booking.hotel-berghof.com/
135.125.240.140301 Moved Permanently 166 B URL HTTP/1.1 booking.hotel-berghof.com/
IP 135.125.240.140:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Sep 2022 15:15:27 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://booking.hotel-berghof.com/
Strict-Transport-Security: max-age=31536000
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14957
Expires: Mon, 12 Sep 2022 19:24:44 GMT
Date: Mon, 12 Sep 2022 15:15:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 15:08:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IKixlIq3gEcEUQQASIJQxSW3HM1oI11JEDLhqcqY00bDWdeHGYTfIA==
Age: 433
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6ZexY7e43XPlr2G32CaiEjqjdtFr0NSYRDnyVo-_I6K-QdQej2J2uA==
age: 28695
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 15:15:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 14:56:07 GMT
Expires: Mon, 12 Sep 2022 15:50:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dtDF4Qb-EMK410dfCjtcWNNyEaYTIGPZKZxZgKLlHw7NzNj0oE_ybQ==
Age: 1161
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:28 GMT
Last-Modified: Mon, 12 Sep 2022 13:26:03 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5KSXlMAt1+75DBoBxO1aFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PtGOcX1bTgq1czGtSnT8CJFqZeY=
booking.hotel-berghof.com/
135.125.240.140200 OK 319 kB URL HTTP/1.1 booking.hotel-berghof.com/
IP 135.125.240.140:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7871)
Size 319 kB (318939 bytes)
Hash e208b1fcaa8ad57be71c492517d600cf
b93811f825c1dda36716103a1896903dc902c873
5974556efc800e5bfec90f7ed87f837ef9a99e4e09f86b5eed115a0ed5fd9895
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 15:15:28 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Status: 200 OK
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: "14213b-mD/yzl5TNq8FnTyQ1RT8z9TBP8Y"
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self' *.kognitiv.com
Strict-Transport-Security: max-age=31536000
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-e8dfb95cce274f1b.js
54.230.245.158200 OK 111 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/928-e8dfb95cce274f1b.js
IP 54.230.245.158:0
Size 111 kB (111121 bytes)
Hash ef272bbef72103fde6f1736faad418c4
ab3ba0a7607c454f3bdcabb4cfb7ed1b038e0460
7ee839691cee2680fdfcbfb71686266df2d4cc2266fa577452ffc6308eb59ebc
GET /_next/static/chunks/928-e8dfb95cce274f1b.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:08 GMT
etag: W/"6318cecc-11b68"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uZdKa1dKwnWoxfd22gsocOWAixl08f3LElnOzfakNvGP2lgyIgX0sw==
age: 425512
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-PH3725
142.250.74.72200 OK 61 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PH3725
IP 142.250.74.72:0
File type ASCII text, with very long lines (14354)
Hash 02b2ad81d153c0ade1396985658baec3
05971bbf0e48f62409f685b046171b401a989f7b
02ada1dc68226c3bb2b17fd1ca44e4545f77bb699aaf38a0c8edde2bf858142a
GET /gtm.js?id=GTM-PH3725 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Sep 2022 15:15:29 GMT
expires: Mon, 12 Sep 2022 15:15:29 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61181
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
54.230.245.158200 OK 36 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/695-5ea418b3362d2010.js
IP 54.230.245.158:0
Hash d71826ea80d8f93db5e1484349983796
d2682883f5b4c8565652ffadf7df1d670786d4a1
ab1a6e6a4246c4823b58fcdac247930e73d8cf1025d464cf7d93a1a8ddefa558
GET /_next/static/chunks/695-5ea418b3362d2010.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-fd62"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RibzUv6TXOdkMCpSv5kxVQYhXZY7AqDQdDzjJGE2ew2V_AHpwMRgmg==
age: 438647
X-Firefox-Spdy: h2
static.seekda.com/assets/fonts/google/fira-sans-v16-latin-700.woff2
135.125.240.147200 OK 24 kB URL HTTP/2 static.seekda.com/assets/fonts/google/fira-sans-v16-latin-700.woff2
IP 135.125.240.147:0
File type Web Open Font Format (Version 2), TrueType, length 23724, version 1.0\012- data
Hash 2ca1253c8e47277b38c02353cdf32102
3cd0373fd1ae7ad8cb62ff8f2200193a7e8977e7
51aa1f55f3d344d82ece24055a31012cf77d10cc4a2f9307f5dea293118d40f1
GET /assets/fonts/google/fira-sans-v16-latin-700.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Sep 2022 15:15:29 GMT
content-type: font/woff2
content-length: 23724
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "2ca1253c8e47277b38c02353cdf32102"
last-modified: Tue, 23 Aug 2022 12:56:36 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 171425CE1209C16A
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: e1988b3c-6079-4c9b-80d1-7a28bf6a9452
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e60c02c30b5580; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png
151.101.85.137200 OK 24 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png
IP 151.101.85.137:0
File type PNG image data, 219 x 103, 8-bit/color RGBA, non-interlaced\012- data
Hash f7b11311515bbef177fa692d264a7e02
ea2ffab457533ebbc3d6adad1a894a9504bbe560
11da040f74ea5c45e103b09a959a2d7a1c0353c5945447dd2e6e78b9ee20cdce
GET /seekda/image/upload/v1612777299/production/AT_JOPO_BERG/Logo-Verw%C3%B6hnhotel-Berghof.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "f7b11311515bbef177fa692d264a7e02"
last-modified: Mon, 08 Feb 2021 09:41:40 GMT
date: Mon, 12 Sep 2022 15:15:29 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:29.691Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 24207
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_1920,ar_3.76,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png
151.101.85.137200 OK 64 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_1920,ar_3.76,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x511, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6fa8c8fa6de3fff16bfa781106553e11
c0286ca7c25837d8b4c4f7333c6d1c7a249b239d
b08b4ff40702111e1b99af4ca23db4b19555b2c93eb80fe5e27278303106e89f
GET /seekda/image/upload/w_1920,ar_3.76,c_fill,f_auto,fl_lossy,q_auto/v1612776003/production/AT_JOPO_BERG/wellnesshotel-berghof-banner-02.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-disposition: inline; filename="wellnesshotel-berghof-banner-02.webp"
content-type: image/webp
etag: "6fa8c8fa6de3fff16bfa781106553e11"
last-modified: Tue, 23 Feb 2021 18:06:04 GMT
date: Mon, 12 Sep 2022 15:15:29 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-09-12T15:15:29.690Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 64524
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
54.230.245.158200 OK 163 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/804-13fd754e32aa16c3.js
IP 54.230.245.158:0
Size 163 kB (162937 bytes)
Hash c7f89262f98b3a3a7cc655ffc29026c2
55b841002682c0f217779f27506bb667855eb0d1
cd030becb83dbd8d408af0069ef06f2a0daef5e6179956028aaa17b98387afb4
GET /_next/static/chunks/804-13fd754e32aa16c3.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-7319"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n9MT47Ll7So7hi0mwfasI1X8SYVRpqAR3FaXsf7geW6p3WlMXFXj6g==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf
54.230.245.158200 OK 94 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/bf-icons-extended.ttf
IP 54.230.245.158:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 439b52438c772a69ba68cddd45b0ba56
acc851fc76bade985719ddd6b688e184f1096121
fd15c1d08eecfa3bebd1c8a1e28836de2f04036509f7ee65e1945cc0decd725d
GET /static/bf-icons-extended.ttf HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 93868
date: Mon, 12 Sep 2022 05:04:39 GMT
last-modified: Tue, 03 May 2022 12:34:48 GMT
etag: "62712168-16eac"
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TjwBCHjhxa0BU0wE10mJ_m0YjfKE02uinyNL4F0YScszRaN8tcmC2w==
age: 36650
X-Firefox-Spdy: h2
static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R00932e9218b19dfb4142ea7d9e4b382739bb4cb6
135.125.240.147200 OK 23 kB URL HTTP/2 static.seekda.com/widgets/tracking-api/js/tracking-api.min.js?R00932e9218b19dfb4142ea7d9e4b382739bb4cb6
IP 135.125.240.147:0
Hash fdef15426b0d004184208fa8939ae4e1
155cf3ad9b92d841a3c6e9926666d5ecff2588c0
ae11b576576382817d763df8a28a5fc947ca890602922b070e37b06a5fbbd022
GET /widgets/tracking-api/js/tracking-api.min.js?R00932e9218b19dfb4142ea7d9e4b382739bb4cb6 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 15:15:29 GMT
content-type: application/javascript
content-security-policy: block-all-mixed-content
etag: W/"3868633285d5ac63f9bd0ba84f051796"
last-modified: Thu, 01 Sep 2022 11:40:03 GMT
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 171425CE2F76F869
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: f78bbcf1-e24c-49df-bcb2-e5d69f127d1c
content-encoding: gzip
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5ee3c1b0a8c15c0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_192,h_192,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png
151.101.85.137200 OK 2.2 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_192,h_192,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png
IP 151.101.85.137:0
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash b233d35abdfd29e9856db4f85fdc988b
e0cf3980fe700ee66cacfbe6689df28560a74dcb
a18758063a45486143e42f05232835cd1377ffc58198bdec32cecab3a4e2711a
GET /seekda/image/upload/w_192,h_192,c_fill/v1612776668/production/AT_JOPO_BERG/favicon.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b233d35abdfd29e9856db4f85fdc988b"
last-modified: Mon, 08 Feb 2021 09:40:00 GMT
date: Mon, 12 Sep 2022 15:15:29 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:29.962Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 2182
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?key=AIzaSyDpKIbTdGohVmpEC6JG5BzqZBirHAJ8ir0&language=EN
142.250.74.42200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyDpKIbTdGohVmpEC6JG5BzqZBirHAJ8ir0&language=EN
IP 142.250.74.42:0
File type ASCII text, with very long lines (2420)
Hash c1f577ded84730f2f8c4f2f19ac3c760
4e1a539355f82831bc9f964dc31b30d948f16e1a
72a342ea1920f38d2df16c1f8e493a1e6fb571d31d5ea897264de8cd084a3ae5
GET /maps/api/js?key=AIzaSyDpKIbTdGohVmpEC6JG5BzqZBirHAJ8ir0&language=EN HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Mon, 12 Sep 2022 15:15:30 GMT
expires: Mon, 12 Sep 2022 15:45:30 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53924
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=24
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Mon, 12 Sep 2022 20:51:20 GMT
Date: Mon, 12 Sep 2022 15:15:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Mon, 12 Sep 2022 20:51:20 GMT
Date: Mon, 12 Sep 2022 15:15:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b674daf3dc6e85ed054ab34d69979b86
47aaf5a3af2c25820d01d613c82b7f1279a298fc
7b9993ef69d4b77c1533ada040c85563b9cf7b1f5d007177c005f6cd7fdba1d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4162
x-amzn-requestid: 9dc27e34-69e1-439d-8974-1297584ef4d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSIhuHlWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d87a4-410e9ede524aa657609a057a;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:00:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jGj2al3pBpze7UQnHild4DxKndrprY4pTG_EZScw2RukQlgFEvNMkw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 07:18:04 GMT
age: 28646
etag: "47aaf5a3af2c25820d01d613c82b7f1279a298fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
54.230.245.158200 OK 20 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262
IP 54.230.245.158:0
Hash c9e7d2da2fe52824e044ce219cb0ad34
38f1972cb0f9a54f10f4111f20d52592ca133d50
bae87b8579bbbbd48f195ade5f1ea48fa9cb347f7adb4c0b60d30735b3966b0a
GET /static/scripts/elastic-apm-rum.umd.min.js?checksum=e93c8d4d150530d83ee4ee385157b262 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 12 Sep 2022 02:08:05 GMT
last-modified: Wed, 11 May 2022 16:35:20 GMT
etag: W/"627be5c8-f0b3"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nOrh78v4X1kZXvZqeTDwI-rQP1RfOedRn1ex4T6LaSWbLeXcU-mzBQ==
age: 47243
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL
135.125.240.149200 OK 2 B URL HTTP/2 hbe-api.kognitiv.com/marketing?channelId=ibe&context=DETAIL
IP 135.125.240.149:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /marketing?channelId=ibe&context=DETAIL HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin, Accept-Encoding
date: Mon, 12 Sep 2022 15:15:30 GMT
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:38:55 GMT
age: 41795
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
54.230.245.158200 OK 16 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/979-fc9d9c0ee5b8eeaa.js
IP 54.230.245.158:0
Hash 512034b9ec614f2b246f517af17b44f8
bd6a68d3740e8fb036dc4a1e662614675d4525d0
292ac26fd6c7d25e1fa6a181a03acbf9dd50a48cc6eb2b2131ad896950f0487e
GET /_next/static/chunks/979-fc9d9c0ee5b8eeaa.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-7ff8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: twjh3PD6_Y3CZBVEfKftgbHYUY1pVt9DeXvA6ma4eSa3bLtnh-zPGg==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-587e437c300c66ac.js
54.230.245.158200 OK 63 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/648-587e437c300c66ac.js
IP 54.230.245.158:0
Hash 32b5bbc59bbfe84a06fedbd63e7ae3fb
366ce4ca413fd6d907d4a692908a3d59b77d8272
c85a4459eccbaa41bfa130d6a0950e25201aff7b43dbf9a69285e55358d4ff50
GET /_next/static/chunks/648-587e437c300c66ac.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-29d1c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MokIGdMzHmMys_ZzsCshQF5s6Qgf_2YNpKwnKi2jT9Lxk2TeAVtaug==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_buildManifest.js
54.230.245.158200 OK 10 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_buildManifest.js
IP 54.230.245.158:0
Hash a168ce733e23e5774b1657ef73e255c3
dfe58d4ad99f4d23911584ec71ba7d51f4a0de4e
6413b5f68142f6bc566c4eb78af38519ff1def2fa64aed7fea7cd5ca8e92a967
GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_buildManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-af8"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v3V2KnXJxv_orMh7byY4niGDdNOWebOYTBnxL7GfFO9ji4_MnZ-pKQ==
age: 425512
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: u_jETr8miiFyuhq7R09yb0lAP-hUv_6eTRV81Xzd9gSqU31VXwC9CQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 03:15:48 GMT
age: 43182
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bff3a3f3f4f889b08163e7d307438790
c430c7c151973fa0e63ddf52e5624e1ce2282161
bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 12 Sep 2022 14:41:12 GMT
expires: Mon, 12 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 2058
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/unavailable-days
135.125.240.149200 OK 321 B URL HTTP/2 hbe-api.kognitiv.com/unavailable-days
IP 135.125.240.149:0
File type JSON data\012- , ASCII text, with very long lines (366), with no line terminators
Hash be1e11843b2da8adc1c011e609e95703
51e270347475c48089c1acad6a0a2e5710eb7284
6c54262efc5f54d8fd50717cd8c4c8784f1c0d99b7fec3d87042d578e76d1d46
POST /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 66
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Accept-Encoding, Origin, Accept-Encoding
date: Mon, 12 Sep 2022 15:15:30 GMT
etag: W/"83-r4YGoQoUkjR1a2Rcl2bkYp3ZX9o"
content-encoding: gzip
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageLoaded?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageLoaded?
IP 135.125.240.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/pageLoaded? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 324364e9311c1f7cb5e4068f3d947d5d
ddb00dc97404cee267838983ce8bb4ae48d6647a
d6cc296b22c48f9e7bb3a905dd9e899441ae7c29faec4a62e71628e1f23d61a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quality.seekda.com/events/ibe/searchBoxInit?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/searchBoxInit?
IP 135.125.240.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&gjid=1130531189&_gid=2124739956.1662995718&_u=aGBAgAAjAAAAAE~&z=402274376
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&gjid=1130531189&_gid=2124739956.1662995718&_u=aGBAgAAjAAAAAE~&z=402274376
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&gjid=1130531189&_gid=2124739956.1662995718&_u=aGBAgAAjAAAAAE~&z=402274376 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://booking.hotel-berghof.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 15:15:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&gjid=616719841&_gid=2124739956.1662995718&_u=aGHAAAAjAAAAAG~&z=1304531740
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&gjid=616719841&_gid=2124739956.1662995718&_u=aGHAAAAjAAAAAG~&z=1304531740
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&gjid=616719841&_gid=2124739956.1662995718&_u=aGHAAAAjAAAAAG~&z=1304531740 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://booking.hotel-berghof.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 15:15:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45b55c678e2944a30a6d8160bb6e4a94
a1ac0c9681902e7d64e49bd9e146820ce2c60f4f
5a89db56a9b47aa3e426799671db9b25a42d7dd7d6881c66eca7ed37facf6bd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 324364e9311c1f7cb5e4068f3d947d5d
ddb00dc97404cee267838983ce8bb4ae48d6647a
d6cc296b22c48f9e7bb3a905dd9e899441ae7c29faec4a62e71628e1f23d61a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbe-api.kognitiv.com/unavailable-days
135.125.240.149200 OK 472 B URL HTTP/2 hbe-api.kognitiv.com/unavailable-days
IP 135.125.240.149:0
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
OPTIONS /unavailable-days HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Mon, 12 Sep 2022 15:15:30 GMT
set-cookie: MGLH51CKJDVB=HBE7KSGFADL4; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 15:15:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45b55c678e2944a30a6d8160bb6e4a94
a1ac0c9681902e7d64e49bd9e146820ce2c60f4f
5a89db56a9b47aa3e426799671db9b25a42d7dd7d6881c66eca7ed37facf6bd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&_u=aGHAAAAjAAAAAG~&z=460076347
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&_u=aGHAAAAjAAAAAG~&z=460076347
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=1852362956&_u=aGHAAAAjAAAAAG~&z=460076347 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 15:15:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-2190190-1&cid=1442863169.1662995718&jid=72224335&_u=aGBAgAAjAAAAAE~&z=436466525 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 15:15:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageLoaded?
135.125.240.141200 OK 121 B URL HTTP/2 quality.seekda.com/events/ibe/pageLoaded?
IP 135.125.240.141:0
Hash a2f5f672055bbd64e9078a6671da6da3
8576580c39ee31b7059978ebd2febc6e3a0fb6b5
180036f98bcd64052d3eae6a9a48e356421285450a076f72e0351902b6b91ef0
POST /events/ibe/pageLoaded? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 780
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
booking.hotel-berghof.com/static/noimage.jpg
135.125.240.140200 OK 7.3 kB URL HTTP/1.1 booking.hotel-berghof.com/static/noimage.jpg
IP 135.125.240.140:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 768x432, components 3\012- data
Hash bc631f0f9afc6f7fa88c43e357dbf8ff
e8419abb2b0c726255e9b28cea7bfafca06b22d6
a7a7aac38152bf60bb768780deb951b121ac3ee54eb0028e7aeee5fab8b331b5
GET /static/noimage.jpg HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/?skd-checkin=2022-09-15&skd-checkout=2022-09-22&skd-property-code=AT_JOPO_BERG
Cookie: _gcl_au=1.1.235590975.1662995718; _ga=GA1.3.1442863169.1662995718; _gid=GA1.3.2124739956.1662995718; _ga_7S9V9CPDR2=GS1.1.1662995718.1.0.1662995718.0.0.0; _ga=GA1.1.1442863169.1662995718; _dc_gtm_UA-2190190-1=1; _gat_UA-2190190-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 15:15:30 GMT
Content-Type: image/jpeg
Content-Length: 7273
Connection: keep-alive
Last-Modified: Tue, 03 May 2022 12:24:30 GMT
ETag: "62711efe-1c69"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad439cab56126bcc402ee9f92365a209
a4b48a9a733c53cbc7020e190b8c787e1f80f55a
d0e2e52b66a8dec8c57092ec332f452a7348941d778d7b4686ca32696aabd065
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 15:15:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2jtzd336hs8un.cloudfront.net/_next/static/media/slick.653a4cbb.woff
54.230.245.158200 OK 1.4 kB URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/media/slick.653a4cbb.woff
IP 54.230.245.158:0
File type Web Open Font Format, CFF, length 1380, version 1.0\012- data
Hash b7c9e1e479de3b53f1e4e30ebac2403a
af91c12f0f406a4f801aeb3b398768fe41d8f864
26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc
GET /_next/static/media/slick.653a4cbb.woff HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://d2jtzd336hs8un.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 1380
date: Sat, 10 Sep 2022 08:08:21 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: "62712156-564"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 12u92XfNvc8bu-rtH0cM_NwmqA4JYUPvsDO4huZfzMXY0rWup-55xQ==
age: 198429
X-Firefox-Spdy: h2
static.seekda.com/assets/fonts/google/fira-sans-v16-latin-italic.woff2
135.125.240.147200 OK 24 kB URL HTTP/2 static.seekda.com/assets/fonts/google/fira-sans-v16-latin-italic.woff2
IP 135.125.240.147:0
File type Web Open Font Format (Version 2), TrueType, length 23488, version 1.0\012- data
Hash cc3c05a080b3b37e42a52d2f1809f12b
877933cfc9c860dfa067db86e7f2e2cbacdb76f4
e895de4f58ade3e9cd2db4dcd61eb030c4d4f85274622bbb23755a34c41b870e
GET /assets/fonts/google/fira-sans-v16-latin-italic.woff2 HTTP/1.1
Host: static.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Sep 2022 15:15:30 GMT
content-type: font/woff2
content-length: 23488
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Date, Etag, Server, Connection, Accept-Ranges, Content-Range, Content-Encoding, Content-Length, Content-Type, Content-Disposition, Last-Modified, Content-Language, Cache-Control, Retry-After, X-Amz-Bucket-Region, Expires, X-Amz*, X-Amz*, *
content-security-policy: block-all-mixed-content
etag: "cc3c05a080b3b37e42a52d2f1809f12b"
last-modified: Tue, 23 Aug 2022 12:56:36 GMT
no-gzip-compression: true
vary: Origin, Accept-Encoding
x-amz-replication-status: COMPLETED
x-amz-request-id: 171425CE68905C32
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-amz-version-id: f80be0b1-6268-4be7-97e7-4c76409b2966
strict-transport-security: max-age=15768000
server: Kognitiv
set-cookie: WEIU3SASDIO=5e382a0c20fe7a0; path=/; HttpOnly; Secure; SameSite=none
cache-control: max-age=43200, private
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewTrustYouBadge?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewTrustYouBadge?
IP 135.125.240.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/viewTrustYouBadge? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewOffers?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewOffers?
IP 135.125.240.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7S9V9CPDR2>m=2oe970&_p=4544461&cid=1442863169.1662995718&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662995718&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3Fskd-checkin%3D2022-09-15%26skd-checkout%3D2022-09-22%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7S9V9CPDR2>m=2oe970&_p=4544461&cid=1442863169.1662995718&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662995718&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3Fskd-checkin%3D2022-09-15%26skd-checkout%3D2022-09-22%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7S9V9CPDR2>m=2oe970&_p=4544461&cid=1442863169.1662995718&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662995718&sct=1&seg=0&dl=https%3A%2F%2Fbooking.hotel-berghof.com%2F%3Fskd-checkin%3D2022-09-15%26skd-checkout%3D2022-09-22%26skd-property-code%3DAT_JOPO_BERG&dt=Verw%C3%B6hnhotel%20Berghof&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://booking.hotel-berghof.com
date: Mon, 12 Sep 2022 15:15:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_59_Sommer_Wellness.jpg
151.101.85.137200 OK 32 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_59_Sommer_Wellness.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0f56018854086fb1e7a252842e19c53a
8bd3428e21efae3a85f9c5c055a09a8582cab3a2
5e00506f728c2e4fd8d06ca7de759aa67021fac44cbf1efe48e832283f39dbc9
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_59_Sommer_Wellness.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="_59_Sommer_Wellness.webp"
content-type: image/webp
etag: "0f56018854086fb1e7a252842e19c53a"
last-modified: Mon, 08 Mar 2021 09:53:31 GMT
date: Mon, 12 Sep 2022 15:15:31 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:31.126Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 32238
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_36_Sommer_Wellness.jpg
151.101.85.137200 OK 20 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_36_Sommer_Wellness.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8bf4f0b15e9c48ad9e73b3db0b042daa
a3db5fd374580c0cffae60491c4e8b127e65375b
0f8f8a5d719e72314ad1eb700221d109e6a6a48b167b9bf2dfca7f902dd6d51c
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_36_Sommer_Wellness.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="_36_Sommer_Wellness.webp"
content-type: image/webp
etag: "8bf4f0b15e9c48ad9e73b3db0b042daa"
last-modified: Mon, 08 Mar 2021 09:49:09 GMT
date: Mon, 12 Sep 2022 15:15:31 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:31.134Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 20160
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/Wellness_22.jpg
151.101.85.137200 OK 33 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/Wellness_22.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 29589776116028b93335ec70b53c976d
80e1734bbd35887e18c01f17e8da3fc1ffd22cb9
3127a989892356fe4df340bad2733b198439d4cd4c6afe6b601960eab03d3ef8
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/Wellness_22.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Wellness_22.webp"
content-type: image/webp
etag: "29589776116028b93335ec70b53c976d"
last-modified: Fri, 22 Jan 2021 13:29:16 GMT
date: Mon, 12 Sep 2022 15:15:31 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:31.144Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33010
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/a7788q_dz-classic.jpg
151.101.85.137200 OK 26 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/a7788q_dz-classic.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 707cdd071256fdcd715af2928143c2a8
dd6176cde8a904c4f63c248bc7e116ef92bfaa52
bf7a070ce0336f7b68ec9bc9aa8e9deabd1261ab66671390c55ad5467472d9e0
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/a7788q_dz-classic.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="a7788q_dz-classic.webp"
content-type: image/webp
etag: "707cdd071256fdcd715af2928143c2a8"
last-modified: Tue, 28 Aug 2018 07:26:49 GMT
date: Mon, 12 Sep 2022 15:15:31 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:31.164Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26468
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_41_Sommer_Paar.jpg
151.101.85.137200 OK 32 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_41_Sommer_Paar.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 31062460adca6bfd09d0b77b0657fced
0effa63518804aeedb83ec90da90413365f44c6f
7536a87e96cce707d441b645441c766456e262f1b7ef06b07bfef0730363e61f
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_41_Sommer_Paar.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="_41_Sommer_Paar.webp"
content-type: image/webp
etag: "31062460adca6bfd09d0b77b0657fced"
last-modified: Mon, 08 Mar 2021 09:52:07 GMT
date: Mon, 12 Sep 2022 15:15:31 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:31.912Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31898
X-Firefox-Spdy: h2
api.trustyou.com/hotels/207499c8-7767-46b2-9043-0349b43d6ee7/seal.json?lang=en&key=8367ae2a-2d7c-46a0-be78-4ff3ee69c1fd&scale=5
88.198.114.4200 OK 179 B URL HTTP/1.1 api.trustyou.com/hotels/207499c8-7767-46b2-9043-0349b43d6ee7/seal.json?lang=en&key=8367ae2a-2d7c-46a0-be78-4ff3ee69c1fd&scale=5
IP 88.198.114.4:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash abf4d03d04417b672ae115a3816120e3
96368786494bf903840b5d3f7f486a4597556178
f55c5b138a47547d8b75467c38e5f5504451d1d659c6a10019d025de7c8fd576
GET /hotels/207499c8-7767-46b2-9043-0349b43d6ee7/seal.json?lang=en&key=8367ae2a-2d7c-46a0-be78-4ff3ee69c1fd&scale=5 HTTP/1.1
Host: api.trustyou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 15:15:32 GMT
Server: Apache
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Vary: Accept-Encoding,Origin
Content-Encoding: gzip
Access-Control-Allow-Methods: GET, POST, DELETE, PUT, PATCH, OPTIONS, HEAD
Access-Control-Allow-Headers: Content-Type, Accept, X-Requested-With, Session, sso_token
Content-Length: 179
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
booking.hotel-berghof.com/static/trust-you-bubbles.svg
135.125.240.140200 OK 368 B URL HTTP/1.1 booking.hotel-berghof.com/static/trust-you-bubbles.svg
IP 135.125.240.140:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b790689f40532c460fdf8ae0fd23ae53
8ebf475e7ee62602d34c656f6297201cc39fbc5c
fa446de041d2ad8712d9517fd0042b15e74886046b591a999d70e9815133cc0b
Analyzer Verdict Alert fortinet Phishing
GET /static/trust-you-bubbles.svg HTTP/1.1
Host: booking.hotel-berghof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/?skd-checkin=2022-09-15&skd-checkout=2022-09-22&skd-property-code=AT_JOPO_BERG
Cookie: _gcl_au=1.1.235590975.1662995718; _ga=GA1.3.1442863169.1662995718; _gid=GA1.3.2124739956.1662995718; _ga_7S9V9CPDR2=GS1.1.1662995718.1.0.1662995718.0.0.0; _ga=GA1.1.1442863169.1662995718; _dc_gtm_UA-2190190-1=1; _gat_UA-2190190-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 15:15:32 GMT
Content-Type: image/svg+xml
Content-Length: 368
Connection: keep-alive
Last-Modified: Tue, 03 May 2022 12:34:48 GMT
ETag: "62712168-170"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
apm-server.seekda.com/intake/v2/rum/events
135.125.240.139200 OK 0 B URL HTTP/2 apm-server.seekda.com/intake/v2/rum/events
IP 135.125.240.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Content-Encoding, Accept
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-expose-headers: Etag
access-control-max-age: 3600
content-length: 0
vary: Origin
x-content-type-options: nosniff
date: Mon, 12 Sep 2022 15:15:32 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_27_Sommer_Paar.jpg
151.101.85.137200 OK 23 kB URL HTTP/2 res.cloudinary.com/seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_27_Sommer_Paar.jpg
IP 151.101.85.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x432, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d1ffb169576a8ef37898c9ba6e789c80
a1baf907967986a693aaeba54a2318247554119b
ab0cf48de429dc7b79761972fe799eb73bc952c2bc077d71f1d0b01621cd258f
GET /seekda/image/upload/w_768,h_432,c_fill,f_auto,fl_lossy,q_auto/production/AT_JOPO_BERG/_27_Sommer_Paar.jpg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="_27_Sommer_Paar.webp"
content-type: image/webp
etag: "d1ffb169576a8ef37898c9ba6e789c80"
last-modified: Mon, 08 Mar 2021 09:50:04 GMT
date: Mon, 12 Sep 2022 15:15:32 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-09-12T15:15:32.903Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 23184
X-Firefox-Spdy: h2
apm-server.seekda.com/intake/v2/rum/events
135.125.240.139202 Accepted 0 B URL HTTP/2 apm-server.seekda.com/intake/v2/rum/events
IP 135.125.240.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: apm-server.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 49951
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: https://booking.hotel-berghof.com
x-content-type-options: nosniff
date: Mon, 12 Sep 2022 15:15:32 GMT
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageReady?
135.125.240.141200 OK 1.9 kB URL HTTP/2 quality.seekda.com/events/ibe/pageReady?
IP 135.125.240.141:0
Hash 2d6cdc1b50e16b2e182d44cb32bbdcb7
2d1218dc801711a0aabc79bb511f82cf1fb99fb2
0b647ab5eb847a824627c47a44bfb35d3f637c5b710c3c53c6513a02ebc4caef
POST /events/ibe/pageReady? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 739
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63d953ea7dce676e8b1c6fcab9f8eab7
5a359aed379e554c5c9885cc8f7a3bff7447d246
428029d6b65a52758df9fd8cb284df83ca4685031126b0ab5b60764a3e2d1a27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb54538-5f31-44e8-8743-582e31d384e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5709
x-amzn-requestid: 747b7be7-356b-4a9e-9869-4b8f71e66f53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YMl6sHaoIAMF2lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631b5044-0c6b0f57046b79cf56ecbf39;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 14:40:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WbzMgteMd5CxXXK6sARu-n39xAWcZiYHgkR2TCg2aNbzEXcaxS-TZQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 23:26:14 GMT
age: 56962
etag: "5a359aed379e554c5c9885cc8f7a3bff7447d246"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/pageLeave?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/pageLeave?
IP 135.125.240.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/ibe/pageLeave? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cache-control,content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-methods: POST
access-control-allow-headers: cache-control, content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Mon, 12 Sep 2022 15:15:36 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-5b70a9964c4ae71f.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/main-5b70a9964c4ae71f.js
IP 54.230.245.158:0
GET /_next/static/chunks/main-5b70a9964c4ae71f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 19 May 2022 05:30:55 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-23bda"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w22G3VherXQSCo5YpoTB0kYrTDIydWQ8L-o0bJmb81pehKfTGu_gSw==
age: 10057473
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-95fd6a619c0477f2.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/433-95fd6a619c0477f2.js
IP 54.230.245.158:0
GET /_next/static/chunks/433-95fd6a619c0477f2.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-428f5"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Byk6UJ-Fq1RnOYAedbH9kbyJorT6k8vUQQyPuDc39Rxn13ci6c_xCg==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-b421c54ce53883b8.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/659-b421c54ce53883b8.js
IP 54.230.245.158:0
GET /_next/static/chunks/659-b421c54ce53883b8.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-42542"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Iqr7ooPMIR0XkimE2SpsLIerLnKD65hh4Md_NhlOXo8CkpeRtD1mcQ==
age: 438647
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewOffers?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewOffers?
IP 135.125.240.141:0
POST /events/ibe/viewOffers? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 1568
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=cheiG8ch; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_middlewareManifest.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_middlewareManifest.js
IP 54.230.245.158:0
GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_middlewareManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:08 GMT
etag: W/"6318cecc-5c"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kH5jgvTPf0tJ3Y6hfOK4NeuZ9x2S9DNq-wigRzydP5LjITEK_z8VQQ==
age: 425512
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/packageDetails-c73dcb7a2e51aba8.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/packageDetails-c73dcb7a2e51aba8.js
IP 54.230.245.158:0
GET /_next/static/chunks/pages/packageDetails-c73dcb7a2e51aba8.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:25:03 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-6af2"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OKmGV_LdRES_GEKilGy9vwMo8UOys5D5akik-apMS1mP6gvzkzTUsw==
age: 438627
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js
IP 54.230.245.158:0
GET /_next/static/chunks/c0a33b72-efbe3e99c4b6522e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 21 May 2022 06:46:34 GMT
last-modified: Tue, 03 May 2022 12:34:30 GMT
etag: W/"62712156-4c0a4"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BsTd7wS7M8FD8-XOKU1g_rmGd8-QhxmMNsdK8M9H9AVbLr_7yc0_9Q==
age: 9880134
X-Firefox-Spdy: h2
hbe-api.kognitiv.com/channels/ibe/properties/AT_JOPO_BERG/offers-overview
135.125.240.149200 OK 0 B URL HTTP/2 hbe-api.kognitiv.com/channels/ibe/properties/AT_JOPO_BERG/offers-overview
IP 135.125.240.149:0
OPTIONS /channels/ibe/properties/AT_JOPO_BERG/offers-overview HTTP/1.1
Host: hbe-api.kognitiv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://booking.hotel-berghof.com/
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://booking.hotel-berghof.com
vary: Origin
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
date: Mon, 12 Sep 2022 15:15:31 GMT
set-cookie: MGLH51CKJDVB=VEI1698VEKLN9; path=/; HttpOnly; Secure
cache-control: private
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4
IP 54.230.245.158:0
GET /static/icons.css?checksum=10237f48c3fa09118c62aea0fad9d4f4 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 12:24:30 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Mon, 12 Sep 2022 01:24:10 GMT
etag: W/"62711efe-4a0a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 43qma2jUQHa8rwc2T2gQJJP1We-vWE1PL8euDR-JXZmyV1ZHGKBStA==
age: 52773
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/619-2b600639675c00e7.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/619-2b600639675c00e7.js
IP 54.230.245.158:0
GET /_next/static/chunks/619-2b600639675c00e7.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-5cbb1"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A93tizYAR98cy4NFDh2m2oSF0VahddTzPJ6Y0qA_QXjYPO4yQyXj0A==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/245-1c87427965379c6b.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/245-1c87427965379c6b.js
IP 54.230.245.158:0
GET /_next/static/chunks/245-1c87427965379c6b.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-1239a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cY7u8pjB9Gs8Ji0b7NvgwlGlY5u_0h-vKIe4YWHX20KIhXLXS9MDuA==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_ssgManifest.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/h9EpbwJXwlTi2qocBB7wO/_ssgManifest.js
IP 54.230.245.158:0
GET /_next/static/h9EpbwJXwlTi2qocBB7wO/_ssgManifest.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-4d"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9CzeO0hZ3oUjI81aF_r3Ar-eGxDg2-UQqW1q14D1JZ5cOjiKJMkZlg==
age: 425512
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-817392b44c4b0acf.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/index-817392b44c4b0acf.js
IP 54.230.245.158:0
GET /_next/static/chunks/pages/index-817392b44c4b0acf.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-152b0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9FKl2_9LMKBEmLW0MHznIrGdxcHiWyWDgcfutdBBqxMeIqrq4P1UyQ==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-de9574e65ecce828.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/914-de9574e65ecce828.js
IP 54.230.245.158:0
GET /_next/static/chunks/914-de9574e65ecce828.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-12bff"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A5JZAqq0niO3MdsRrvelviLeX04V-EybGvAC7Z8HL6cBOzMi-VgfFw==
age: 438647
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/viewTrustYouBadge?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/viewTrustYouBadge?
IP 135.125.240.141:0
POST /events/ibe/viewTrustYouBadge? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 826
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-3f822163f625f7bf.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/333-3f822163f625f7bf.js
IP 54.230.245.158:0
GET /_next/static/chunks/333-3f822163f625f7bf.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 17:03:36 GMT
last-modified: Wed, 07 Sep 2022 17:03:02 GMT
etag: W/"6318cec6-31161"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PZIBTv_BCqjy2FALqBpiMS0NMbZYpuviHuKun0YDoPemKySy4xrvfA==
age: 425512
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/webpack-af0fc1fb1b57cb39.js
IP 54.230.245.158:0
GET /_next/static/chunks/webpack-af0fc1fb1b57cb39.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 22 Mar 2022 12:30:56 GMT
last-modified: Tue, 22 Mar 2022 12:29:17 GMT
etag: W/"6239c11d-7ce"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J_uBkIvTiEJENAZ5qmARLyg-71077o801Mb0UhC9q8v_4PKUQNrQWA==
age: 15043472
X-Firefox-Spdy: h2
cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js
135.125.240.147200 OK 0 B URL HTTP/2 cloud.seekda.com/w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js
IP 135.125.240.147:0
GET /w/w-tracking-api/group:BookingFlow/69549e60-3d6e-0136-cbf5-0050568253f2.js HTTP/1.1
Host: cloud.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
status: 200 OK
x-rack-cache: miss
cache-control: max-age=0, private, must-revalidate
date: Mon, 12 Sep 2022 15:15:28 GMT
x-ua-compatible: IE=Edge,chrome=1
etag: W/"326875576b7eb771474b4ce1a97a6d7d"
x-runtime: 0.004080
x-request-id: d7ccf17450804302a55ae220678a8a79
x-powered-by: Phusion Passenger(R) 6.0.14
server: nginx/1.20.2 + Phusion Passenger(R) 6.0.14
content-encoding: gzip
strict-transport-security: max-age=15768000
set-cookie: SDLKJWIUDKIJS=5eced8adea842c0; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261
IP 54.230.245.158:0
GET /static/icons-extended.css?checksum=c68829aa4263885cfc63b20639cec261 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 12:34:48 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Mon, 12 Sep 2022 04:03:46 GMT
etag: W/"62712168-250b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CR_Cc2MlUpRihiY0_Lgtd-5NKYhqreVzHQ59aR2pXPEQkg0hOWIo1w==
age: 41145
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1
IP 54.230.245.158:0
GET /static/semantic.min.css?checksum=c693bf067390b2ec6106c2aec0a1c2b1 HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31536000
content-encoding: gzip
date: Mon, 12 Sep 2022 02:01:28 GMT
etag: W/"62e156ae-996ea"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZZp5LUj1qmJQKxtkDfPzkgatewZdpYUgYhKoIEkVKqKrqMTn51ULOQ==
age: 48505
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/framework-4774102d6f75bb1e.js
IP 54.230.245.158:0
GET /_next/static/chunks/framework-4774102d6f75bb1e.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 May 2022 07:23:17 GMT
last-modified: Tue, 03 May 2022 12:24:17 GMT
etag: W/"62711ef1-2640a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x3KYOO1lInpNWZRnlZDl2SF8AC_dZi12j9ILpATUMF-C5lVbh8Ku2w==
age: 9100331
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/css/aa3f45358fc40b62.css
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/css/aa3f45358fc40b62.css
IP 54.230.245.158:0
GET /_next/static/css/aa3f45358fc40b62.css HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-4e671"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8Nj1Z49MF-OwFaUYXuWgmUVzOi5XcNSppZIp89_wHtCmwZ-t1tD7DA==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js
IP 54.230.245.158:0
GET /_next/static/chunks/0b7b90cd-2a28d1759dacf41f.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 13 Apr 2022 07:40:28 GMT
last-modified: Tue, 22 Mar 2022 12:29:17 GMT
etag: W/"6239c11d-22c77"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zmtt1tpItEcOBJf_RFkhq84Uk1uTum2DukQkn0GkgFfG0YERTeVtMQ==
age: 13160100
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/712fd759-df3e3ff50ae8b461.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/712fd759-df3e3ff50ae8b461.js
IP 54.230.245.158:0
GET /_next/static/chunks/712fd759-df3e3ff50ae8b461.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-d499"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5nxgw8DRqa3TGZ3IfbjyI_JJNXg7OwWVxfF-Z9vcyFf_tuAJCielVg==
age: 4060720
X-Firefox-Spdy: h2
quality.seekda.com/events/ibe/searchBoxInit?
135.125.240.141200 OK 0 B URL HTTP/2 quality.seekda.com/events/ibe/searchBoxInit?
IP 135.125.240.141:0
POST /events/ibe/searchBoxInit? HTTP/1.1
Host: quality.seekda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Cache-Control: no-cache
Content-Length: 763
Origin: https://booking.hotel-berghof.com
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://booking.hotel-berghof.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
date: Mon, 12 Sep 2022 15:15:30 GMT
strict-transport-security: max-age=15768000
set-cookie: VCSADDYFIHLUNGF=thei9zuS; path=/; HttpOnly; Secure; SameSite=none
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-4ceee1c8d4fac8a7.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/373-4ceee1c8d4fac8a7.js
IP 54.230.245.158:0
GET /_next/static/chunks/373-4ceee1c8d4fac8a7.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-bfb3"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qgU1u2CE_RHIfv4d3iqO0ou5VCpZEe0KYUNeGSDfXhzLEZki_txAOA==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/505-c641b89b573a8980.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/505-c641b89b573a8980.js
IP 54.230.245.158:0
GET /_next/static/chunks/505-c641b89b573a8980.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-12424"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NjUQs7bynkbl19H7ThPIUPPjj7eWMizZgDK-9cz2uECEDo3XPxf8vQ==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-9663564c15a56e78.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/234-9663564c15a56e78.js
IP 54.230.245.158:0
GET /_next/static/chunks/234-9663564c15a56e78.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-6f9b"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1r1xeUAAgZr1wqcdUkC2QiX1iVyQSowdBzYEeOBLa5kCfaz3NZ1aXA==
age: 4060720
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-60149f9c7b9507d7.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/956-60149f9c7b9507d7.js
IP 54.230.245.158:0
GET /_next/static/chunks/956-60149f9c7b9507d7.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-efac"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 31EAAA4khvChnEdtpvfLmSlZ0wkiuOwBAxGQlRrXAjqXQqzlyjWxTA==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-8a5fa765b4507d7b.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/pages/_app-8a5fa765b4507d7b.js
IP 54.230.245.158:0
GET /_next/static/chunks/pages/_app-8a5fa765b4507d7b.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:35 GMT
etag: W/"63189b57-1d5a2a"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZWXl5SmcJIcYJMlQepTKV65vU43nZs28rawSS_ABawUECYKrDN8_UA==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/b801886f-67213ca4fe13c051.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/b801886f-67213ca4fe13c051.js
IP 54.230.245.158:0
GET /_next/static/chunks/b801886f-67213ca4fe13c051.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-ff19"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OFUmj-JEYLL5rhaO-ki38OxokB0BPSfA-HOLqYd-hyR4txMxUlJluw==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/a5b39bfc-49c1a7d2b3896b18.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/a5b39bfc-49c1a7d2b3896b18.js
IP 54.230.245.158:0
GET /_next/static/chunks/a5b39bfc-49c1a7d2b3896b18.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Sep 2022 13:24:41 GMT
last-modified: Wed, 07 Sep 2022 13:23:58 GMT
etag: W/"63189b6e-5d1a0"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jOhAwiLwtagICvcQdF7DZUvKfZouEE0gGq8KTJqheA1uB0ADBKPQPg==
age: 438647
X-Firefox-Spdy: h2
d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
54.230.245.158200 OK 0 B URL HTTP/2 d2jtzd336hs8un.cloudfront.net/_next/static/chunks/d099b070-221cabf5ffd73869.js
IP 54.230.245.158:0
GET /_next/static/chunks/d099b070-221cabf5ffd73869.js HTTP/1.1
Host: d2jtzd336hs8un.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://booking.hotel-berghof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 27 Jul 2022 15:16:48 GMT
last-modified: Wed, 27 Jul 2022 15:15:58 GMT
etag: W/"62e156ae-11876"
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ggl-siom58AuZ21ghk-xB5hsm7yWq56kPtnHHI1NXJLSrWFORbvs3g==
age: 4060720
X-Firefox-Spdy: h2