05 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: sWBwx7ZzbgPwD6+PIe4/DuN/riF+bwA+c/4i38lA1kq0hvh/cDl2QsgdaIfiDbHq9VpGq+mSP2k=
x-amz-request-id: KVD22SA2AFKA8844
x-amz-version-id: dSTVej1cmOfHN4BPq4c2x7LiepJLZZ0H
content-length: 846
cache-control: public, max-age=220442
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/flexComponents~EditorialBanner.5b531230b7cec2e2aeef.js
23.38.200.200200 OK 1.6 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/flexComponents~EditorialBanner.5b531230b7cec2e2aeef.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (3671)
Hash 3eab96e456d01dc34d76d0ebcdd97fb8
61bef5e11207dc5887b152a343ce8d29fa8e3e64
b4de687e6ccd16349558cf54dea19f3eacce274ce18e42ae24ba69f86851217f
GET /blossom-flex-ui/flexComponents~EditorialBanner.5b531230b7cec2e2aeef.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "6e7fac87d5cd99afb013fa4b54608a7d"
last-modified: Tue, 31 Jan 2023 13:53:37 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: 1BSihwQb88niZFQRmMyYperWd2Yk3DcOF80ndw7czFl6LHzIdZQ3ogvKg3TY/wiFSn0eWerJbL4=
x-amz-request-id: KPTNGRT27805K31Z
x-amz-version-id: IuPeXjdOM_IzvGmdWNpzLbumsBdhI4xq
content-length: 1641
cache-control: public, max-age=901200
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/brand-104111116101108115.b79e8c674f71b4f16b8a.js
23.38.200.200200 OK 33 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/brand-104111116101108115.b79e8c674f71b4f16b8a.js
IP 23.38.200.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9e98f7e4c956d9af301b802bfd90d5dd
2c34f7842b1a76d5dfa032737f81f93b8a241984
ec28f2a9caedf773b46a75866289f1337bbd17f4be0ae5c56ed4679f5dad5d23
GET /blossom-flex-ui/brand-104111116101108115.b79e8c674f71b4f16b8a.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "e1a530f3516a63ac092d7f4bd9147e4c"
last-modified: Fri, 03 Feb 2023 15:29:39 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: NBOB7HFz0o4mGbGDIpoQRIesnle1x8R8moO2EyAv6C7J5w2fKUPGr8c9bM4bqYW+j1CCc+CkVkA=
x-amz-request-id: Z7C0Z6Q0FCE2BXMT
x-amz-version-id: QwSIVBqu109RoQp8HWyYDUJT_X6YAH86
content-length: 33405
cache-control: public, max-age=1013817
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
www.uciservice.com/assets/meso-loaders/meso-loader.js
104.110.9.240200 OK 21 kB URL HTTP/2 www.uciservice.com/assets/meso-loaders/meso-loader.js
IP 104.110.9.240:0
File type Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Hash 6065df0a95acf66ff1bd590257d4615d
4ca7d833a75dd4fe4ee7e90d7ae1fddda4d7d552
81f087e7e4f484dafa745ab0209de315a8305dfe9f6f538b39869e131a7992fa
GET /assets/meso-loaders/meso-loader.js HTTP/1.1
Host: www.uciservice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JOfr1iSCkCdd+mcK7038hiXr7a0izkl2NhMdQM3EbwsSEPIoqAFj5Y6UpUrNulWSGB3ylCvf/Hk=
x-amz-request-id: MF16C1W6C2EPFD3C
last-modified: Sat, 28 Jan 2023 01:12:08 GMT
etag: "8063c6c9e2de69f1be059453557c18d0"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=3595
date: Sun, 05 Feb 2023 22:36:23 GMT
content-length: 21130
access-control-max-age: 3000
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
104.110.17.60201 Created 18 B URL HTTP/2 no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
IP 104.110.17.60:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2728
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: e135c80e-2653-4729-8a0d-fc806dd98804
date: Sun, 05 Feb 2023 22:36:24 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://no.hotels.com
access-control-allow-headers: Content-Type
x-b3-traceid: 78896042ac1d4f9a222dbe472d31dfd9
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
x-edgeconnect_guid_debug:
set-cookie: _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; Domain=.hotels.com; Path=/; Expires=Mon, 05 Feb 2024 22:36:24 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-search-tools-lodging.97b1927edb1fa566cb37.js
23.38.200.200200 OK 8.8 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-search-tools-lodging.97b1927edb1fa566cb37.js
IP 23.38.200.200:0
Hash 31a89d5b891b6cb5943c36e608283818
703009cb0a9abc74003ff2e8a5a50f904c4367db
a1583333eec6d67b7e44be1350cc9bf57572df8f6897c48525a9831815e736e1
GET /blossom-flex-ui/shared-ui-search-tools-lodging.97b1927edb1fa566cb37.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "09e5684a127dbdbf18e9477976e13373"
last-modified: Mon, 30 Jan 2023 16:44:24 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: BkAIhGVV21D/MCxNu/lnFUTGRcmqZzkkgLpQ/RKUIa8GJxXBNJUKczf3J1jlXdFReTKZjqUsV7w=
x-amz-request-id: Q7ENWK4T0XFCDVN0
x-amz-version-id: GcsbJDZVg45RpaiA6eZXeWTECRvhkIyA
content-length: 34551
cache-control: public, max-age=671967
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
a.travel-assets.com/mad-service/qr-code/hcom/marquee_edr/qrcode_Marquee_EDR_-_nb_NO.png
23.38.200.200403 Forbidden 255 B URL HTTP/2 a.travel-assets.com/mad-service/qr-code/hcom/marquee_edr/qrcode_Marquee_EDR_-_nb_NO.png
IP 23.38.200.200:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash f519766219e2584f6d4412444e56fa32
baf5612ffb9df6598ec2fbccab50678de4bc66a2
a416d76e16574049c2e3020f4cc60a04d66b9e566ac5d1866df87b5a50285cda
GET /mad-service/qr-code/hcom/marquee_edr/qrcode_Marquee_EDR_-_nb_NO.png HTTP/1.1
Host: a.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
x-amz-request-id: 7V1YRARGZS4M8YD6
x-amz-id-2: JofzH5jM3ngiYQ4hVbaw/BtgPACwqf/ZTsclZDUgbQwMDF79oVCZs7BjMBtpwIotbEcrL8uVLEpITFbaS81g5w==
content-type: application/xml
server: AmazonS3
content-length: 255
cache-control: max-age=31536000
expires: Mon, 05 Feb 2024 22:36:24 GMT
date: Sun, 05 Feb 2023 22:36:24 GMT
set-cookie: ak_bmsc=0087065F86B6126D5BD440BD10BA9D02~000000000000000000000000000000~YAAQBE8kFx8mS9KFAQAAWi+5IxJMGMxYXigiP2PsQV3lWni7QH6ahlRfOw5XCI6kcKsfCbX/24XTTdyd9slNFd8M14QDqYyffaoi1gP6/M3Odkv1j7DziUXgZvgxTGxVc0rfQFJLX5MSfSZORK/An3sLCxQDPo3i0Hh4GXCDHbEcsRk4dDfOGqayT9cfYVAIKb6+iUIbZM7mJNmQrrrMvKgADmTcF6KBRJ0GXAzEbQtbhnvBGFUfpsOgLQ4fmgnI105pjtzM5Cx5BMF9em4eC3mNv1RT2OBNm6XBIuRmzjl4SEKe6p7BLUPJ6ZKkanGjRDLsOMn9gVqBg98QxkEX0avTISWpzvkUgvB9e10DxeEfavf6y2jrp4rVuQte46G71sKDNS1DKEHPg8dbu4Lu3Q==; Domain=.travel-assets.com; Path=/; Expires=Mon, 06 Feb 2023 00:36:24 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.336Z&pageName=Homepage&message=&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DANALYTICS_ENTRY)&label=bernie.client.analytics-entry&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
104.110.17.60202 Accepted 42 B URL HTTP/2 no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.336Z&pageName=Homepage&message=&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DANALYTICS_ENTRY)&label=bernie.client.analytics-entry&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
IP 104.110.17.60:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.336Z&pageName=Homepage&message=&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DANALYTICS_ENTRY)&label=bernie.client.analytics-entry&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 202 Accepted
content-type: image/gif;charset=UTF-8
trace-id: f6128f78-63d3-482d-94ea-35a95501783a
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;853c1ee6-a5a5-11ed-b049-0242f39b5c20
content-length: 42
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:24 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:24 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: f6128f7863d3482d94ea35a95501783a, 10fb3d07a8167ecf95719f0bd3c5f0c5
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.377Z&pageName=Homepage&pageHydrated=3423&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_START)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
104.110.17.60202 Accepted 42 B URL HTTP/2 no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.377Z&pageName=Homepage&pageHydrated=3423&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_START)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
IP 104.110.17.60:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A06.377Z&pageName=Homepage&pageHydrated=3423&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_START)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 202 Accepted
content-type: image/gif;charset=UTF-8
trace-id: 92e6ca8c-22e7-4c3a-9f5d-815034ae3f2e
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;85426090-a5a5-11ed-984d-02421841e16c
content-length: 42
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:24 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:24 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 92e6ca8c22e74c3a9f5d815034ae3f2e, 1fb4433f9ac8d6107b78356981424e25
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/cl/1x1.gif?gcoAgent=false&live=true&pageName=unknown&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&logTime=2023-02-05T22:37:06.428Z&sessionDuration=0&action=logTrxEvent&navTiming_elapsedTime=NaN&unloadTime=NaN&redirectTime=NaN&dnsTime=79&connectionTime=13&requestTime=816&responseTime=103&parsingTime=823&domReadyCallbackTime=NaN&onLdCallbackTime=NaN&processingTime=NaN&navigationToResponse=2493&navigationToDomContentLoaded=NaN&navigationToOnLd=NaN&fetchToResponse=909&fetchToDomContentLoaded=NaN&fetchToOnLd=NaN&responseToDomContentLoaded=NaN&responseToOnLd=NaN&navigationToDomInteractive=3328
104.110.17.60204 No Content 0 B URL HTTP/2 no.hotels.com/cl/1x1.gif?gcoAgent=false&live=true&pageName=unknown&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&logTime=2023-02-05T22:37:06.428Z&sessionDuration=0&action=logTrxEvent&navTiming_elapsedTime=NaN&unloadTime=NaN&redirectTime=NaN&dnsTime=79&connectionTime=13&requestTime=816&responseTime=103&parsingTime=823&domReadyCallbackTime=NaN&onLdCallbackTime=NaN&processingTime=NaN&navigationToResponse=2493&navigationToDomContentLoaded=NaN&navigationToOnLd=NaN&fetchToResponse=909&fetchToDomContentLoaded=NaN&fetchToOnLd=NaN&responseToDomContentLoaded=NaN&responseToOnLd=NaN&navigationToDomInteractive=3328
IP 104.110.17.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cl/1x1.gif?gcoAgent=false&live=true&pageName=unknown&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&logTime=2023-02-05T22:37:06.428Z&sessionDuration=0&action=logTrxEvent&navTiming_elapsedTime=NaN&unloadTime=NaN&redirectTime=NaN&dnsTime=79&connectionTime=13&requestTime=816&responseTime=103&parsingTime=823&domReadyCallbackTime=NaN&onLdCallbackTime=NaN&processingTime=NaN&navigationToResponse=2493&navigationToDomContentLoaded=NaN&navigationToOnLd=NaN&fetchToResponse=909&fetchToDomContentLoaded=NaN&fetchToOnLd=NaN&responseToDomContentLoaded=NaN&responseToOnLd=NaN&navigationToDomInteractive=3328 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
content-type: text/html;charset=UTF-8
trace-id: 03af5053-ad27-416c-890b-85378f9bf3b2
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;854b3a13-a5a5-11ed-be50-02422117d78b
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:24 GMT
set-cookie: cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:24 GMT; Path=/; Domain=hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:24 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 03af5053ad27416c890b85378f9bf3b2, c7f0e4e47a714b48f655cb6c25991a41
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ba49f1fc7f2f554049e6761ba03e37b
687a48ce650668c484bfda4b50fd202977bb85de
256310e4ec423d30bb346e06ff441daf493641a12ad9e208a2cdf90a0fcbf6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6406
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:36:24 GMT
Last-Modified: Sun, 05 Feb 2023 20:49:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
cdn.tagcommander.com/6035/tc_hcom_prod.js
23.13.251.114200 OK 16 kB URL HTTP/2 cdn.tagcommander.com/6035/tc_hcom_prod.js
IP 23.13.251.114:0
File type ASCII text, with very long lines (24821), with CRLF, LF line terminators
Hash 5245557482487a7075e40cc15e231ffc
01b11fe07d6b83accd7dac54e0ccde4256d92173
40df06277ca62864ba71b571be89047537545f56d39df1bbe9473d288b875bd3
GET /6035/tc_hcom_prod.js HTTP/1.1
Host: cdn.tagcommander.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript
etag: "2114586d0acfe32c0cf9ef16731ab4c9+gzip"
last-modified: Tue, 01 Nov 2022 09:39:24 GMT
server: ECS (frb/67DF)
vary: Accept-Encoding
x-amz-id-2: r+oUwXWxcW/iQcHqwgSASpOh1uOMFa50ifjE9NihzuGD3EmXqLzRlGPGFN9AwX757VwX0YL7H2g=
x-amz-request-id: JXJZ46MCGX3XV05G
x-cdn: VDMS
content-length: 16126
cache-control: must-revalidate, max-age=86400
date: Sun, 05 Feb 2023 22:36:24 GMT
access-control-max-age: 31536000
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
x-ata: nar
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426
52.31.194.68302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426
IP 52.31.194.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.hotels.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0ebeee8d5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=38832096634358519952994149692837083362; Max-Age=15552000; Expires=Fri, 04 Aug 2023 22:36:26 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: rbAnvRMfRF8=
Content-Length: 0
Connection: keep-alive
www.uciservice.com/assets/md-libs/1.0/ss-resources/meso-ssads.bundle.es5.js
104.110.9.240200 OK 13 kB URL HTTP/2 www.uciservice.com/assets/md-libs/1.0/ss-resources/meso-ssads.bundle.es5.js
IP 104.110.9.240:0
File type ASCII text, with very long lines (9781)
Hash bdb59d23a5d25fb4a1d8c32bf478fb7d
39413e7f4d5fdda76814b602513de43f636069e5
dcc95a5b35e0231bd8186566599b52f4e61d9db399851c2c7fc41c720e339a4e
GET /assets/md-libs/1.0/ss-resources/meso-ssads.bundle.es5.js HTTP/1.1
Host: www.uciservice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Xa+Q5+8xT984y3DnnW7oVyK8huZdsqHu2eP6lIEQQM+92IewI9j1Z0n9puAApO68l2bOZmAWcyM=
x-amz-request-id: W566W8WFAFFXM4Z0
last-modified: Thu, 19 Jan 2023 17:38:08 GMT
etag: "c91cc02dadb91eab23900ba30929dff5"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=175
date: Sun, 05 Feb 2023 22:36:24 GMT
content-length: 13023
X-Firefox-Spdy: h2
cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/osano.js
143.204.55.15200 OK 87 kB URL HTTP/2 cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/osano.js
IP 143.204.55.15:0
File type Unicode text, UTF-8 text, with very long lines (65472)
Hash 7b8d473fe2d2099ff33f918803dead0d
8b9b17893193d14d8bee6a19513f9524f5a0978a
bb6d51d913748ad57c045ad44957b07836369d1973ada5504f0fa2c1421f3209
GET /AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/osano.js HTTP/1.1
Host: cmp.osano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 87034
server: CloudFront
last-modified: Fri, 05 Aug 2022 14:58:48 GMT
content-encoding: br
cache-control: public, max-age=86400, s-maxage=86400, must-revalidate, proxy-revalidate, no-transform
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: mode=block
x-content-type-options: nosniff
date: Sun, 05 Feb 2023 22:23:53 GMT
etag: "1d9720575b6b1276aed7f0678fe7ff3f"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fQZMy1bNlxSsIkP_vDkM2Fgnf8mLG3bnWGu9hyFptRnTHLaPWuKkHA==
age: 751
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/blossom-editorial.5c4801175dd3d5ce2fe0.js
23.38.200.200200 OK 536 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/blossom-editorial.5c4801175dd3d5ce2fe0.js
IP 23.38.200.200:0
Hash 7d72800408018dd288c6ec49ad8137b3
8f78901c0f71bae36524319a764e266bd6ac7283
ae83d522fb80ced4ece1ae33637da59c02ee6e6f1d7077f7ba507ec92a070545
GET /blossom-flex-ui/blossom-editorial.5c4801175dd3d5ce2fe0.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "20a6de54f9b3de50d7105807dceebae7"
last-modified: Thu, 12 Jan 2023 21:12:34 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: WijLBRLlkUCq8+E729OyB5JyplDAb2cpcG1cLENiSArsoMsQweuhmqO6NpWFFpxczIRGEXjJntk=
x-amz-request-id: 887Q877W4CPMEA4P
x-amz-version-id: W_T.aP9E3Tff5sePPVZ_2Tc_Rdr1XmrX
content-length: 1047
cache-control: public, max-age=244729
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
104.110.17.60200 OK 149 kB URL HTTP/2 no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
IP 104.110.17.60:0
Size 149 kB (149183 bytes)
Hash 383d13a70cb860e295ca823c086ab24a
dff6610311a0ee22ca67bf0efc1ab3649f90d44e
ae311dda4ee593fbf8822ee170d789bff571b2c95d294f17091594c685c27b32
GET /?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-language: nb-NO
content-type: text/html; charset=utf-8
server: istio-envoy
strict-transport-security: max-age=15768000
trace-id: c4fab50e-b827-4395-b7ff-6b7600edaee8
x-app-info: blossom-flex-ui,a3b459a452d38cd222d1ce3408e1fda2310ad268
x-cgp-info: noJvmRouteSet;8434e80e-a5a5-11ed-99da-0242b0216d89
x-download-options: noopen
x-envoy-upstream-service-time: 680
x-page-id: Homepage,U,10
x-edgeconnect_guid_debug:
x-akamai-transformed: 9 - 0 pmb=mTOE,1
content-encoding: gzip
expires: Sun, 05 Feb 2023 22:36:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:23 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157679999; Expires=Fri, 04 Feb 2028 22:36:22 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
CRQSS=e|12; Path=/; Domain=.hotels.com; Secure; HTTPOnly; SameSite=None
CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; Max-Age=94607999; Expires=Wed, 04 Feb 2026 22:36:22 GMT; Path=/; Domain=.hotels.com; Secure; HTTPOnly; SameSite=None
currency=NOK; Max-Age=157679999; Expires=Fri, 04 Feb 2028 22:36:22 GMT; Path=/; Domain=.hotels.com; Secure; HTTPOnly; SameSite=None
iEAPID=12; Path=/; Domain=.hotels.com; Secure; SameSite=None
tpid=v.1,3109; Max-Age=999999; Expires=Fri, 17 Feb 2023 12:23:02 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:23 GMT; Path=/; Domain=hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:23 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:23 GMT; Secure; SameSite=None
DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:23 GMT; Secure; SameSite=None
MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:23 GMT; Domain=.no.hotels.com; Secure; SameSite=None
DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:23 GMT; Domain=.no.hotels.com; Secure; SameSite=None
MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:23 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:23 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
OIP=gdpr|-1; Max-Age=94608000; Expires=Wed, 04 Feb 2026 22:36:23 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
CRAS=HCOM-NO.DIRECT.PHG.1011l45458; Max-Age=604800; Expires=Sun, 12 Feb 2023 22:36:23 GMT; Path=/; Domain=.hotels.com; Secure; HTTPOnly; SameSite=None
akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; path=/; Expires=Thu, 06 Apr 2023 22:36:23 GMT; Secure; SameSite=None
_abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kFzkviBGGAQAASSu5IwnUxJAgjITSPgV3NS+Ju02nx8Y2+fCZH31YU0l36YXqGeIDF9ZrDVRYkelQ9rbsLrSKssIB1ndQpKXvUr2HzCLCVf1jdXKvMUqq4TprhHiOjhTFqwuJuIb+N5ce6S6PbG/LgX29FeIY60t83eBAqSpO4sU5rAID+c47XN1peQOBSjcfHtnepYIa0bcVPYK0KgTziBBVkq7Az0uV4abpbPga8sAU0IAeBpNhfJvfXDvdELQ7ZsaCHxB2l7Fva3VnlqrWqHU9LZgNKNuWugtkVxcvxr1HHF5qVGJyFKu+5sUnY/yxABP8zECNqBhqDNkXWXDJiKd6itNOtSTFDivYTy/fJ8hNSCotlxCh~-1~-1~-1; Domain=.hotels.com; Path=/; Expires=Mon, 05 Feb 2024 22:36:23 GMT; Max-Age=31536000; Secure
bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; Domain=.hotels.com; Path=/; Expires=Mon, 06 Feb 2023 02:36:22 GMT; Max-Age=14399
vary: Accept-Encoding, User-Agent
x-b3-traceid: c4fab50eb8274395b7ff6b7600edaee8, 1a3137c05412b085929d7b6c95a04af1
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1
X-Firefox-Spdy: h2
no.hotels.com/cl/1x1.gif?action=logTrxEvent&logTime=2023-02-05T22%3A37%3A07.058Z&pageName=Homepage&hydration=3730&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&label=Application&Application_elapsedTime=737&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
104.110.17.60204 No Content 0 B URL HTTP/2 no.hotels.com/cl/1x1.gif?action=logTrxEvent&logTime=2023-02-05T22%3A37%3A07.058Z&pageName=Homepage&hydration=3730&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&label=Application&Application_elapsedTime=737&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
IP 104.110.17.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cl/1x1.gif?action=logTrxEvent&logTime=2023-02-05T22%3A37%3A07.058Z&pageName=Homepage&hydration=3730&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&label=Application&Application_elapsedTime=737&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
content-type: text/html;charset=UTF-8
trace-id: f336f002-da7e-47dd-a770-380d21036598
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;85adf3e1-a5a5-11ed-958f-0242cf8ec2c5
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: f336f002da7e47dda770380d21036598, 1d2f51eaebc90f1086e26526b07deae1
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/api/uisprime/track
104.110.17.60200 OK 4.5 kB URL HTTP/2 no.hotels.com/api/uisprime/track
IP 104.110.17.60:0
File type JSON data\012- , ASCII text, with very long lines (4514), with no line terminators
Hash bce42429a45934396cf78ab8ac1f685f
dd1c6ca68d137394a09e1638e881ab2e72e2dce6
adab1a6fa52ea6be9024ff3483685e79343776270761b4382e277805ba128899
POST /api/uisprime/track HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 528
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
activity-id: a04a041d-6f1c-4c03-83c4-44356dcc853c
content-type: application/json;charset=UTF-8
trace-id: a04a041d-6f1c-4c03-83c4-44356dcc853c
x-cgp-info: noJvmRouteSet;85bb39d4-a5a5-11ed-8b64-02429f93f934
x-page-id: page.UisPrimeTrack,U,0
content-length: 4514
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: a04a041d6f1c4c0383c444356dcc853c, 6e7b31e0b5b176afcca7f6139c66cd21
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426
52.31.194.68200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426
IP 52.31.194.68:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&ts=1675636626426 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.hotels.com
Content-Type: application/x-www-form-urlencoded
Referer: https://no.hotels.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.hotels.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0ff225fd5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: WUBfcD5pTcI=
Content-Length: 124
Connection: keep-alive
no.hotels.com/api/uisprime/track
104.110.17.60200 OK 4.5 kB URL HTTP/2 no.hotels.com/api/uisprime/track
IP 104.110.17.60:0
File type JSON data\012- , ASCII text, with very long lines (4514), with no line terminators
Hash 0d1b51724ed453672b06f72c966c660e
576907adb83ac858233fce63af4cd710dfa95a57
727ddc8fe9eae09a9a376476b93dff21417cc613a22dd52944d4040c6e578eef
POST /api/uisprime/track HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 528
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
activity-id: 63adb14e-47da-45d6-a49e-ae841ee24c65
content-type: application/json;charset=UTF-8
trace-id: 63adb14e-47da-45d6-a49e-ae841ee24c65
x-cgp-info: noJvmRouteSet;85bac4fb-a5a5-11ed-bebb-0242ba8c7a3c
x-page-id: page.UisPrimeTrack,U,0
content-length: 4514
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 63adb14e47da45d6a49eae841ee24c65, faf9ba2aaca4f92ecfcaaf0faa827b6c
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.179Z&pageName=Homepage&time=801&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_COMPLETE)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
104.110.17.60202 Accepted 42 B URL HTTP/2 no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.179Z&pageName=Homepage&time=801&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_COMPLETE)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
IP 104.110.17.60:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.179Z&pageName=Homepage&time=801&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DINFO%20name%3DAPP_HYDRATION_COMPLETE)&label=bernie.client.hydrate&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 202 Accepted
content-type: image/gif;charset=UTF-8
trace-id: 9ab8346f-2c9f-4397-af9e-af5d0170531b
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;85bbfdc4-a5a5-11ed-9d4c-02421cbe0baf
content-length: 42
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 9ab8346f2c9f4397af9eaf5d0170531b, 9e006e7523bb207e6e71ea1d815bce09
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/api/uisprime/track
104.110.17.60200 OK 4.5 kB URL HTTP/2 no.hotels.com/api/uisprime/track
IP 104.110.17.60:0
File type JSON data\012- , ASCII text, with very long lines (4514), with no line terminators
Hash 3c957edab97ffbdc2801c3b3abffe252
b72a2040b3b8b1afdf050b2fe6417265139f4cb6
0d440d1aa369830d1444f738a22efdd193238fabd0d115cf97f7f4bf722f5602
POST /api/uisprime/track HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 550
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636584363%5D%2C%22hitNumber%22%3A%5B%222%22%2C1675636584363%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636584363%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636584363%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
activity-id: 67ed6117-9814-442a-83cd-667946badb42
content-type: application/json;charset=UTF-8
trace-id: 67ed6117-9814-442a-83cd-667946badb42
x-cgp-info: noJvmRouteSet;85c880e9-a5a5-11ed-b049-0242f39b5c20
x-page-id: page.UisPrimeTrack,U,0
content-length: 4514
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 67ed61179814442a83cd667946badb42, 4e493b8d635e31f107933104203bf208
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cmp.osano.com/
143.204.55.15200 OK 809 B IP 143.204.55.15:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 55e0b6ef880baa3d84d21249c0afd423
57f049b630e5b68b2167ce255e9cd83fbe3bd91d
87582a828d6461f2e80b35483ef2035319d1687de3a4854fdaae33d255cbe44c
GET / HTTP/1.1
Host: cmp.osano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 21 Oct 2021 22:01:08 GMT
x-amz-version-id: xT1PkIFehetvNf5lINcU02FbT3u47kBr
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 10:16:00 GMT
etag: W/"287b497c992487af362d33204f87d28f"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S1RcGlnr9WLAkBQ48Hr8AszqLPCg1NAQtcVuMArAanEA63YrzauCCA==
age: 60021
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
no.hotels.com/api/uisprime/track
104.110.17.60200 OK 5.5 kB URL HTTP/2 no.hotels.com/api/uisprime/track
IP 104.110.17.60:0
File type JSON data\012- , ASCII text, with very long lines (5549), with no line terminators
Hash 40df097fb62477493c02b2eca76b19d0
a67b15b940bfce2308ef7c0259da61c4e2f0af2a
6cc6e51126da09f7f50b47c12b2b0a34d5d02621ef317458ddda27ace4368f4d
POST /api/uisprime/track HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 590
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
activity-id: 6eaa590b-9c4f-431a-b441-b0bf01cb1d17
content-type: application/json;charset=UTF-8
trace-id: 6eaa590b-9c4f-431a-b441-b0bf01cb1d17
x-cgp-info: noJvmRouteSet;85e61afa-a5a5-11ed-a1fa-02429540840e
x-page-id: page.UisPrimeTrack,U,0
content-length: 5549
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 6eaa590b9c4f431ab441b0bf01cb1d17, a395cf75cc605ae3281d8ad745aef50e
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
104.110.17.60201 Created 18 B URL HTTP/2 no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
IP 104.110.17.60:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3098
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: d013b9e8-f9c1-41a0-9ca9-b8599d09c833
date: Sun, 05 Feb 2023 22:36:25 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://no.hotels.com
access-control-allow-headers: Content-Type
x-b3-traceid: 65549198eb17c05801986b0553d771b5
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
x-edgeconnect_guid_debug:
set-cookie: _abck=842848B62C6FED724E71F2F7906FF1CB~0~YAAQj08kF4sviBGGAQAA6jO5Iwm1UD0V/KjkGEHY2Bg4sTdZ8n8o8FVLu6EhUwbd1gdHK4daWAkIbK9Z+iLxSdxB9ENyIlRz0EVec7tSSyDQcgbI/7iLJ1ZVPPEVh6uNLi/tXQskBzU6tibzAeH5bZrz4iaBk04NtI2xx9Ep3lGIkbOACgQyiYwS2zJhras7tHkFJX/X+9Rj8cWY0smhT3zEMmR6qAT4DP+ROW/ESZOtqX+kmxB9hwjn6WNmXNrrZ+uFJwUl1u1qwiwjn22BW/tF3vd5PFGAkrgAyqPUyhe/B1Wt7d8valDehew2M94Egrpq5oBP99tEqoMLJshgfTk4e1nPdw6Sj4kY7pL/SO/n9sIM6Ak9Tp3qBhYfRiDJynNbVtxZytCAh5P78oSg1InT5xy2AXULvQ==~-1~-1~-1; Domain=.hotels.com; Path=/; Expires=Mon, 05 Feb 2024 22:36:25 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
b.travel-assets.com/travel-pixel-js/1.0.0/config/no.hotels.com-prod-config.json
23.38.200.200200 OK 373 B URL HTTP/2 b.travel-assets.com/travel-pixel-js/1.0.0/config/no.hotels.com-prod-config.json
IP 23.38.200.200:0
File type JSON data\012- , ASCII text
Hash 21decbfc158c241f6ba2129bbc94b393
5ecabd0ee7c051c7ad0bc2b3caaa475db3ae4c22
77e64cd1e91adb5fcfe2b360fee0eb5637e240c12c8798b2789543dfe81697de
GET /travel-pixel-js/1.0.0/config/no.hotels.com-prod-config.json HTTP/1.1
Host: b.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: jur8MilQ7FzuE9pfwp+dfaexTzcRSS0EWZ2m+Ff9wTm9sbmMLqk6LRpbYG3koZ4RZ8iIOIJBPNg=
x-amz-request-id: M3XH43YDGNXNRZVF
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 15 Dec 2022 18:37:22 GMT
etag: "21decbfc158c241f6ba2129bbc94b393"
x-amz-version-id: sXo6KjherCVnvHiUM70Hk7UpEtk2a6eI
accept-ranges: bytes
content-type: application/json
server: AmazonS3
content-length: 373
cache-control: public, max-age=600
date: Sun, 05 Feb 2023 22:36:25 GMT
access-control-max-age: 3000
access-control-allow-methods: GET
access-control-allow-origin: *
set-cookie: ak_bmsc=998AC689B698AA4EED2AE41B515B8B43~000000000000000000000000000000~YAAQBE8kFzYmS9KFAQAACjS5IxIEJQLalauEd6U/SARNbvduG9VJzi/wmhm8gQsWQnbWIa9xKZV7bbEmZD3SqIHepFBLw+R+8t35isqR4wrw4oJpKQJhAOLtUO2iYdQmWNjdmKnsPsYN+6Z9o9t5+tHMzRmNnrPD6FmOKa544+MLke5UWd2/1paKFqtPhdJLXaQe21C+FDTTf/YPfi2xsKWFLMYuwdO9mdPFKS9LddYuO+QoRPQI5c9/sYaqaVdkpuItEd6TpcdkT3DIMQEzC9ZSxN6Qkd5nyBhdvfDkt69okZLaEJ4RfJlVzBIVLn4RD273dtBxBMt+nxz82jLzmtcIzRBUKtjKR/6cwQfi0IouzRCcNGeSlbROUZTPDYylJgSbMfjOdjbx8BcI44dqQQ==; Domain=.travel-assets.com; Path=/; Expires=Mon, 06 Feb 2023 00:36:25 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 84934438e24f3e7015d107a870c55812
f96f34005726c306da7d30e351de79630afa9278
848add9fd7fd7fc13da21ce620348ecb7083c822622c9d234fd518068c5e6599
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5671
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:36:25 GMT
Last-Modified: Sun, 05 Feb 2023 21:01:54 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
104.110.17.60201 Created 18 B URL HTTP/2 no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
IP 104.110.17.60:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3465
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: e28de9ca-3d0d-4067-98bc-982d5e89edea
date: Sun, 05 Feb 2023 22:36:25 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://no.hotels.com
access-control-allow-headers: Content-Type
x-b3-traceid: d45b7191d099630bcbe2828b98b4ad87
content-security-policy: default-src 'unsafe-inline' data: about: hcom: blob: callback: chrome-error: *; script-src 'unsafe-eval' 'unsafe-inline' data: about: blob: asset: *; report-uri https://hcom.report-uri.com/r/t/csp/enforce
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
x-edgeconnect_guid_debug:
set-cookie: _abck=842848B62C6FED724E71F2F7906FF1CB~0~YAAQj08kF5MviBGGAQAAFTS5IwlDxhj4wt7jOSFmBjND0MCDWsN1aWayPuNdfL/jfbkr2KpEhuCRm0Az00IFR/IErKi1v7ztRI65QFAw4xeLBt7iB58etbt/iXxrVMUIGiFZo8Qkd7jimGh4sgwQG9mcj48EMJ0Ffb2QJ5cx/Of2ES7G5lIKGr61Cez9agav7Wxu/ZmW8tWkcJ1XIf8hUgKWP8pMkp8fYwFR/0Jjld51SG/KWEKUeqV/ftkh1Dk+ZKExbp6ralJyIzaA7DkFbgMiSoIzXXXUbZE5Hk1Md1USMA+797IECk9Ab0yblCOKSqqaAcj+2XBabwtWqYM/5kgp+1m+sxd2Zt2zXJRFgeALUYOQxMmvYo+stHeUd5B4WOQ/BPa5w4gKFqhZbwxboRraLpq3vCthfA==~-1~-1~-1; Domain=.hotels.com; Path=/; Expires=Mon, 05 Feb 2024 22:36:25 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.535Z&pageName=Homepage&message=failed%20to%20fetch%20MeSo%20ad%2Ccode%3DFETCH-ADS-FAIL%20isTimeout%3Dfalse%20src%3Dads-delivery-interface.onFetchAdsFailure()%20type%3DLoadResourcesSkipped%20info%3D%5Bobject%20Object%5D&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DWARN%20name%3DMESO_AD_LOAD_FAIL)&label=NativeAd&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
104.110.17.60202 Accepted 42 B URL HTTP/2 no.hotels.com/cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.535Z&pageName=Homepage&message=failed%20to%20fetch%20MeSo%20ad%2Ccode%3DFETCH-ADS-FAIL%20isTimeout%3Dfalse%20src%3Dads-delivery-interface.onFetchAdsFailure()%20type%3DLoadResourcesSkipped%20info%3D%5Bobject%20Object%5D&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DWARN%20name%3DMESO_AD_LOAD_FAIL)&label=NativeAd&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
IP 104.110.17.60:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cl/2x2.gif?action=logErrors&logTime=2023-02-05T22%3A37%3A07.535Z&pageName=Homepage&message=failed%20to%20fetch%20MeSo%20ad%2Ccode%3DFETCH-ADS-FAIL%20isTimeout%3Dfalse%20src%3Dads-delivery-interface.onFetchAdsFailure()%20type%3DLoadResourcesSkipped%20info%3D%5Bobject%20Object%5D&siteId=300000012&eapid=12&tpid=3109&appId=blossom-flex-ui&langid=1044&locale=nb_NO&guid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225&visitid=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225_1675636626335&pwa=true&systemEvent=SystemEvent(level%3DWARN%20name%3DMESO_AD_LOAD_FAIL)&label=NativeAd&url=%22https%3A%2F%2Fno.hotels.com%2F%3Frffrid%3Daff.hcom.NO.038.000.1011l45458.kwrd%3D1011lwwIfvgf%26affcid%3DHCOM-NO.DIRECT.PHG.1011l45458%26afflid%3D1011lwwIfvgf%22&domain=no.hotels.com&browser_name=Firefox&browser_version=105.0&browser_major=105&device_vendor=undefined&device_model=undefined&device_type=undefined&engine_name=Gecko&engine_version=105.0&os_name=Windows&os_version=10&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585284%5D%2C%22hitNumber%22%3A%5B%224%22%2C1675636585284%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585284%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585284%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3593; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 202 Accepted
content-type: image/gif;charset=UTF-8
trace-id: a4d7e46b-dc77-4704-b0c2-b7d30550906f
x-app-info: collector-web,1df36e4519a754f2d21ce5d855910b945432e3d0
x-cgp-info: noJvmRouteSet;85f42485-a5a5-11ed-adaa-024227f8ff0b
content-length: 42
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: a4d7e46bdc774704b0c2b7d30550906f, be04c6acd9a6c186993fbffce7132f42
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
oms.expedia.com/id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=C00802BE5330A8350A490D4C%40AdobeOrg&ts=1675636627530
15.236.125.10200 OK 48 B URL HTTP/2 oms.expedia.com/id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=C00802BE5330A8350A490D4C%40AdobeOrg&ts=1675636627530
IP 15.236.125.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c334ea87167ca685b03c3ae2307db838
f2adb4de04668919e274efce26f74b1ea4dd447d
00c015cb4559f41b5f2b7d2adc7de073457603f9f5da226b4c1ef1117e067cba
GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&mcorgid=C00802BE5330A8350A490D4C%40AdobeOrg&ts=1675636627530 HTTP/1.1
Host: oms.expedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://no.hotels.com
access-control-allow-credentials: true
date: Sun, 05 Feb 2023 22:36:25 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=0%7CMCMID%7C69551170079543967682227148435661460670; Path=/; Domain=expedia.com; Max-Age=63072000; Expires=Tue, 04 Feb 2025 22:36:36 GMT; SameSite=None; Secure
s_ecid=MCMID%7C69551170079543967682227148435661460670; Path=/; Domain=expedia.com; Max-Age=63072000; Expires=Tue, 04 Feb 2025 22:36:36 GMT; SameSite=None; Secure
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json
143.204.55.15200 OK 0 B URL HTTP/2 cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json
IP 143.204.55.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json HTTP/1.1
Host: cmp.osano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 05 Feb 2023 22:36:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2gE0eiLnCErBbIRWgg1zzs37d94NIwPoDuQyaNEnm3KGkJ-fKIZlYw==
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json
143.204.55.15200 OK 5.1 kB URL HTTP/2 cmp.osano.com/AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json
IP 143.204.55.15:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17241), with no line terminators
Hash 3e78e84d85f206b1a8f77ce0ca8d54cc
b39a9113457b64d26870d3a818e14de7c89efce4
c30714eea694660c73816041c5849e401cae1f102918201c7f9ec803f621f6d1
GET /AzqLGwSC5AMNnWKx/307dce4e-7763-4ef2-956c-678d347e3a0d/nb.json HTTP/1.1
Host: cmp.osano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
last-modified: Fri, 05 Aug 2022 14:58:45 GMT
x-amz-version-id: Voyi4S.hS9apn5zu1JjkmpJ9i1zxPW3a
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 06:44:59 GMT
cache-control: max-age=86400, no-transform, public
etag: W/"ce7fb7963d2cd212a4f8de6c283ebe60"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HMqCpJN9vrcZNA0oeOmdGBkTYVkOidUGvS9-663I5JL_0wK8tP1ANA==
age: 57087
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&d_mid=69551170079543967682227148435661460670&ts=1675636627853
52.31.194.68200 OK 206 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=4.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&d_mid=69551170079543967682227148435661460670&ts=1675636627853
IP 52.31.194.68:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fdee528f8f65a72d5542574a59f3ea07
f0c99a1c5e2a497d8ad84a3d39631fc01e2d2908
1ebdc6b9ee97ff07d4861b308d7c6256c0320e4ccf9109ec7761113a161d39f0
GET /id?d_visid_ver=4.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=C00802BE5330A8350A490D4C%40AdobeOrg&d_nsid=0&d_mid=69551170079543967682227148435661460670&ts=1675636627853 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.hotels.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-0b398da67.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=69829980133010167532199293806243584623; Max-Age=15552000; Expires=Fri, 04 Aug 2023 22:36:25 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Ji8yB0UCTzo=
Content-Length: 206
Connection: keep-alive
no.hotels.com/cgp/simple/amcv.set?traceIdOfTheView=c4fab50e-b827-4395-b7ff-6b7600edaee8
104.110.17.60204 No Content 0 B URL HTTP/2 no.hotels.com/cgp/simple/amcv.set?traceIdOfTheView=c4fab50e-b827-4395-b7ff-6b7600edaee8
IP 104.110.17.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgp/simple/amcv.set?traceIdOfTheView=c4fab50e-b827-4395-b7ff-6b7600edaee8 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585284%5D%2C%22hitNumber%22%3A%5B%224%22%2C1675636585284%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585284%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585284%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~0~YAAQj08kF5MviBGGAQAAFTS5IwlDxhj4wt7jOSFmBjND0MCDWsN1aWayPuNdfL/jfbkr2KpEhuCRm0Az00IFR/IErKi1v7ztRI65QFAw4xeLBt7iB58etbt/iXxrVMUIGiFZo8Qkd7jimGh4sgwQG9mcj48EMJ0Ffb2QJ5cx/Of2ES7G5lIKGr61Cez9agav7Wxu/ZmW8tWkcJ1XIf8hUgKWP8pMkp8fYwFR/0Jjld51SG/KWEKUeqV/ftkh1Dk+ZKExbp6ralJyIzaA7DkFbgMiSoIzXXXUbZE5Hk1Md1USMA+797IECk9Ab0yblCOKSqqaAcj+2XBabwtWqYM/5kgp+1m+sxd2Zt2zXJRFgeALUYOQxMmvYo+stHeUd5B4WOQ/BPa5w4gKFqhZbwxboRraLpq3vCthfA==~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3593; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
trace-id: 301bab19-e23f-4ee3-b6d5-d05710158664
x-cgp-info: noJvmRouteSet;862d0ed2-a5a5-11ed-8b64-02429f93f934
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 301bab19e23f4ee3b6d5d05710158664, 3399bfeefb6827e7c766a9d29ce43aac
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
oms.expedia.com/b/ss/expediaglobal/10/JS-2.6.0/s16942905342163
15.236.125.10200 OK 97 B URL HTTP/2 oms.expedia.com/b/ss/expediaglobal/10/JS-2.6.0/s16942905342163
IP 15.236.125.10:0
File type JSON data\012- , ASCII text
Hash 5f58c7313366b83fa073d0da3b9a7fb4
99c93211989dbae33786799293cf17a963450596
a33caff8338cee3a46d72afe93ad272ea5d2d158e14a00c8164333960fe738a6
POST /b/ss/expediaglobal/10/JS-2.6.0/s16942905342163 HTTP/1.1
Host: oms.expedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1680
Origin: https://no.hotels.com
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://no.hotels.com
access-control-allow-credentials: true
date: Sun, 05 Feb 2023 22:36:25 GMT
expires: Sat, 04 Feb 2023 22:36:25 GMT
last-modified: Mon, 06 Feb 2023 22:36:25 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598402166814310400-4619617905864415820
vary: *
dcs: dcs-prod-irl1-1-v045-040129606.edge-irl1.demdex.com 3 ms
x-aam-tid: 1AZDxqH8QvA=
content-type: application/x-javascript;charset=utf-8
content-length: 97
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.trvl-px.com/trvl-px/v2/get
23.36.79.18200 OK 12 B URL HTTP/2 www.trvl-px.com/trvl-px/v2/get
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash 80fe7f8b905f86af731ef2792a55ebc0
d6a3a5d6a932f7cf849740105e3f06f2e4d3ac99
0ebc2d6f050bfd5e00087a840a975d900589c4aa2c1e7cab4d64be8d4639856b
GET /trvl-px/v2/get HTTP/1.1
Host: www.trvl-px.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-origin: https://no.hotels.com
content-type: application/json
server: openresty/1.15.8.2
trace-id: e6dd014b-428e-4414-bdff-58e09a393bb8
x-b3-traceid: e6dd014b428e4414bdff58e09a393bb8
x-cgp-info: noJvmRouteSet;863b66e7-a5a5-11ed-86b9-02422f18b772
content-length: 12
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: MC1=GUID=d169b7198458413882430d7a3d48e7cc; Expires=Sun, 05 Feb 2023 22:36:24 GMT; Secure; SameSite=None
DUAID=d169b719-8458-4138-8243-0d7a3d48e7cc; Expires=Sun, 05 Feb 2023 22:36:24 GMT; Secure; SameSite=None
MC1=GUID=d169b7198458413882430d7a3d48e7cc; Expires=Sun, 05 Feb 2023 22:36:24 GMT; Domain=.www.trvl-px.com; Secure; SameSite=None
DUAID=d169b719-8458-4138-8243-0d7a3d48e7cc; Expires=Sun, 05 Feb 2023 22:36:24 GMT; Domain=.www.trvl-px.com; Secure; SameSite=None
MC1=GUID=d169b7198458413882430d7a3d48e7cc; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.trvl-px.com; Secure; SameSite=None
DUAID=d169b719-8458-4138-8243-0d7a3d48e7cc; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:25 GMT; Path=/; Domain=.trvl-px.com; Secure; SameSite=None
ak_bmsc=8A70B292641DB6BE078A5EDAC057643C~000000000000000000000000000000~YAAQDk8kF66fFtSFAQAAqzW5IxL4aTdJkJFEInD6r00osH7lyoAGwU79y3f4UvTyzV1C2EtbWrsHUhrEqlpmT3HSMPCJH9hb4tPxKoVzYG54+GipYs3DrvOdHtGaBgRreSQX+08DNq9Hw/txo88DFBr/hWoOvZpBTW5J3RSiVcBtYVftYiAPUI1/uyX0X757T2SCAYKMCoth2arwATEpfWV4G1OczYcqw7lOYshAItaASRgWgv5aOvuGl5I1gnPpg59V3ZMur8PQQaCmejNZc/glYQ3YmZKQlXI3psHt/YPrFHeSxShNj09PUuR/uVYYkQzPi3T9SG1dffFax1oZKBvzetp33SVc/WC9eeS9/lFqfD9GkiHMidRvqfmiMLFhLJIenSNpeQCVXg==; Domain=.trvl-px.com; Path=/; Expires=Mon, 06 Feb 2023 00:36:25 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
no.hotels.com/kesstatic/b593c2583e9df19f1490.png
104.110.17.60200 OK 344 B URL HTTP/2 no.hotels.com/kesstatic/b593c2583e9df19f1490.png
IP 104.110.17.60:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash f447504ff02d45373b4df1e4669b350e
660cb3f02eca1dd7809c140b7cf8ed2d108b7960
9e3dca75e9dc2dc16a1e6098c0bf6dfcb62f141e3c2393b499e8083002f0e597
GET /kesstatic/b593c2583e9df19f1490.png HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Connection: keep-alive
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585284%5D%2C%22hitNumber%22%3A%5B%224%22%2C1675636585284%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585284%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585284%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~0~YAAQj08kF5MviBGGAQAAFTS5IwlDxhj4wt7jOSFmBjND0MCDWsN1aWayPuNdfL/jfbkr2KpEhuCRm0Az00IFR/IErKi1v7ztRI65QFAw4xeLBt7iB58etbt/iXxrVMUIGiFZo8Qkd7jimGh4sgwQG9mcj48EMJ0Ffb2QJ5cx/Of2ES7G5lIKGr61Cez9agav7Wxu/ZmW8tWkcJ1XIf8hUgKWP8pMkp8fYwFR/0Jjld51SG/KWEKUeqV/ftkh1Dk+ZKExbp6ralJyIzaA7DkFbgMiSoIzXXXUbZE5Hk1Md1USMA+797IECk9Ab0yblCOKSqqaAcj+2XBabwtWqYM/5kgp+1m+sxd2Zt2zXJRFgeALUYOQxMmvYo+stHeUd5B4WOQ/BPa5w4gKFqhZbwxboRraLpq3vCthfA==~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3593; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "f447504ff02d45373b4df1e4669b350e:1622209697.166588"
last-modified: Fri, 28 May 2021 13:48:17 GMT
server: AkamaiNetStorage
content-length: 344
x-edgeconnect_guid_debug:
date: Sun, 05 Feb 2023 22:36:25 GMT
x-b3-traceid: 8dc77f7960d2161b787a76fa7630a731
strict-transport-security: max-age=31536000
cache-control: public,max-age=31536000,immutable
X-Firefox-Spdy: h2
www.expedia.no/trvl-px/v2/get
23.38.200.193200 OK 12 B URL HTTP/2 www.expedia.no/trvl-px/v2/get
IP 23.38.200.193:0
File type JSON data\012- , ASCII text
Hash 80fe7f8b905f86af731ef2792a55ebc0
d6a3a5d6a932f7cf849740105e3f06f2e4d3ac99
0ebc2d6f050bfd5e00087a840a975d900589c4aa2c1e7cab4d64be8d4639856b
GET /trvl-px/v2/get HTTP/1.1
Host: www.expedia.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-origin: https://no.hotels.com
cache-control: no-cache
content-type: application/json
expires: Sun, 05 Feb 2023 22:36:25 GMT
server: openresty/1.15.8.2
strict-transport-security: max-age=7776000; includeSubDomains;
trace-id: 4dca3d39-f333-41f0-83e7-904bcae0b458
x-b3-traceid: 4dca3d39f33341f083e7904bcae0b458
x-cgp-info: noJvmRouteSet;86650ef9-a5a5-11ed-a902-02426d4de503
x-content-type-options: nosniff
x-xss-protection: 1
content-length: 12
date: Sun, 05 Feb 2023 22:36:26 GMT
set-cookie: HMS=f4266268-82a4-43dc-b949-10b8220c9847; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:26 GMT; Path=/; Domain=.expedia.no; Secure; SameSite=None
MC1=GUID=3286423b57e64bdea639a973629f242a; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:26 GMT; Secure; SameSite=None
DUAID=3286423b-57e6-4bde-a639-a973629f242a; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:26 GMT; Secure; SameSite=None
MC1=GUID=3286423b57e64bdea639a973629f242a; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:26 GMT; Domain=.www.expedia.no; Secure; SameSite=None
DUAID=3286423b-57e6-4bde-a639-a973629f242a; Max-Age=0; Expires=Sun, 05 Feb 2023 22:36:26 GMT; Domain=.www.expedia.no; Secure; SameSite=None
MC1=GUID=3286423b57e64bdea639a973629f242a; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:26 GMT; Path=/; Domain=.expedia.no; Secure; SameSite=None
DUAID=3286423b-57e6-4bde-a639-a973629f242a; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:26 GMT; Path=/; Domain=.expedia.no; Secure; SameSite=None
OIP=gdpr|-1; Max-Age=94608000; Expires=Wed, 04 Feb 2026 22:36:26 GMT; Path=/; Domain=.expedia.no; Secure; SameSite=None
_abck=A08B2093D1569F4D7BF917AD4BAE8E95~-1~YAAQDk8kF7ifFtSFAQAA0ja5IwmJI6m9DBWfmkNN5JTNqtQGHxz2QV8JjrcKixrgq1otTodHB0o174uG/6teo51OO4xL5OqhAewJVXHXxqUhVvylAJekIXGPZrDPKOhjoQqzcmazYlvQHRlsrjWA1eap8ENM1dxbqf13iGveyhorzVwY2jQeiwsTm70+AYLKCCLia4zH+l4ZXqQsRhbiw5JkrOuI1F0T7KGBjPE2V/hGJdfSDq6uROwvnnDsc/h2iBLYWSTdklCs2obK74vRufow6zQUMY8vdy6m5+ZoafWUOGYy/mYravR4fHFKiP39Kf2GbcI8aV1CUeFaN2BmZPxiKt64UaKev74fiule76RgzhufOlIoeAeEujmE~-1~-1~-1; Domain=.expedia.no; Path=/; Expires=Mon, 05 Feb 2024 22:36:26 GMT; Max-Age=31536000; Secure
ak_bmsc=63FA7F12E072B1C92450EE535623A322~000000000000000000000000000000~YAAQDk8kF7mfFtSFAQAA0ja5IxIWVUWW1Nfqx4WXan8UIFuKQxtEE5D2W8UPMQFIl9vzWDMaBfMKMv/SLhumy3vxHicPefDK96Bwrvuy3f/LJ+9ciWo37Eed5ftOAJXZoHOYkeKEEfY/YoostqDcCShodvQrL95Zuvzc35N1tg6xSYxIWXcJ1W+/qazAw75bfd67F19LgNA+HCSagL3r8d3aPXDG5g5F3V6BVuhDnNWF5JXtLYXo9THc1fvWuBgOu9UasHjwkX+JGUjupFtHj0fI6yEav2MuUYU1fqEqNQcUEKeykDQyOMPpO0aO8IpGXFmo9PYMpZyJSgMpvdxZhtXTWSEdI56RuRsOzS860fSnbVW4W57vWkuaqEpf8Ayze7jD5wEuWuhU; Domain=.expedia.no; Path=/; Expires=Mon, 06 Feb 2023 00:36:26 GMT; Max-Age=7200; HttpOnly
bm_sz=CB88AB69EFE2DD28907F6A043FF4A128~YAAQDk8kF7qfFtSFAQAA0ja5IxIu0AjjaZIjgjotCFhmbLyCyhEA/SDHkK0mnIJp+1N9wA3+gBASinWz/f2IfVjDYSSkBR3Xkjg5NUiBWvIEgbjU01A1FWDUujCKFFscRmAaHWWlZ92lGzrofTNYc78xZUlaykkNbNuGRu1v1Tj+GmPjgbB3+Vd7FuIUXxd5n+6CY0ok0r2iFW1onzGebBddxg6myZb/flk2Fu6ASsXE2PkpKr5kBjAYXAKPqWXNb5y0RWdNbktEbfR9e5DerZDYkcHSWHzRaxYFkHzQMe4urtA=~4339768~3290424; Domain=.expedia.no; Path=/; Expires=Mon, 06 Feb 2023 02:36:26 GMT; Max-Age=14400
x-edgeconnect-cache-status: 0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WPChtMRjKafjMFkXCam-m5lHQ-4E-UZ5VwnfjrBKaz6nuOh70Fkunw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:02:46 GMT
age: 2020
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.homeaway.no/trvl-px/v2/get
23.36.79.17301 Moved Permanently 0 B URL HTTP/2 www.homeaway.no/trvl-px/v2/get
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trvl-px/v2/get HTTP/1.1
Host: www.homeaway.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://www.vrbo.com/trvl-px/v2/get
date: Sun, 05 Feb 2023 22:36:26 GMT
X-Firefox-Spdy: h2
www.hotels.com/trvl-px/v2/get
104.110.17.60302 Found 0 B URL HTTP/2 www.hotels.com/trvl-px/v2/get
IP 104.110.17.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trvl-px/v2/get HTTP/1.1
Host: www.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/
Origin: https://no.hotels.com
Connection: keep-alive
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585284%5D%2C%22hitNumber%22%3A%5B%224%22%2C1675636585284%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585284%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585284%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; _abck=842848B62C6FED724E71F2F7906FF1CB~0~YAAQj08kF5MviBGGAQAAFTS5IwlDxhj4wt7jOSFmBjND0MCDWsN1aWayPuNdfL/jfbkr2KpEhuCRm0Az00IFR/IErKi1v7ztRI65QFAw4xeLBt7iB58etbt/iXxrVMUIGiFZo8Qkd7jimGh4sgwQG9mcj48EMJ0Ffb2QJ5cx/Of2ES7G5lIKGr61Cez9agav7Wxu/ZmW8tWkcJ1XIf8hUgKWP8pMkp8fYwFR/0Jjld51SG/KWEKUeqV/ftkh1Dk+ZKExbp6ralJyIzaA7DkFbgMiSoIzXXXUbZE5Hk1Md1USMA+797IECk9Ab0yblCOKSqqaAcj+2XBabwtWqYM/5kgp+1m+sxd2Zt2zXJRFgeALUYOQxMmvYo+stHeUd5B4WOQ/BPa5w4gKFqhZbwxboRraLpq3vCthfA==~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3593; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://no.hotels.com/trvl-px/v2/get?locale=nb_NO&pos=HCOM_NO&siteid=300000012
trace-id: f98b0cfe-7d16-4df4-be3b-48c30dac0ab5
x-cgp-info: noJvmRouteSet;86895f99-a5a5-11ed-af06-0242f68e0110
content-length: 0
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:26 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:26 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
akacd_pr_20=1680820586~rv=54~id=39dd96372f8a369899b1e0710268b8f4; path=/; Expires=Thu, 06 Apr 2023 22:36:26 GMT; Secure; SameSite=None
x-b3-traceid: f98b0cfe7d164df4be3b48c30dac0ab5, e7f487d69620aef19896063b80a9130d
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/core.102173f02d1f5142b615.js
23.38.200.200200 OK 5.5 kB URL HTTP/2 c.travel-assets.com/blossom-flex-ui/core.102173f02d1f5142b615.js
IP 23.38.200.200:0
Hash 8b03e6868cfc57ca53e447fd668111ab
1168bdce1ae046fac9fdff25258d3c3b89b85578
c0074538d651c3b2adf4e86658be3319538dd442e195467df3f97b28ab2db78f
GET /blossom-flex-ui/core.102173f02d1f5142b615.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "71885796e45ebad221c463bd722032ae"
last-modified: Wed, 01 Feb 2023 00:26:36 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: lrgSROxenULtj5faJ/ES2QORa7sH4Edpeovf+D+oZSw5cRFgmGJP4SIZRFoRBbO1cXPM1kUpETk=
x-amz-request-id: BNX3QBWF9R1G1SBD
x-amz-version-id: de0wQA_gVBc1CXZu0wggXgoz9TL7t7ky
content-length: 53246
cache-control: public, max-age=786116
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
104.110.17.60200 OK 0 B URL HTTP/2 no.hotels.com/L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4
IP 104.110.17.60:0
GET /L9Fg6l3Ek/N/QGC9I_-A/YYaYQ6NVp7/BU9nR2Ji/JkAoJDtu/BF4 HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kFzkviBGGAQAASSu5IwnUxJAgjITSPgV3NS+Ju02nx8Y2+fCZH31YU0l36YXqGeIDF9ZrDVRYkelQ9rbsLrSKssIB1ndQpKXvUr2HzCLCVf1jdXKvMUqq4TprhHiOjhTFqwuJuIb+N5ce6S6PbG/LgX29FeIY60t83eBAqSpO4sU5rAID+c47XN1peQOBSjcfHtnepYIa0bcVPYK0KgTziBBVkq7Az0uV4abpbPga8sAU0IAeBpNhfJvfXDvdELQ7ZsaCHxB2l7Fva3VnlqrWqHU9LZgNKNuWugtkVxcvxr1HHF5qVGJyFKu+5sUnY/yxABP8zECNqBhqDNkXWXDJiKd6itNOtSTFDivYTy/fJ8hNSCotlxCh~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2022 18:21:50 GMT
etag: "c065b170d98e55180d9d0ec22203687e78580f5a9c71964c6b1b97f01595bfe0"
content-type: application/javascript
content-encoding: gzip
x-edgeconnect_guid_debug:
date: Sun, 05 Feb 2023 22:36:23 GMT
content-length: 72934
vary: Accept-Encoding
cache-control: max-age=21600
x-b3-traceid: 955be07b0d198f8e55190f40f4d03ec1
strict-transport-security: max-age=31536000
set-cookie: _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; Domain=.hotels.com; Path=/; Expires=Mon, 05 Feb 2024 22:36:23 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
c.travel-assets.com/blossom-flex-ui/shared-ui-customer-notification-center.6a792931844f8e7174fc.js
23.38.200.200200 OK 0 B URL HTTP/2 c.travel-assets.com/blossom-flex-ui/shared-ui-customer-notification-center.6a792931844f8e7174fc.js
IP 23.38.200.200:0
GET /blossom-flex-ui/shared-ui-customer-notification-center.6a792931844f8e7174fc.js HTTP/1.1
Host: c.travel-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.hotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a29abd3600a178f7f12bf4ee1a3a3a54"
last-modified: Tue, 24 Jan 2023 20:47:50 GMT
server: Akamai Resource Optimizer
vary: Accept-Encoding
x-amz-id-2: haLDTIW4utYMktckM4MSMEtgKAWet1rO17N9lOQg7dUpxRHmCZxecMjSnDjP/PJ9ae0GgwV8fAY=
x-amz-request-id: BGDR6Y5NX2YNAVMP
x-amz-version-id: VBo9G00NFld1TNU.UHeUcE_yBpBiaFRZ
content-length: 6963
cache-control: public, max-age=171235
date: Sun, 05 Feb 2023 22:36:23 GMT
X-Firefox-Spdy: h2
no.hotels.com/api/ucs/shortlist//fetch/?clientId=flex
104.110.17.60200 OK 0 B URL HTTP/2 no.hotels.com/api/ucs/shortlist//fetch/?clientId=flex
IP 104.110.17.60:0
GET /api/ucs/shortlist//fetch/?clientId=flex HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Content-Type: application/json
client-token: MmZiYmEzZWUtZmExNi00ZGI1LThlYjAtNGEyZGI4MmViMGRm
Connection: keep-alive
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22true%22%2C1675636583222%5D%2C%22hitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636583222%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF0cviBGGAQAAhCy5IwktzN1lJJaBtzdBTrFBlQWAFf5vK9pWSzT6zzUMpZ25czSsF+JpisY0HOKvaC7frxcazs8tBBjbgCozakciRne9ZePYXdQdSiSXwtL4bidbNkYueoGbdYuSVAhNvc6ELx2j15WJWCUJbanXR26zRCulMs6I1Gcs+PibUn8azRaGEYWnEOjpzqEjnQVvL2Sd/8slQdeLG8kBlt0VBb/CAIiDJrhjWRvPY6Xd/TBQPdnQDyV3MGY5BLRTKrF0rJpUydEVQmTE+F8oxAtLYJ/Jw+MsimhdwZWOvblGcOE/qIYuv9wSo8nzmra2dZVTuh4zMUEiKI6BSXzBnFR/M3+HJcaILCkVpEh9OnNNTn/HkmD11fek8QeOl9U=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
activity-id: 3703d167-7d7f-4cd9-bc0f-a810d5f1c147
content-type: application/json;charset=UTF-8
trace-id: 3703d167-7d7f-4cd9-bc0f-a810d5f1c147
x-cgp-info: noJvmRouteSet;85493e23-a5a5-11ed-9e73-0242d0268751
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:24 GMT
set-cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; Max-Age=157680000; Expires=Fri, 04 Feb 2028 22:36:24 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:24 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 3703d1677d7f4cd9bc0fa810d5f1c147, fdfdb8e6aedbdc511fd810872e6fc26a
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
no.hotels.com/graphql
104.110.17.60200 OK 0 B IP 104.110.17.60:0
POST /graphql HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
content-type: application/json
Client-Info: blossom-flex-ui,a3b459a452d38cd222d1ce3408e1fda2310ad268,us-east-1
x-page-id: Homepage,U,10
Origin: https://no.hotels.com
Content-Length: 1778
Connection: keep-alive
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/json; charset=utf-8
server: istio-envoy
trace-id: d1199914-5410-4b1b-90bd-e798586f3d10
x-cgp-info: noJvmRouteSet;85e2e69e-a5a5-11ed-98a8-024225c0a212
x-datadog-trace-id: 2341189108320193414
x-envoy-upstream-service-time: 32
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
vary: Accept-Encoding
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: d119991454104b1b90bde798586f3d10, 31b1b3a780dc0b8fde6713705a895191
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.stay22.com/allez/hotelscom?aid=gladis2&campaign=71565&t202re={referrer}
104.26.0.198302 Found 0 B URL HTTP/2 www.stay22.com/allez/hotelscom?aid=gladis2&campaign=71565&t202re={referrer}
IP 104.26.0.198:0
GET /allez/hotelscom?aid=gladis2&campaign=71565&t202re={referrer} HTTP/1.1
Host: www.stay22.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 22:36:21 GMT
content-type: text/html; charset=utf-8
location: https://prf.hn/click/camref:1100loZ2o/pubref:v3.cldryr8yl4d380854ljn2v6nc/destination:https://no.hotels.com
x-powered-by: Express
vary: Accept
set-cookie: session22=eyJpZCI6IjI2ZWYyNTRhLTE5MmUtNDliNS05NzlmLTAwZmNhMjJlNzY1YiIsImFidGVzdCI6eyJ0ZXN0TmFtZSI6Ijc2LUZTLUUtVjEwMCIsInZlcnNpb24iOiJjIiwid2VpZ2h0IjowLjI1fX0=; path=/; expires=Tue, 19 Jan 2038 03:14:07 GMT; samesite=none; secure; httponly
session22.sig=JYTASgMjq1fxqT-uK-bdUZjiXoc; path=/; expires=Tue, 19 Jan 2038 03:14:07 GMT; samesite=none; secure; httponly
via: 1.1 vegur
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Xj2CcGNw10Wqhzd%2BqKAw8aKff1sfY%2BxlMH8GmP8%2FrpYUvd%2FjE6kprF0gVMEXFbkswcfOxtksnWmWCKPmj2uyfrBTrwH3w4CgAPkTFB9NNc6TU6zlrOx6I76STmVcDyG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 794f1fd7e954b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
no.hotels.com/api/bucketing/v1/evaluateExperimentsAndLog
104.110.17.60200 OK 0 B URL HTTP/2 no.hotels.com/api/bucketing/v1/evaluateExperimentsAndLog
IP 104.110.17.60:0
POST /api/bucketing/v1/evaluateExperimentsAndLog HTTP/1.1
Host: no.hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.hotels.com/?rffrid=aff.hcom.NO.038.000.1011l45458.kwrd=1011lwwIfvgf&affcid=HCOM-NO.DIRECT.PHG.1011l45458&afflid=1011lwwIfvgf
Content-Type: application/json
Origin: https://no.hotels.com
Content-Length: 153
Connection: keep-alive
Cookie: linfo=v.4,|0|0|255|1|0||||||||1044|0|0||0|0|0|-1|-1; CRQSS=e|12; CRQS=t|3109`s|300000012`l|nb_NO`c|NOK; currency=NOK; iEAPID=12; tpid=v.1,3109; cesc=%7B%22aff%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458.1011lwwIfvgf%22%2C1675636583222%5D%2C%22marketingClick%22%3A%5B%22false%22%2C1675636585008%5D%2C%22hitNumber%22%3A%5B%223%22%2C1675636585008%5D%2C%22visitNumber%22%3A%5B%221%22%2C1675636583222%5D%2C%22cidVisit%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636585008%5D%2C%22entryPage%22%3A%5B%22noonewillmatchthis%22%2C1675636585008%5D%2C%22rffrid%22%3A%5B%22AFF.HCOM.NO.038.000.1011L45458.KWRD%3D1011LWWIFVGF%22%2C1675636583222%5D%2C%22cid%22%3A%5B%22AFF.HCOM-NO.DIRECT.PHG.1011l45458%22%2C1675636583222%5D%7D; HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; MC1=GUID=dd2a3bddceef44fd92fae1c13faa8225; DUAID=dd2a3bdd-ceef-44fd-92fa-e1c13faa8225; OIP=gdpr|-1; CRAS=HCOM-NO.DIRECT.PHG.1011l45458; akacd_pr_20=1680820583~rv=60~id=a935d4fc135472bb7cb2c9ced4b784f5; _abck=842848B62C6FED724E71F2F7906FF1CB~-1~YAAQj08kF2sviBGGAQAAUy+5Iwm1FC9/m5J48Zy3gmCEZ7BvEkBUMpnVC/hNcVBdZBqvQ/BbOK8/vY/aSwltZ/Y81oSzLU965EvCyiM3L/mfAt1o6WLjeP1Pf6++zwpAvhTLw9G37To3U0K99/AEoRW08rjhMzjsyRJo6/E4fqKVXcqTxCti26DhuaZa1yk2OB7WxQcPTgYD0BL90Srutzaz3tKgkWCeRsm0lfzraUvbWFGCKu1zHz/lJ+eQ8YKEeZcN9NkAvhIoxgu9A18Z2IsjZwY8O0KT4JoFsZw3OV6HrsuB6dZfQjniRbl7hfAYIcEyhyWrAhFxQ8KblnEqRvxJjPH7IZ74fmqPnTBlPVhF89jMiyvJ4reRPdxDWP8P62mbNfOWO5xY1TM=~-1~-1~-1; bm_sz=9E9643F8B79ADF1263A1B1F093A4F787~YAAQj08kFzoviBGGAQAASSu5IxJCQ1Ov5z64A95Zh4VXfuYzjPG55rHMlTaC2H6LwxyNw9+ZXglE3MfwMK1zcJprnWRLIQEi72mf8nUJBJzjkCZaqGzNrdxmZKC2qP92haBGNo6WoNom8B2gRsVUTejRCaIoypMcd7ElIzgFkgtHibrRYn84MFoYSkGaG7/Db2xUR/JZ68deK88P//q+3fPIVd+9CP+VAP+WeLOuAFlviOj7ip8q8mEguniIktE1pa1d32vDac2HexoeqebPfE+r1UEIetEZCmFD6s8qaTDmkx0=~4277816~3618115; AMCV_C00802BE5330A8350A490D4C%40AdobeOrg=1585540135%7CMCIDTS%7C19394%7CvVersion%7C4.4.0; s_ppn=Homepage; s_ppv=%5B%5BB%5D%5D; s_ips=1; s_tp=3790; session_id=6e35a926-b278-450e-ba7b-54ff25df5a42; page_name=Homepage
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
server: istio-envoy
trace-id: 11f801bf-ca2f-47d3-a08b-009f1f0e23f6
x-cgp-info: noJvmRouteSet;85e3f7cf-a5a5-11ed-ad61-0242256f78b3
x-envoy-upstream-service-time: 2
x-edgeconnect_guid_debug:
expires: Sun, 05 Feb 2023 22:36:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 22:36:25 GMT
set-cookie: HMS=6e35a926-b278-450e-ba7b-54ff25df5a42; Max-Age=1800; Expires=Sun, 05 Feb 2023 23:06:25 GMT; Path=/; Domain=.hotels.com; Secure; SameSite=None
x-b3-traceid: 11f801bfca2f47d3a08b009f1f0e23f6, a9b72953f21776544d7e3f3fc97dee4b
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2