your-sweet-ladies1.com/
200 OK 478 B IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (478), with no line terminators
Hash 360c2119463bcd595e371e59c4b05136
6e757f108edeade550e134e2451180d145087bde
55d606eb688a0e1e4f9884d990bdcea2e3e793ce80303be05de2a9c211a9c179
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: your-sweet-ladies1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 478
content-type: text/html; charset=utf-8
date: Mon, 24 Oct 2022 08:29:17 GMT
server: nginx
set-cookie: sid=f33c5efa-5375-11ed-a475-bbf2f1379570; path=/; domain=.your-sweet-ladies1.com; expires=Sat, 11 Nov 2090 11:43:24 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 07:52:56 GMT
Expires: Mon, 24 Oct 2022 07:52:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q6wEjLDLyhPTs4enGNWJ7MJF1frIs92uD_90sly8Hgeo4E86qAeAVg==
Age: 2181
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7275
Expires: Mon, 24 Oct 2022 10:30:32 GMT
Date: Mon, 24 Oct 2022 08:29:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15578
Expires: Mon, 24 Oct 2022 12:48:55 GMT
Date: Mon, 24 Oct 2022 08:29:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: I62CQ9jE6we4P7C2r6ZG7h21jCDunMMEVmDMOQIgUUBtIVDaSTyxbSZ7BPh00BmKFVJ/6l5M+AY=
x-amz-request-id: KA7G9XD0M7XX2KY2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 08:08:26 GMT
age: 1251
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
your-sweet-ladies1.com/favicon.ico
404 Not Found 9 B URL HTTP/1.1 your-sweet-ladies1.com/favicon.ico
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: your-sweet-ladies1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://your-sweet-ladies1.com/
Cookie: sid=f33c5efa-5375-11ed-a475-bbf2f1379570
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Mon, 24 Oct 2022 08:29:17 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 24 Oct 2022 07:33:32 GMT
Cache-Control: max-age=3600
Expires: Mon, 24 Oct 2022 07:44:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qcw7fdgmdiXHaSy2CqdR1QUcFnsOCr94YTFucAAcbZPmrGgoTwe6qA==
Age: 3346
ocsp.digicert.com/
200 OK 471 B IP
Hash 60d5d7cce6c32a6bdaf0d4c92ec93a1a
cd29edee660366b41749cfd206bdc08fb421449c
fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5762
Cache-Control: max-age=90807
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:18 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:42:45 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
your-sweet-ladies1.com/?js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2NjYwNzM1NywiaWF0IjoxNjY2NjAwMTU3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2dmODByNWQ2b2IxcGU0aTQzZ3QycWMiLCJuYmYiOjE2NjY2MDAxNTcsInRzIjoxNjY2NjAwMTU3NTUwNTUwfQ.H3PlhF_JpH1eMUkwEf1Aa72u6S1Ky-aOBBOV1Fxoi2Q&sid=f33c5efa-5375-11ed-a475-bbf2f1379570
302 Found 11 B URL HTTP/1.1 your-sweet-ladies1.com/?js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2NjYwNzM1NywiaWF0IjoxNjY2NjAwMTU3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2dmODByNWQ2b2IxcGU0aTQzZ3QycWMiLCJuYmYiOjE2NjY2MDAxNTcsInRzIjoxNjY2NjAwMTU3NTUwNTUwfQ.H3PlhF_JpH1eMUkwEf1Aa72u6S1Ky-aOBBOV1Fxoi2Q&sid=f33c5efa-5375-11ed-a475-bbf2f1379570
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2NjYwNzM1NywiaWF0IjoxNjY2NjAwMTU3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc2dmODByNWQ2b2IxcGU0aTQzZ3QycWMiLCJuYmYiOjE2NjY2MDAxNTcsInRzIjoxNjY2NjAwMTU3NTUwNTUwfQ.H3PlhF_JpH1eMUkwEf1Aa72u6S1Ky-aOBBOV1Fxoi2Q&sid=f33c5efa-5375-11ed-a475-bbf2f1379570 HTTP/1.1
Host: your-sweet-ladies1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://your-sweet-ladies1.com/
Cookie: sid=f33c5efa-5375-11ed-a475-bbf2f1379570
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Mon, 24 Oct 2022 08:29:18 GMT
location: http://bilqi-omv.com/zcvisitor/f389d951-5375-11ed-bf92-0af6819116b5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=f39c01c0-5375-11ed-bf92-0af6819116b5
server: nginx
set-cookie: sid=f33c5efa-5375-11ed-a475-bbf2f1379570; path=/; domain=.your-sweet-ladies1.com; expires=Sat, 11 Nov 2090 11:43:25 GMT; max-age=2147483647; HttpOnly
bilqi-omv.com/zcvisitor/f389d951-5375-11ed-bf92-0af6819116b5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=f39c01c0-5375-11ed-bf92-0af6819116b5
200 996 B URL HTTP/1.1 bilqi-omv.com/zcvisitor/f389d951-5375-11ed-bf92-0af6819116b5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=f39c01c0-5375-11ed-bf92-0af6819116b5
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9cc5db3f63e966eabd33d94c163b39bd
4ef6a96e575db00b758338c03c12ca754d1a5625
61ff3f22920f99c0b9af2c1aec48f6fe9e43a7a0505937ec892096e9a48a83ed
GET /zcvisitor/f389d951-5375-11ed-bf92-0af6819116b5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=f39c01c0-5375-11ed-bf92-0af6819116b5 HTTP/1.1
Host: bilqi-omv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://your-sweet-ladies1.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 24 Oct 2022 08:29:18 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: ZHReUcNz
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7Irexop9c4VjtfiZf1oB5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RJb+cV/9ZVfocWkyfKAMHys6hgE=
bilqi-omv.com/zcredirect?visitid=f389d951-5375-11ed-bf92-0af6819116b5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
200 342 B URL HTTP/1.1 bilqi-omv.com/zcredirect?visitid=f389d951-5375-11ed-bf92-0af6819116b5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 233e5a5c71972b704b16d62afac6c848
5f3f9652fcc5d6f004270aaa401e2e9df8610405
2c25ca3b85daef5e437b3f9d393f3b817f17b88e80ace1db18ce8aba44df3d2f
GET /zcredirect?visitid=f389d951-5375-11ed-bf92-0af6819116b5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false HTTP/1.1
Host: bilqi-omv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bilqi-omv.com/zcvisitor/f389d951-5375-11ed-bf92-0af6819116b5/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=f39c01c0-5375-11ed-bf92-0af6819116b5
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 24 Oct 2022 08:29:19 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: hkxHCIBy
bilqi-omv.com/favicon.ico
404 653 B URL HTTP/1.1 bilqi-omv.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: bilqi-omv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bilqi-omv.com/zcredirect?visitid=f389d951-5375-11ed-bf92-0af6819116b5&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
HTTP/1.1 404
Date: Mon, 24 Oct 2022 08:29:19 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: ZHReUcNz
drivegoals-1.net/api/v1/px?xmlid=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC
200 OK 89 kB URL HTTP/1.1 drivegoals-1.net/api/v1/px?xmlid=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (653)
Hash 1803d43a82dfd3a44a478a34a29dc138
88f83d667b40559f9fa5aa4f836361fec9c0474b
5e3d292ecb73befb26df05c7a30a7c5a106a8b87588c7cd0f97f08274d4ec66e
GET /api/v1/px?xmlid=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC HTTP/1.1
Host: drivegoals-1.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bilqi-omv.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 08:29:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 89170
Connection: keep-alive
Access-Control-Allow-Origin: *
ETag: W/"15c52-iPg9ZntAVZ+fpapPg2Nh/snAR0s"
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 487213efa2d5aa0d856fe56186b87765
a484351db947bd9d767f005e6f0673b174a3a908
f489ff98893c15bb2c5330413e5ae15098ee8fa1ad4dd355017943e1bd046d54
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 24 Oct 2022 08:29:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 24 Oct 2022 05:05:19 GMT
Expires: Tue, 25 Oct 2022 05:05:19 GMT
ETag: "a484351db947bd9d767f005e6f0673b174a3a908"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
drivegoals-1.net/api/v1/pxcheck?impId=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cDovL2RyaXZlZ29hbHMtMS5uZXQvYXBpL3YxL3B4P3htbGlkPUVNQ01BblJqSmZ4UVJaUWhqbEVsWTkxQzNTVkZodXFmN2w4eHZ6bkMiLCJkZXZpY2VTcmVlblNpemUiOiIxMDAyeDEyODAiLCJkZXZpY2VXaW5kb3dTaXplIjoiOTM5eDEyODAiLCJ3bmQyc3JjUmF0aW9Md3IwNiI6ZmFsc2UsImlzQm90Ijoib2ZmIn0=
302 Found 174 B URL HTTP/1.1 drivegoals-1.net/api/v1/pxcheck?impId=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cDovL2RyaXZlZ29hbHMtMS5uZXQvYXBpL3YxL3B4P3htbGlkPUVNQ01BblJqSmZ4UVJaUWhqbEVsWTkxQzNTVkZodXFmN2w4eHZ6bkMiLCJkZXZpY2VTcmVlblNpemUiOiIxMDAyeDEyODAiLCJkZXZpY2VXaW5kb3dTaXplIjoiOTM5eDEyODAiLCJ3bmQyc3JjUmF0aW9Md3IwNiI6ZmFsc2UsImlzQm90Ijoib2ZmIn0=
IP
File type HTML document, ASCII text, with no line terminators
Hash a2f8ec1942418cbcc5581b310f89174a
31f7d13c807f5c376b1a9003da08cbb50680bf6d
a766e677b980857515213262faccb9eedd7500c553fb413c0dbfa878eada9968
GET /api/v1/pxcheck?impId=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cDovL2RyaXZlZ29hbHMtMS5uZXQvYXBpL3YxL3B4P3htbGlkPUVNQ01BblJqSmZ4UVJaUWhqbEVsWTkxQzNTVkZodXFmN2w4eHZ6bkMiLCJkZXZpY2VTcmVlblNpemUiOiIxMDAyeDEyODAiLCJkZXZpY2VXaW5kb3dTaXplIjoiOTM5eDEyODAiLCJ3bmQyc3JjUmF0aW9Md3IwNiI6ZmFsc2UsImlzQm90Ijoib2ZmIn0= HTTP/1.1
Host: drivegoals-1.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drivegoals-1.net/api/v1/px?xmlid=EMCMAnRjJfxQRZQhjlElY91C3SVFhuqf7l8xvznC
Cookie: __ssds=2
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 24 Oct 2022 08:29:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 174
Connection: keep-alive
Access-Control-Allow-Origin: *
Location: http://xml-v4.netload1.com/click?seat=2198127&i=rH0x393TIps_0
Vary: Accept
xml-v4.netload1.com/click?seat=2198127&i=rH0x393TIps_0
302 Found 0 B URL HTTP/1.1 xml-v4.netload1.com/click?seat=2198127&i=rH0x393TIps_0
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?seat=2198127&i=rH0x393TIps_0 HTTP/1.1
Host: xml-v4.netload1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://drivegoals-1.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Set-Cookie: x3325799=1781446504; Domain=.netload1.com
Location: http://tq.netload1.com/filter?q=your-sweet-ladies1%252Cyour-sweet-ladies1.com&i=rH0x393TIps_0&ci=-1846155879536839741&t=1575326367&h=12
Pragma: no-cache
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 24 Oct 2022 10:44:42 GMT
Date: Mon, 24 Oct 2022 08:29:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 24 Oct 2022 10:44:42 GMT
Date: Mon, 24 Oct 2022 08:29:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 24 Oct 2022 10:44:42 GMT
Date: Mon, 24 Oct 2022 08:29:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Mon, 24 Oct 2022 10:44:42 GMT
Date: Mon, 24 Oct 2022 08:29:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data
Hash 88436497b6fe5e22155afc45e9e8fe3e
5004575548d76d878a7f27bb3fc4a9a10e8f6909
304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: p0vFhx0iHI6stdq-3zIoeKKB6xihzwhHWgkK0Wne5rbRCjZflcew8A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:39 GMT
age: 37181
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b24b0e9eeeecd44eafc5957dc5450db
e071eb9837a242f41035da077dc6c9b0178d8f9f
33e9c9c03180d2855606be0605c894180d81e151e2f4b4b2bacf5325c11152d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9495
x-amzn-requestid: f9246128-d6a3-49e0-982d-9f75d110aa2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelztGlqoAMFs8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b67d-7f04a07955c3c9a8644475a0;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:47:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0U4F6tdX0p0SMmuDAYTqvCu-wP-s_U6P3LyV_v5b0JftnP_i7SWkIQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:43 GMT
age: 37177
etag: "e071eb9837a242f41035da077dc6c9b0178d8f9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1974529bf378941c1b76662e2b283988
cdde9ea46af873e3f838bdb35d69cc0844016311
7c39112dbb1088fe09e010fcd5d85b63a34ac40c7b93e0e9873715ccdf0ac579
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 9fbc5930-f615-4548-a683-061be9a67bb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDFGPhoAMFVzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b546-0563eb5f6ba62af65182fc3c;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YsNdkkNvH6bzM34S-EiZhHuOPYikzpYLTPqWlJFLx2-dMEf9oRnP_g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:42 GMT
age: 37178
etag: "cdde9ea46af873e3f838bdb35d69cc0844016311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9b1a13676d3fac304595806959135a2
9c16b23d37594b041cf8678399e6eaeb690346a9
7bc8f67670709caae6b39435fdaa3e5c71b9b30db76c006cc2c841300291a246
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9568
x-amzn-requestid: 0a162a3c-1723-4926-8651-7d22ecade080
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelN4EVKoAMFWnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b58b-10dae6262d730d1f12c50a20;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dQhcd1Ip1LFxzOlFCnVRBsX4nIAvOuKjONC0HKysRDmR-Y8G_x4sTg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:52:34 GMT
age: 38206
etag: "9c16b23d37594b041cf8678399e6eaeb690346a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a156d6aed9764d3759987c28b80d6f6
864d279c98c2d821010f0846de71f1b20187024f
ee73e1ab7b53ebba35dc2d00958df54a7229096ff8b5e9fd60989e92acb3fbf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11635
x-amzn-requestid: aed8aa4d-2cd1-4c5e-999e-ea7391a3ebde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelIoH3BIAMFZ8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b56a-359118d242e827e67150ca6d;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:06 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sEgtn4AnAFeNUDPLPcpKl6ed2zAjDJzK724ITXxXY913c6XeqZ7RNA==
via: 1.1 94f8839a97f73584e70cc07d9f704d62.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:30:00 GMT
age: 35960
etag: "864d279c98c2d821010f0846de71f1b20187024f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F456d7d5b-fd41-4fa5-8e9e-d89e82b0dc48.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F456d7d5b-fd41-4fa5-8e9e-d89e82b0dc48.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ad00d9f89cc4d7f29fd53f89b4545f3
c4dbc6b4b8b9cf4f8868ddc060ee731cf43153d7
6d8e82f5aced08627c83945bc8f011bbaea66789427624baaef5104858472ea2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F456d7d5b-fd41-4fa5-8e9e-d89e82b0dc48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8953
x-amzn-requestid: 5085f7ea-72de-43e0-a670-d221fc6af736
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelBzHcPIAMFpqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1c4bfd5c56b0af173eb43001;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pCvtOb9B5beB4xJFbTvDQxO37bcXmPVCAwUOw7hOZLHTe_W-ii4T6Q==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:35:12 GMT
etag: "c4dbc6b4b8b9cf4f8868ddc060ee731cf43153d7"
content-type: image/jpeg
age: 35648
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tq.netload1.com/filter?q=your-sweet-ladies1%252Cyour-sweet-ladies1.com&i=rH0x393TIps_0&ci=-1846155879536839741&t=1575326367&h=12
200 OK 7.8 kB URL HTTP/1.1 tq.netload1.com/filter?q=your-sweet-ladies1%252Cyour-sweet-ladies1.com&i=rH0x393TIps_0&ci=-1846155879536839741&t=1575326367&h=12
IP
ASN #27257 WEBAIR-INTERNET
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (549)
Hash 3d7a34352cb96ada851766e6251eef38
540e8a79365e4fc8d6b5c0f5cc236b7f0b9bb0d0
c5069a6593e5dbde3b5f898012aea0f63037edde6afb1d006faff59e744b68d5
GET /filter?q=your-sweet-ladies1%252Cyour-sweet-ladies1.com&i=rH0x393TIps_0&ci=-1846155879536839741&t=1575326367&h=12 HTTP/1.1
Host: tq.netload1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://drivegoals-1.net/
Connection: keep-alive
Cookie: x3325799=1781446504
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html; charset=utf-8
Age: 0
Content-Length: 7801
Connection: keep-alive
Set-Cookie: c1407151090=-1781446504
x3325799=1781446504; Domain=.netload1.com
Pragma: no-cache
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 01424dcf709736280318fe21d168ac0b
358c2c7813340f16349c8cfb0e4990ad5a0444e8
369e8142b16884de09b65f4cae04ce5908a919892d16160f40f543c386dff508
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 24 Oct 2022 08:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 23 Oct 2022 20:14:56 GMT
Expires: Mon, 24 Oct 2022 20:14:56 GMT
ETag: "358c2c7813340f16349c8cfb0e4990ad5a0444e8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.perfdrive.com/aperture/aperture.js
200 OK 14 kB URL HTTP/2 cdn.perfdrive.com/aperture/aperture.js
IP
File type ASCII text, with very long lines (566)
Hash 2f877260b217efab89c4fe0984a33237
35f0dc39a9af51179506ab3eca4b8835cbbd34f5
94c179fa0ca3b6d6a592e48e96f81a17f3302a3ece21b86a40b197cdd15125e6
GET /aperture/aperture.js HTTP/1.1
Host: cdn.perfdrive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tq.netload1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.10.1
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 13453
date: Mon, 24 Oct 2022 07:44:55 GMT
cache-control: max-age=3600,public
age: 2665
last-modified: Thu, 06 Oct 2022 10:45:02 GMT
etag: W/"633eb1ae-ae3a"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 01424dcf709736280318fe21d168ac0b
358c2c7813340f16349c8cfb0e4990ad5a0444e8
369e8142b16884de09b65f4cae04ce5908a919892d16160f40f543c386dff508
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 24 Oct 2022 08:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 23 Oct 2022 20:14:56 GMT
Expires: Mon, 24 Oct 2022 20:14:56 GMT
ETag: "358c2c7813340f16349c8cfb0e4990ad5a0444e8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 487213efa2d5aa0d856fe56186b87765
a484351db947bd9d767f005e6f0673b174a3a908
f489ff98893c15bb2c5330413e5ae15098ee8fa1ad4dd355017943e1bd046d54
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 24 Oct 2022 08:29:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 24 Oct 2022 05:05:19 GMT
Expires: Tue, 25 Oct 2022 05:05:19 GMT
ETag: "a484351db947bd9d767f005e6f0673b174a3a908"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
xml-v4.netload1.com/click2?i=rH0x393TIps_0&ci=-1846155879536839741&j=rv%3Db%26ss%3D1280x1024%26ws%3D1280x939%26wp%3D0x0%26ce%3D1%26ck%3Djc%26cv%3D2913%26cs%3D1%26fr%3D0%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D3%26rf%3Ddrivegoals-1.net%26lo%3Dtq.netload1.com%26mb%3D0%26hb%3D0%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26tp%3D3%26nd%3D0%26to%3Dnull%26er%3D%26shs%3D
302 Found 0 B URL HTTP/1.1 xml-v4.netload1.com/click2?i=rH0x393TIps_0&ci=-1846155879536839741&j=rv%3Db%26ss%3D1280x1024%26ws%3D1280x939%26wp%3D0x0%26ce%3D1%26ck%3Djc%26cv%3D2913%26cs%3D1%26fr%3D0%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D3%26rf%3Ddrivegoals-1.net%26lo%3Dtq.netload1.com%26mb%3D0%26hb%3D0%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26tp%3D3%26nd%3D0%26to%3Dnull%26er%3D%26shs%3D
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click2?i=rH0x393TIps_0&ci=-1846155879536839741&j=rv%3Db%26ss%3D1280x1024%26ws%3D1280x939%26wp%3D0x0%26ce%3D1%26ck%3Djc%26cv%3D2913%26cs%3D1%26fr%3D0%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D3%26rf%3Ddrivegoals-1.net%26lo%3Dtq.netload1.com%26mb%3D0%26hb%3D0%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26tp%3D3%26nd%3D0%26to%3Dnull%26er%3D%26shs%3D HTTP/1.1
Host: xml-v4.netload1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tq.netload1.com/
Cookie: x3325799=1781446504; __ssds=2
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://x.rdftk.com/click?campaign_id=144609&pub_id=1666
Pragma: no-cache
ocsp.digicert.com/
200 OK 279 B IP
Hash 4545835c4ed81f334c02fd95e46ab1ef
8b432ed10619be9685acf20fcf82247fa9df1697
70a1705ab50f92a8f7253075b953956cb42f1a3627f74c54a7d8174f5a43ab7a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=139063
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:20 GMT
Etag: "6355c917-117"
Expires: Tue, 25 Oct 2022 23:07:03 GMT
Last-Modified: Sun, 23 Oct 2022 23:07:03 GMT
Server: nginx
Content-Length: 279
x.rdftk.com/click?campaign_id=144609&pub_id=1666
302 Found 0 B URL HTTP/2 x.rdftk.com/click?campaign_id=144609&pub_id=1666
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?campaign_id=144609&pub_id=1666 HTTP/1.1
Host: x.rdftk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tq.netload1.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 24 Oct 2022 08:29:20 GMT
content-length: 0
location: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
x-rt: 14
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4y5J12dVkXUxEbTS%2FW5NkAs6yIYCbAJ4smyruLd5gWqYETC8iuTdqBfi%2Ffcnzysmv%2BUC19sDKM0jXMtE3lLciT70nTuzYV25jd2xk40Q%2FxD9sZ%2Bk4Yhj09ZtHZj6ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f1581d3c2c0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 4545835c4ed81f334c02fd95e46ab1ef
8b432ed10619be9685acf20fcf82247fa9df1697
70a1705ab50f92a8f7253075b953956cb42f1a3627f74c54a7d8174f5a43ab7a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=139063
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:20 GMT
Etag: "6355c917-117"
Expires: Tue, 25 Oct 2022 23:07:03 GMT
Last-Modified: Sun, 23 Oct 2022 23:07:03 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 314 B IP
Hash b5369d5199dc6d2e380482a995b581f4
eb2888c8dbc724c461afb617d7cdbe5607964c8a
27600b9838a70e308bd480a166b764b87a195a8e587c1bd77eef9b656a6a3476
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5732
Cache-Control: max-age=96564
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:21 GMT
Etag: "63550cb1-13a"
Expires: Tue, 25 Oct 2022 11:18:45 GMT
Last-Modified: Sun, 23 Oct 2022 09:43:13 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
200 OK 6.7 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js
IP
File type ASCII text, with very long lines (37276)
Hash 7a162a3385ec2f2fbe0be1fdd55afde3
5a37630a30526266cdaa387a32f50f20bae5ffd3
f6143442002776683e3fe10ee2b1aa2fa3d3fba2e491ea7eb1044591adb8c515
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/OtAutoBlock.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/x-javascript
content-length: 6671
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: ehYqM4XsLy++C+H91Vr94w==
last-modified: Thu, 29 Sep 2022 08:34:29 GMT
etag: 0x8DAA1F56D1BE371
x-ms-request-id: b230c9bc-701e-015d-01de-d36eb7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13803
expires: Mon, 24 Oct 2022 12:29:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f15821c9f60afe-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
200 OK 95 B URL HTTP/2 cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js
IP
File type ASCII text, with no line terminators
Hash 335be8900580e9c3875dba57334294ae
a86597d2ddfa410df13bceca86fdf9a2291fe798
8a882fd19a15567e53a5c3c08d22cdab714fa87734ed92d854c4e8fdf3940b1f
GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95
server: nginx
date: Mon, 26 Sep 2022 01:55:06 GMT
last-modified: Wed, 10 Apr 2019 11:21:38 GMT
etag: "5cadd1c2-5f"
expires: Wed, 26 Oct 2022 01:55:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3Jhk9dz-5e-n4Y4G62qHXD22t9x59Iflbum4fwVM_sLT181n-PsfKQ==
age: 2442855
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (21747)
Hash 7b4564ae957eef3a8302343f44c5cfb3
296c38b2ae23a31d80201b32a38c02e75de27c91
15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Thu, 20 Oct 2022 18:24:26 GMT
etag: 0x8DAB2C851B5BAE7
x-ms-request-id: 14e3730f-b01e-0162-12bc-e4d96b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 9834
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f158226a6b0afe-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
200 OK 2.0 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json
IP
File type JSON data\012- , ASCII text, with very long lines (6106), with no line terminators
Hash 39f38f3bfc0a07ae0cd95267c2f99d73
14b3e0265838d752d5096aef22e223003091b976
4982c65156112674be92fcc6c29caf850639a39f58629a98f351302ce00941c4
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/x-javascript
content-length: 1966
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: OfOPO/wKB64M2VJnwvmdcw==
last-modified: Thu, 29 Sep 2022 08:34:29 GMT
etag: 0x8DAA1F56CF09415
x-ms-request-id: ce7485a4-101e-000d-3dde-d337ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 13812
expires: Mon, 24 Oct 2022 12:29:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f158228a9a0afe-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 9f9c2b4fac6c51ecc1011ee6562b887e
1556ba9862762d3aaefcd4523aef06b2524d79f9
9bcb0582f076f26fd7502b05408744e9fb99d6f7ea13d1d6ae85f6fe8eb28811
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5368
Cache-Control: max-age=100876
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:21 GMT
Etag: "63551ef5-117"
Expires: Tue, 25 Oct 2022 12:30:37 GMT
Last-Modified: Sun, 23 Oct 2022 11:01:09 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 42 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 04aa83c7405f97f03baa9d962986d2a7
c832778734b26e6d2f3e8a296c767347819d82a1
dd0428cf6d5aa27782ebcb37fc001d0ab9d74f196d7c5e27bfd87a5a9eed02d7
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/json
content-length: 42
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75f15822fa00b505-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
200 OK 76 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/otBannerSdk.js
IP
File type ASCII text, with very long lines (65455)
Hash 523e98a35ea92fd6e6d32d6728a8c98e
e0951a7bfa0700679aa41a03394286723e697d93
a746202b022948dfc0461cf24b3be5b01d0c08b924b23545f3cba6e2d15b41a9
GET /scripttemplates/6.22.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/javascript
content-length: 75930
content-encoding: gzip
content-md5: Uj6Yo16pL9bm0y1nKKjJjg==
last-modified: Thu, 19 Aug 2021 02:39:18 GMT
etag: 0x8D962BA8ADAEF03
x-ms-request-id: 18163f5d-b01e-0083-086c-c4784b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1249
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f158232b180afe-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json
200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash 7f16e40ce3eb729de2cd642eb8ab4984
90f3968bd0e0afd9329b4858f3a6e2954a0b290b
8ce84bcd36f7922545956c7aa3889234aaf5e843ec7f0e8875fc99c4bcfd201d
GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/28fe90b0-2a5a-4cf9-8e33-f3878e80e202/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/x-javascript
content-length: 18222
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: fxbkDOPrcp3izWQuuKtJhA==
last-modified: Thu, 29 Sep 2022 08:35:11 GMT
etag: 0x8DAA1F58645F23C
x-ms-request-id: 1ec73252-a01e-00be-38de-d3cd6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 9644
expires: Mon, 24 Oct 2022 12:29:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f158238b610afe-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (10843)
Hash 792fef665863081a7642f10bc7b22b49
f30de5899ad8675a26c5a1688c543e7044bce0ab
af415b02ce1afa491d86bd1fafa2416302d69906ded37715ca425b6778cd7d9c
GET /scripttemplates/6.22.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: eS/vZlhjCBp2QvELx7IrSQ==
last-modified: Thu, 19 Aug 2021 02:39:10 GMT
etag: 0x8D962BA867F281F
x-ms-request-id: 1ab7d2f4-a01e-003d-026c-c46dc0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1054
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f15823bb950afe-OSL
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
200 OK 852 B URL HTTP/2 cf.bstatic.com/psb/capla/static/css/736.6d8c9c3c.chunk.css
IP
File type ASCII text, with very long lines (738)
Hash 7a373db1d52f9aecd313d2e91e36aae3
4a69e416f297d2186f1580bbd0e996a9d3b932e5
4a8eebe3cc8acedc73afe8b068140753dd564e94dc3feb049a9d354638cd94bb
GET /psb/capla/static/css/736.6d8c9c3c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 852
server: nginx
date: Sun, 02 Oct 2022 22:23:02 GMT
etag: "7a373db1d52f9aecd313d2e91e36aae3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Jun 2022 10:36:44 GMT
x-amz-expiration: expiry-date="Fri, 30 Sep 2022 10:36:44 GMT", rule-id=""
expires: Tue, 01 Nov 2022 22:23:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YyqAl3kXv_8AiMxv5s-tPkW9tzGMxgewC7FTLainDY_fHR2Gr2PY8A==
age: 1850780
X-Firefox-Spdy: h2
www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
200 OK 112 kB URL HTTP/1.1 www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
IP
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7530)
Size 112 kB (112142 bytes)
Hash 002f20bf03c78e6b62a7309d26f71b50
4784c46ec589d34bb84a2c14d459b2a704816bb7
c4d23599913494832c97ab6592f31f7bc3517574940b53fe24df59a8c7387e20
GET /index.html?aid=2188611&label=_63564ce05639dc0341ce37c5 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tq.netload1.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
link: <https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/0beba9fc333c503aa155b077036cbfb92b62b5bb.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/bcbfc6f443eed5b9c9774dec5b8bb834b6cab779.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/5e24449c9ba58a852c0d84309b6175389f581224.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/4970a240134b0393f2e4affec1f777741c3039a0.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/597c7da10eaa9c7f822f93115b9302ff25a51bbd.css>; rel=preload; as=style, <https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/e8153762b916a887a953370963ec9f1cf7eab5e7.css>; rel=preload; as=style
nel: {"max_age":604800,"report_to":"default"}
report-to: {"group":"default","endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":604800}
set-cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; domain=booking.com; path=/; expires=Tue, 24-Oct-2023 08:29:21 GMT
px_init=0; domain=booking.com; expires=Tue, 15-Oct-2075 16:58:42 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJ6AH0M1xLDQrFr%2BXyH7UsXiRhAp%2FWAerlfp9FYiNjmc2XHAbCPyqlcUV4W6NzFg16FH9Jp9E9bBxwN0n2xlJdhy8KuWiXrX7gKRUCZbCzBbG4xqA2kK38BTh7NAn3fUPqjo%2Bq1SYRRkiOk2emwmnQG; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:21 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf.bstatic.com/psb/capla/static/css/534.6997c244.chunk.css
200 OK 1.9 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/534.6997c244.chunk.css
IP
File type ASCII text, with very long lines (4478)
Hash 259cee4574c1c3155c8d6653fd9f84f2
03c870681fafb71221b599f03a3d0c94ceda2eec
ccd1b8a41b7536c7f343a418187b45cbcef1421f0ed2b6f5005d2d0ed8c7c0ed
GET /psb/capla/static/css/534.6997c244.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 13 Oct 2022 12:56:42 GMT
etag: W/"453932fef0c31eb188aebfa09f661ee5"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 12:42:46 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 12:42:46 GMT", rule-id=""
expires: Sat, 12 Nov 2022 12:56:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4Tk5U89sSXO59KjC7tZK4v2oYm8cRTEPz4Bmi4K5t8usHOg2Ijk3mg==
age: 934360
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/579.c12ce6ad.chunk.css
200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/579.c12ce6ad.chunk.css
IP
File type ASCII text, with very long lines (5439)
Hash b9a54acfb3aa31e0ad11721c1c655c90
86fb0b27eef15c863c1ddd367d9af37f580f9dfa
d2077b16503c1cbf37b596f24fa6277dd5bb65b68469103d8923e6644b77a5a4
GET /psb/capla/static/css/579.c12ce6ad.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 27 Sep 2022 11:23:19 GMT
etag: W/"f96a36635ca2752f2e5d5f74689b6447"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 26 Sep 2022 17:10:21 GMT
x-amz-expiration: expiry-date="Tue, 24 Jan 2023 17:10:21 GMT", rule-id=""
expires: Thu, 27 Oct 2022 11:23:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YCQFFeb48IQHof0R4jtd7EjtRMOX7XbJSYcpGIV3v7ss0Ea-iKwQ9A==
age: 2322362
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/bui-react.a318885c.css
200 OK 16 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/bui-react.a318885c.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash da5d3e00cef0c452a322a58043dcab8a
faecc668c4619b554c83e6fa966378c403674d08
0af729f4ca6446b881735324b26bfda720bb7c3ec8e10b19f839ab80d15f46fa
GET /psb/capla/static/css/bui-react.a318885c.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 17 Oct 2022 12:20:15 GMT
etag: W/"8ed56cbb35a2a5f77e635323d42794ed"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Mon, 17 Oct 2022 12:10:38 GMT
x-amz-expiration: expiry-date="Tue, 14 Feb 2023 12:10:38 GMT", rule-id=""
expires: Wed, 16 Nov 2022 12:20:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7tw6IlWANY0WjlgoRIZ5J_6yCTDlZCdWtwGOCqUXTcwu8XkDlWzb3A==
age: 590947
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/nl/65e3bcc466c4026a08bdb2671799ca26c3228d19.png
200 OK 133 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/nl/65e3bcc466c4026a08bdb2671799ca26c3228d19.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash d71004d18912ce962c083e4761b4edee
79aacce102a007f191df0fe753117764c1381d87
d5d5badb50d07fe792765fc98388901290efc2cd2014b1afe513321acaa6710f
GET /static/img/flags/new/48-squared/nl/65e3bcc466c4026a08bdb2671799ca26c3228d19.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 133
server: nginx
date: Mon, 26 Sep 2022 05:33:06 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-85"
expires: Wed, 26 Oct 2022 05:33:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2XTBH4MoKOEfEjozZidKP90Ir-ywNLKs-a43vkuoWD0-BDKsNLfb9Q==
age: 2429776
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/513.67992ef6.chunk.css
200 OK 1.4 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/513.67992ef6.chunk.css
IP
File type ASCII text, with very long lines (4139)
Hash a060d2c625063f1762d14a9d008d5bbd
8cdacc46f4491a90e96c1a871623c1ed84a52fb0
54f68a848e28be70fe09b04ed93276e4019b253ce206e4da42d9eea85d6db77f
GET /psb/capla/static/css/513.67992ef6.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 03 Oct 2022 22:05:15 GMT
etag: W/"fd62035d6489dce6fa68bb70d6449135"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 02 Jun 2022 10:36:44 GMT
x-amz-expiration: expiry-date="Fri, 30 Sep 2022 10:36:44 GMT", rule-id=""
expires: Wed, 02 Nov 2022 22:05:15 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pspQk56zydvqxHo4KRZDnsasdK6yqdhq0IQdWsnsNZX3sP29nzR2FQ==
age: 1765447
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/527.5cfe5a7c.chunk.css
200 OK 2.2 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/527.5cfe5a7c.chunk.css
IP
File type ASCII text, with very long lines (4088)
Hash d760259277d266b9501814ba81237cce
a7d8e2836a316619f0e93dcf4a4770fafb1a9804
53f49d98920ea71c3b3ce7c94258dcf8e34da7cc7926b27477f152b9b7091df7
GET /psb/capla/static/css/527.5cfe5a7c.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 02 Sep 2022 09:22:51 GMT
x-amz-expiration: expiry-date="Sat, 31 Dec 2022 09:22:51 GMT", rule-id=""
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Tue, 18 Oct 2022 05:05:39 GMT
expires: Thu, 17 Nov 2022 05:05:39 GMT
cache-control: max-age=2592000
etag: W/"5780be2e0054c1083a696c6716470185"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 63DcR6WMzGpHMQpcPw0og3o6KXEDy6NY5zs5_IAqGo3pqvSU_Ppp4A==
age: 530623
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
200 OK 476 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash d9198265fdc862184216b90209391ce3
6bf0123a310523ff9b392f5ef7bdb159ac3633fa
687a7e5fd4c9d0ecf220bc143a6b473dd3c2bfda30e7ac01fde79d39b5791720
GET /static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 476
server: nginx
date: Sat, 08 Oct 2022 23:05:32 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1dc"
expires: Mon, 07 Nov 2022 23:05:32 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BhyW32LlZ75yvCk7g1E3g3kAI1GHH4Z7jaCvhvTgAs2zOTRU5ig3kA==
age: 1329830
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/797.f251747a.chunk.css
200 OK 2.2 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/797.f251747a.chunk.css
IP
File type ASCII text, with very long lines (4478)
Hash 27db8d9c32d274bbe4bee13d7eec36ac
19e5e3bfe0c3b217c8c31bf5540aaa09811dfee8
61162240d6f317ab2cb3444bd413fd59e41828a12c11b7c50219e7f8e1641271
GET /psb/capla/static/css/797.f251747a.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 13 Oct 2022 12:56:42 GMT
etag: W/"1d6809463c81866a247d5705214328fc"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 12:42:47 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 12:42:47 GMT", rule-id=""
expires: Sat, 12 Nov 2022 12:56:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jbj0qJ3URlDL-knh-JPQriUFfX4cZU8qlPhytNpdBU-1zZ0-1ed6FQ==
age: 934360
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
200 OK 155 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9aa827fa86c5f431d15c5b23a78f0f9d
7a82e7b12cb63ae4afabddd04a83c94c468dc777
c6d8a7fe3c884ebb35313519fb7187cd6609b4c2ede2ddedcafb6ef8a9905310
GET /static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acafcc2df.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 155
server: nginx
date: Tue, 27 Sep 2022 02:55:35 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-9b"
expires: Thu, 27 Oct 2022 02:55:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ssFFElkCaKNasZCE7aHghdsYdPsjZopg_Ae9a96sZ6kf8UnRGMm82g==
age: 2352827
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
200 OK 6.1 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.22.0/assets/otCommonStyles.css
IP
Hash 8b1a456ccd84b485bb0404281f8cfb18
2201c674972396bf926ebe4070e9f61abd427926
c7b700da419fe3e5cbdaf2555a7c4e42d1b418b5994de22af1e638a8a7fb1227
GET /scripttemplates/6.22.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:21 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Thu, 19 Aug 2021 02:39:24 GMT
x-ms-request-id: 6bc20948-001e-0159-656c-c49b35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 3915
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75f15823cb980afe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png
200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash fc9f3351718ecc0c40483fcc805b7004
24aad85601f4ed40c3cd66921a4d12d965855c13
06ee7ee0128fbc6c5700382476bf91e704ca66f00c2dc2f99fd5b00da0c3fd64
GET /static/img/flags/new/48-squared/pt/6542345c7408e3bd0d4c2e8f38d4396bba9b0e69.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1179
server: nginx
date: Thu, 29 Sep 2022 06:49:45 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-49b"
expires: Sat, 29 Oct 2022 06:49:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mkCxNBtbruQD6-Y8Q6U6nENbJYFslD4aCI2ZNSb3-mAl7nzkjRY6nA==
age: 2165977
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/970.f13c14a3.chunk.css
200 OK 2.0 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/970.f13c14a3.chunk.css
IP
File type ASCII text, with very long lines (4429)
Hash e962875af09725c1b0246a7d096562ac
c8cabdc0d5ef253931f49ca978df05a9807271b4
2912f50b4cb3264289b7342bb049611b523f62acedb94c84b240c7af6d5aab75
GET /psb/capla/static/css/970.f13c14a3.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 13 Oct 2022 12:56:42 GMT
etag: W/"8ccf5b74dd78a13c8b1505d15573e9c0"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 12:42:47 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 12:42:47 GMT", rule-id=""
expires: Sat, 12 Nov 2022 12:56:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3V8sFlTeiqFN45lR8SEl8E8FSfs8DuK35j-U1sL5nZdhQAG7HL3egQ==
age: 934360
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
200 OK 266 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash ff013df9d8ed912796746aacd4cb18b9
e6bdb0e3516c2edbe53af0157b7db7ed08b7b376
c9b9d24d817a48351e24f4e5499e96a69d1cb8d783f57c9bdd1747cee64e50d8
GET /static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 266
server: nginx
date: Mon, 26 Sep 2022 01:57:05 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-10a"
expires: Wed, 26 Oct 2022 01:57:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KDvFkrLcrwwttaf3xAZTMpOd_1NqO8VLZZ2iObkNvAL3UV_DSgDHXw==
age: 2442737
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
200 OK 206 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9a822a64512f9ddc675a4225c98c7a3c
53f9de2996c049705b7f67f3e6b644e4e665b3bc
10b4eec5fd4c999a3d217c78ad0037396263602c5ad035613063a2b147231318
GET /static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 206
server: nginx
date: Mon, 26 Sep 2022 18:50:09 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-ce"
expires: Wed, 26 Oct 2022 18:50:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IU-GzcHNIwW3fgcMhjlaFG7O15rgDQdpBEZeb-VxK4sZ9BYXu23C8w==
age: 2381953
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
200 OK 198 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 13c8c96bf421d8616a6e22d2932a0b76
09c8720b6e8dec10ae55c6c71b83508a97d7103e
3e94a1d0a60d1870f9117b8b5ec1379df6040dead195531942a48a3ac57d11d9
GET /static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 198
server: nginx
date: Sun, 09 Oct 2022 02:09:43 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-c6"
expires: Tue, 08 Nov 2022 02:09:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wzmTu_3jch6n6VfBPF49nN1R5rDmFJ2ObbLD3gDyll1pmTbb_sEAHQ==
age: 1318779
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
200 OK 175 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 3275f76ec51c7d87571ef5a5f3e6ddea
995f9025c29c6ab965c3a29af50ae25c9a390ab0
a60eac8ef0e0d0dddef152891451b215d955373071d2bd32db7d4b2053fbaf08
GET /static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 175
server: nginx
date: Sat, 24 Sep 2022 19:34:26 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-af"
expires: Mon, 24 Oct 2022 19:34:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p26tWX8e_AYC7AXsR16rbh9-0syW3DIqfNYb_XubxtL_N0xnyH3ZQw==
age: 2552096
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
200 OK 342 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 20b632d22c7839d87dd7ab7628839ee7
e9d3232561f2812c02b6fb4e33251aaf620cd40b
ad11693269039a9a7ded88cb46a03eb85ee6f4cf29fa76376ba32c5dd9eb6612
GET /static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 342
server: nginx
date: Tue, 11 Oct 2022 22:04:09 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-156"
expires: Thu, 10 Nov 2022 22:04:09 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O4S8SkOQcMCVegCDimiHff8o4auSzAonGAZ1AjbG_jQu5f-7FM0j5Q==
age: 1074313
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
200 OK 133 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 9206b6715881ae75735ed659e808e94f
eed3ea9303a65b3b7f64f73d1a8499373aa26c0b
70c5cf7c80ec64caf926271a8832ca79342bd1d9203bae584f8c441aee10ddf0
GET /static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 133
server: nginx
date: Wed, 28 Sep 2022 03:46:42 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-85"
expires: Fri, 28 Oct 2022 03:46:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lJBpHrrKQ-c6M91n67edyfsDEbgtYZVkS3yjacySdOKek_vx5qF2bA==
age: 2263360
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/css/224.d4ddb720.chunk.css
200 OK 1.5 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/css/224.d4ddb720.chunk.css
IP
File type ASCII text, with very long lines (4639)
Hash 77e990ff08f7a7c821874a04c722ed47
0e01827509dade464a7a3e696590b28de33bb865
4496577a7e830c76d07cf30a4b77fc44ba2511adbcd0e6c3a085dd80c3759070
GET /psb/capla/static/css/224.d4ddb720.chunk.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 14 Oct 2022 03:01:27 GMT
etag: W/"67971deaf81e3108d1ec7a33aa914c85"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 12:42:46 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 12:42:46 GMT", rule-id=""
expires: Sun, 13 Nov 2022 03:01:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f7YXxK-hRfGCTcR8uRgWokfJ6FL1GBBhqqWX4USmS9UOx8OuzO_uwQ==
age: 883675
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
200 OK 333 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0430ec4fbfa9c9d0c02e4040873de949
6f5a96e43c5665af451ae5b0448ed5a7113e40d9
ee8b36adb5cbd88a5819e742a813ae397ace8c319861ad8aa4d9caaae90812a0
GET /static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 333
server: nginx
date: Fri, 07 Oct 2022 02:04:00 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-14d"
expires: Sun, 06 Nov 2022 02:04:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jhaOP5rIfZ11YVrfMDEAPn4VCuXF6VdWIsr8sCV0r2JNmWvwxqulVw==
age: 1491922
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
200 OK 332 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash a12df81751d392f648a2785d2de72a05
39156191b034cde7e591faa6677153fae77e6770
3e3cbba48022f930c07d6bdea530464cca93dd1c5473c2e75548cabd56c3d5bc
GET /static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 332
server: nginx
date: Thu, 20 Oct 2022 01:44:07 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-14c"
expires: Sat, 19 Nov 2022 01:44:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ownm9-SvJlTWbs2cb4C-CoeecbkJmcC3AUEjmM-1-8p7lE712bGIJw==
age: 369915
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
200 OK 547 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b20acca9869722ee22594c1cb79aa80c
8547e31b2cb93793703caa352c4cc7c08daf9f39
b93aa481a175851c5691c27239100c897b7e42e2d06c19df05f9b5de422fde26
GET /static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 547
server: nginx
date: Thu, 13 Oct 2022 04:18:02 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-223"
expires: Sat, 12 Nov 2022 04:18:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OUBlOEBqWgbSOgyGnv2rDJETEhTSsrTWhmMXvbdB2WvQ-VtByBkb4w==
age: 965480
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash f5426bca09243b610e38d3c14e677064
e2ab7e2d6380dc421aa64648c11ddab3b2233e49
2f404d211c6a0c69dcac5b38ae18a1fc57840c4bd330b1bd64def6bf8b748d64
GET /static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Sun, 02 Oct 2022 02:33:28 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Tue, 01 Nov 2022 02:33:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nH24Lh4hZJVHqFysXDhE2K3897G3qJv5ducPGRW0KAZSHqalHfRdpw==
age: 1922154
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
200 OK 215 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 0c3be548c24fe302a6765670af14cb20
b14e18e90b32ec75ee248f748dee5aa6d7609822
84b0beb08ce848e9e03e1e2ef34d5cb421a429661bb837750a1c37cb44b05145
GET /static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 215
server: nginx
date: Sun, 02 Oct 2022 04:42:29 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-d7"
expires: Tue, 01 Nov 2022 04:42:29 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _l5QuIbmprSWz2ZHXHervaulT-oyZYD7Uj1_agjVfhvHGdzNP-SxHA==
age: 1914413
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash e788f0359c4ebb5d12da0db2e46b5cae
7ef0e8f52982a8fe7a25e27011fca7716231a52b
6f71c4adcbf4ee888f31ee757fd52cdb61881a9aca9f8a571c00470df055185c
GET /static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Tue, 11 Oct 2022 02:17:31 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-8b"
expires: Thu, 10 Nov 2022 02:17:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rZrvYJxYHxzG_XO5V8rUTwjqBN4RMDQYVqWb1vg1NpoNGWWL3-WioA==
age: 1145511
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
200 OK 400 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 87321ae6e71b9b09c681058e91a468b5
3fb7872894da2daef6f66e73d8fd2f7b78b3b533
2c1c4611b00fa1da5b4cf45ac2c7d25744c4bf0897fab2e00833ff0aefdf5023
GET /static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 400
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 04:15:33 GMT
expires: Tue, 22 Nov 2022 01:42:08 GMT
cache-control: max-age=2592000
etag: "5f55f887-190"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: etttlI-5vWnhYNr3yKGspohCl-1Oq3rBO9ffJSEmoo_xXj2WR9ABNQ==
age: 110834
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
200 OK 99 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 49c081307e8d5ea32a47fb077905f2de
7b0a263172247879fd6255ab19f26aa45695f380
7ea8e075feac7c0c8a0cdecdf923fdab30b1b0d13336af312484b4f73b926dd9
GET /static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 99
server: nginx
date: Mon, 24 Oct 2022 03:16:20 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-63"
expires: Wed, 23 Nov 2022 03:16:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0_QGsG1gJ9uKVG79emsgKVssjtso7bUkVL4nNFnvxMwKvKfuUckpiQ==
age: 18782
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
200 OK 534 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash c5ba34de4a5b15c8e5966ce4ac6dac7d
d87ca11092c06c059948bca64995703ce9646f98
3f32c4cf32cba619d3e8a5737d713c0d2633fd369f668a8fc038c525e6b20512
GET /static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 534
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 10:43:12 GMT
expires: Tue, 22 Nov 2022 10:43:06 GMT
cache-control: max-age=2592000
etag: "5f55f887-216"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kOJbtgH-ODncP0zRMq0RCFK-_y3NSp9uOZNLEdwv3V5zL9iFbns3NQ==
age: 78376
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
200 OK 870 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 52c9301117c90f4f0f02957fb952f163
7e947ebefa1352e7282626e90e68442896c606e6
9f31f4ed393b17f37ea3ec9572bdda6ac8c1a3e3ee410743ac2b69f4717b4425
GET /static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 870
server: nginx
date: Sat, 08 Oct 2022 23:05:33 GMT
last-modified: Mon, 07 Sep 2020 10:40:09 GMT
etag: "5f560e09-366"
expires: Mon, 07 Nov 2022 23:05:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q_nLMdmYlVVgY4N4hQ3dXvNBXsXDQwSu3qg1Tb0HRCCPCFDL24VSjg==
age: 1329829
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
200 OK 325 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 6fedf345605f454aa06cc4d6cdf07c95
566b06216ad282e7b0a34b23803f9f459cf0fa8c
6ad5ceae28b78a9253cc023db0dc2dc95684e086c9c69672f4d61c64b483adf5
GET /static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 325
server: nginx
date: Fri, 30 Sep 2022 21:26:36 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-145"
expires: Sun, 30 Oct 2022 21:26:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5CJxV0HH8ZAglbb39mQLFSR45lC_eLz7YykBMPXY0YHMbkYX3848EQ==
age: 2026966
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
200 OK 142 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ddb2ed817fb9ff1e8fa103e303126d92
db7c6839bb7acec47406626cd0db92f5ae203a7f
90f140a70c71755fed1d533e2f837406fb1a6dde2d18d4318d65fb90bad9332c
GET /static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 142
server: nginx
date: Tue, 27 Sep 2022 06:15:26 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8e"
expires: Thu, 27 Oct 2022 06:15:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4210CuRef50p0dB8G3X1Mnus21F4WdA0dZdys2rkaGLAJIP1wKhn2A==
age: 2340836
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
200 OK 134 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash f4db0dc55878fe02bb1efff8fc8dfe00
233ad877840f93216679c862e72be0d38a3c1132
4d5747ee4bfc01093d27ec5833305780e8797e361214269f85ca824274d7b4ed
GET /static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 134
server: nginx
date: Tue, 04 Oct 2022 02:15:00 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-86"
expires: Thu, 03 Nov 2022 02:15:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pxz7n0gRpI8uN4oL6n9ftcXzfTsCayg7vhL5A0wJnZ2EuXSAJxN80g==
age: 1750462
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
200 OK 121 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png
IP
File type PNG image data, 48 x 48, 2-bit colormap, non-interlaced\012- data
Hash 40b14f52ee0e84a6b7f2395438df4e89
3a1b4751f73b37112ea8abe9d8e1e43fb0b5dcc1
0839f5f4321e755f66f00aebe4ecad12e81de7d87b73600f621f3e4067bec79b
GET /static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 121
server: nginx
date: Tue, 04 Oct 2022 03:00:17 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-79"
expires: Thu, 03 Nov 2022 03:00:17 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1l4TzoKvQ1DnKnYKkL4hn1hHoFvTH952xBSQpzVqe-KShxHvW1AV5g==
age: 1747745
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
200 OK 499 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 822b7bd88d4723227ae587567f978918
767884bb4c8904e55bd5c943aec9a867984137b4
e5f05ae53de8b16cc10e8bc868e9c5d9786930973bdce663ee64d206c04388ef
GET /static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 499
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 21 Oct 2022 13:21:43 GMT
expires: Sun, 20 Nov 2022 12:47:14 GMT
cache-control: max-age=2592000
etag: "5f55f887-1f3"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uHrB1uo5xcO6EAkbUGZfSthtFARNFkwMPRDUO3btLO14Z-kV2SDxow==
age: 243728
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
200 OK 150 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash ff949a5fc9c52cbb395e15afd6cbbf53
a63fbcbe8300ee1a16399b46c1fd300f1b9e6b8b
67b2c242d9fb8390f051c11070e23792de15f513d53175ce7730484a7c789ef9
GET /static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 150
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 04:15:34 GMT
expires: Tue, 22 Nov 2022 01:54:06 GMT
cache-control: max-age=2592000
etag: "5f55f887-96"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iJEXIJ66ZGdicJYUe8cVNzf7IfdSMVL1SVksiKyRwWucYC73hjILPQ==
age: 110116
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
200 OK 139 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 12aaeead084db9341a3afbd71d0b123d
5e048ae4bd509d08cd5a17d99d5430e104da7013
8bc3c2630c36b9713f3d002ed54e49c7671ec960ef0d8b02e32f2fdba2af6cb6
GET /static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 139
server: nginx
date: Mon, 26 Sep 2022 01:57:06 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-8b"
expires: Wed, 26 Oct 2022 01:57:06 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5c_8bJVcWoLO9nbnVYnQUdyp_rqe0l9m_b8a6A2xMKVw0yve3mP3fQ==
age: 2442736
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
200 OK 815 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 0964eedc0f19b195664c3f75bb22c6ab
22b1a1a6062e7f5fcad6bcb023bb5fd87d22e07d
fff82225f56361a415858aa788a2d640331f82f6d9462ac9dbcf39e9023b5a6f
GET /static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 815
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Mon, 24 Oct 2022 05:04:19 GMT
expires: Wed, 23 Nov 2022 05:04:19 GMT
cache-control: max-age=2592000
etag: "5f55f887-32f"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uTio35wRkLqQ3cebgCca1TnjsbloorCmPELrqpPPO1Pug-TxKHahPA==
age: 12303
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
200 OK 140 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png
IP
File type PNG image data, 48 x 48, 4-bit colormap, non-interlaced\012- data
Hash 7c4ca938a6f3b20c4b24b24fc16afb3d
8e9569b41f3b36e88ddba9f85627dc6d48764e88
f28938e268eb5573c2e34f320e61a80b20599684a3fc502a01e29ec696701c8e
GET /static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 140
server: nginx
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Thu, 20 Oct 2022 22:17:32 GMT
expires: Sat, 19 Nov 2022 22:11:04 GMT
cache-control: max-age=2592000
etag: "5f55f887-8c"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cU9ZYZvuzlcukqvNybF-tO6Nm8M-0omeYDu5T0D2yAJ2x4M1r7UflQ==
age: 296298
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
200 OK 573 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 243c2ae0611333fde9bfb06dd47f6300
2deae15cb1ea681950abf0456e0ddffeb940b158
5acf315305da0ed67d79de0983465c4baf314b34456a0f8df7f0faad0e5dd34b
GET /static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 573
server: nginx
date: Mon, 26 Sep 2022 06:34:03 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-23d"
expires: Wed, 26 Oct 2022 06:34:03 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bhDFw0Re3wQDY9Jx2-SwSozEglu4tf810LC5qvZrc6jil2Lpt3gWBg==
age: 2426119
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
200 OK 1.4 kB URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash b9379a24299e89e8a3a7f67e055583f3
9fcee25113376edc2308bd7e28d30a4a924cbd58
b2d098301fdd75a1c93c85f1f349262d5f7ca3de8a6eaad518095258c19e8a1b
GET /static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1386
server: nginx
date: Tue, 27 Sep 2022 02:42:42 GMT
last-modified: Mon, 07 Sep 2020 10:40:08 GMT
etag: "5f560e08-56a"
expires: Thu, 27 Oct 2022 02:42:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wtMbZGdZsGScCmAbZ9627Xp89T7fZOYD4KB8FeCNw9ae46TDqlWoEA==
age: 2353600
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
200 OK 442 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 05cbcc07c185368a084a9309aa914d61
8e11596590eacbb80269c99400b4a87e02e2583b
211e73d3bad99d5286e8f2378547adbf522b0f047e45aeed0d5dea6741488444
GET /static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 442
server: nginx
date: Fri, 30 Sep 2022 00:25:04 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-1ba"
expires: Sun, 30 Oct 2022 00:25:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oRHWRtrq3mvvzCcVuWsXXSXzkcilcPliFp_QQQ98FOaPr4rWHhivdA==
age: 2102658
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/0beba9fc333c503aa155b077036cbfb92b62b5bb.css
200 OK 28 kB URL HTTP/2 cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/0beba9fc333c503aa155b077036cbfb92b62b5bb.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d5eb0299b894fc03835d1312fb741716
69c94eec2a0bc33e8938be0ed6fff85c3c0f4e50
d5055311967df52772c5392ec4bedf2168b987f53d13977dab2814c759043257
GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/0beba9fc333c503aa155b077036cbfb92b62b5bb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 18 Oct 2022 10:06:11 GMT
last-modified: Tue, 18 Oct 2022 09:55:44 GMT
etag: W/"634e7820-28c36"
expires: Thu, 17 Nov 2022 10:06:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1xvFXJIXVwsu7NX_9LFMUQMiYlrb2_FWeo_PgXJ-HM1aPmbT6Oj20Q==
age: 512590
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/bcbfc6f443eed5b9c9774dec5b8bb834b6cab779.css
200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/css/incentives_cloudfront_sd.iq_ltr/bcbfc6f443eed5b9c9774dec5b8bb834b6cab779.css
IP
File type ASCII text, with very long lines (6253), with no line terminators
Hash 0e2726efb9a0be799917ef320dfbbaa6
c96f998eb979bb893af952dac7f468a919facfa1
baab6fd68337a2d79ad09dd8528e325bbbd0b8716356733618253b0acd235b68
GET /static/css/incentives_cloudfront_sd.iq_ltr/bcbfc6f443eed5b9c9774dec5b8bb834b6cab779.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 06 Oct 2022 15:42:43 GMT
last-modified: Thu, 06 Oct 2022 13:03:16 GMT
etag: W/"633ed214-186d"
expires: Sat, 05 Nov 2022 15:42:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ew8DZf-K3QhL-7hBIxToKfq4dM9w-qnSUN2RupMNPN-aVVvLU16Apw==
age: 1529198
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
200 OK 298 B URL HTTP/2 cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png
IP
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash 227c1e1707b8caf0b17266f188b3b099
294b9da49254731a4cb0fe538d9bc8ef44d1dd92
e1e54eb27d785ff86901a728964f40183e845b8301f9196e163e5fe919bcfb5f
GET /static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 298
server: nginx
date: Wed, 05 Oct 2022 02:48:20 GMT
last-modified: Mon, 07 Sep 2020 09:08:23 GMT
etag: "5f55f887-12a"
expires: Fri, 04 Nov 2022 02:48:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ABZ7d3a2VRuAkCRm7Fl-WlSh9_Vl5CRG0-tu9tbsVT3xhPtxQeexTg==
age: 1662062
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
200 OK 11 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e61daadd9f2361db8bea014c640fc26b
8e637a06e40e6d0d780cf55b0982fd82d2dfbacc
941706cdc14e54f8ec6c3bacc8b5bad26dd5553d0bbd34490450e67387acb132
GET /xdata/images/city/square250/644293.webp?k=24c08396bd44343c9dcc78f0df41e114bf7e6aeda3d339101c37e7ba3aa707db&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10668
server: nginx
date: Sat, 01 Oct 2022 07:10:25 GMT
etag: "36b7d511921391dc2c637f7b2e95ba00aeec76fc"
expires: Mon, 31 Oct 2022 07:10:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _7sgLnddbz_FgiwWRz5h30ku4A9kj8gnBA0igUi6UY4kgK8UzPrE3A==
age: 1991937
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
200 OK 10 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f46894a16ebb993b489c7eb4947b2321
a3ebffea1f61cb837f7512345ea899a5908cbf0a
ea3005e0d81b1ad9fded26293f7442ee24413818af379d68bed7d717e8b5f7f2
GET /xdata/images/city/square250/740935.webp?k=d90fa40b53bd16d8d06214496648ebbbccb96cff3946793c569e50103d363ec1&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10180
server: nginx
date: Sat, 01 Oct 2022 03:36:57 GMT
etag: "0b191dd423ea0ef6e4762bc18f717f94b808fa2c"
expires: Mon, 31 Oct 2022 03:36:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E9EqJJNJbK981XXFUTIbtruEPLToUsCtYGxNr93DBzzDvBm_cgEwFg==
age: 2004745
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/5e24449c9ba58a852c0d84309b6175389f581224.css
200 OK 73 kB URL HTTP/2 cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/5e24449c9ba58a852c0d84309b6175389f581224.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5aba3debcc67cd0e79bb18c9206b5d50
e37deec244d21592225619c9bd6aaabe8868c6b0
d17d8b0bb7a50b829652a4c00bcff904ba49365a67464160343c3bb8a67e065c
GET /static/css/main_cloudfront_sd.iq_ltr/5e24449c9ba58a852c0d84309b6175389f581224.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 06 Oct 2022 13:21:45 GMT
last-modified: Thu, 06 Oct 2022 13:03:16 GMT
etag: W/"633ed214-77847"
expires: Sat, 05 Nov 2022 13:21:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QdfrIRwAds4L7b5UtJj2cbzKTr2PAoJyHsRuEU1DumCnsy4YA6zqBg==
age: 1537655
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/4970a240134b0393f2e4affec1f777741c3039a0.css
200 OK 34 kB URL HTTP/2 cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/4970a240134b0393f2e4affec1f777741c3039a0.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6bbd820ce2bede4c1e7607a58e2f54d7
fe114ce98a0bf45bc401e27cbd81d28ff9af7fc7
1171d2aeadc0ea757687bdfabbc55e343c31ecd208be6496c18b9125e3aad744
GET /static/css/main_exps_cloudfront_sd.iq_ltr/4970a240134b0393f2e4affec1f777741c3039a0.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 20 Oct 2022 11:18:19 GMT
last-modified: Thu, 20 Oct 2022 10:56:20 GMT
etag: W/"63512954-1f462"
expires: Sat, 19 Nov 2022 11:18:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lyG6lQMXckhss0_LeUD2W1jKBKdXADz0vB2W0wv7NxotJYR9sQhwLQ==
age: 335462
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/e8153762b916a887a953370963ec9f1cf7eab5e7.css
200 OK 24 kB URL HTTP/2 cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/e8153762b916a887a953370963ec9f1cf7eab5e7.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bf8795ca9a352ba2333358cbc8238849
2c19e8b90c7c7520f61e80c002c7743c386eece6
a833f7685a1cb7cd12865d2c1d56847269d0f7d0e1fd8c36403d0ec5d75bc4d0
GET /static/css/xp-index-sb_cloudfront_sd.iq_ltr/e8153762b916a887a953370963ec9f1cf7eab5e7.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 06 Oct 2022 15:42:59 GMT
last-modified: Thu, 06 Oct 2022 13:03:17 GMT
etag: W/"633ed215-11a36"
expires: Sat, 05 Nov 2022 15:42:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sK-se6Daz0taNtIX4WHKEbBsKcrSx0Y0T9dDXySYV1LATwgYm89Inw==
age: 1529182
X-Firefox-Spdy: h2
cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
200 OK 11 kB URL HTTP/2 cf.bstatic.com/libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js
IP
File type ASCII text, with very long lines (8638), with no line terminators
Hash fd1e3d6357479f3d1e8afa5f4bb2691c
90bb37cec5675f7511c2b79143838227380e6e95
3152c4d99a616feeb3d13973d34a55b92897d8c72309d3274eb386ccf8be5fbf
GET /libs/privacy-consent/releases/2.1.32/customer/cookie-banner.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 07 Oct 2022 23:03:11 GMT
last-modified: Tue, 04 Oct 2022 23:02:37 GMT
etag: W/"633cbb8d-21be"
expires: Sun, 06 Nov 2022 23:03:11 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5skpErbPmO33wf3EOltQLio790OC7-U-7tg27S9c8ETKhrpB4vGhjw==
age: 1416370
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0867b4a18dd02f341467ac3cd9c87624
6dfa10bfc60382146a1cbdcdeaa1d2bf94ca8fe6
abac49fbb301fb90860cc5c950d292473ac3db44a6fc2e62398e61bf2bf7655f
GET /xdata/images/city/square250/930853.webp?k=85cc355550cdcf1ca77d1a7a635f4294e09dee696051866597a63fd7edd7af5a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12010
server: nginx
date: Mon, 03 Oct 2022 07:10:33 GMT
etag: "eff6bdb1dbd875baf37e546d4f939f3b963a3a2e"
expires: Wed, 02 Nov 2022 07:10:33 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x5SO7wp7C2TYP6peEvvw6T1DnxgkBdyJgiiZcVR_hsxXAnm4P7CODQ==
age: 1819129
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
200 OK 5.0 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f34caad9044fb6b97304bf376740090
d919e1aa423bdce0be6d91885666114f7093ee29
3ca928167fc0c1e2ffe56f5910307f715a69c7080d783492cd41ed1ebda75fd6
GET /xdata/images/city/square250/954959.webp?k=37410091e9d0e74278ef7710d594a8ef5882decaf47e8f9a7ca30f9e85bbab75&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4970
server: nginx
date: Sun, 25 Sep 2022 01:35:04 GMT
etag: "61b7c73885d3770e74d94e7e5b546b33d59bd135"
expires: Tue, 25 Oct 2022 01:35:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8tL1XJ7FReEc4SXOFjVgty_XZH7JC8w3ZACnZ9kopNy-0tQKK5LcZA==
age: 2530458
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
200 OK 13 kB URL HTTP/2 cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js
IP
File type Unicode text, UTF-8 text, with very long lines (37718)
Hash 7d8400d804cce72d66e0ac04b31877c7
609d923abf1a38c2aa5b93c5faea3b7f03fd2006
9850cb2a08a19301a1efac88543f2e69572040158a60edea697ad747560a4bf0
GET /static/js/core-deps-inlinedet_cloudfront_sd/6da0bf621035bb8a2f9c756d6a89dda03b2f7864.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Wed, 22 Jun 2022 10:40:45 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 21 Oct 2022 18:53:37 GMT
expires: Sun, 20 Nov 2022 18:53:37 GMT
cache-control: max-age=2592000
etag: W/"62b2f1ad-949e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2nokhSYQ5eKfG7D0SX1hdyZDHEdX6FRscX_cr-XdvSKPeWfp9s59YQ==
age: 221744
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
200 OK 34 kB URL HTTP/2 cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
IP
File type ASCII text, with very long lines (60582)
Hash fd4e8d9fac4d8134e15ddd2cf883764d
7833654892a55c10c81891850f615036640245b0
759d35acea3bec334bab3a082513997ca65149eef5792f17ca0073870410495a
GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 04:08:35 GMT
last-modified: Tue, 28 Jun 2022 15:19:38 GMT
etag: W/"62bb1c0a-19a42"
expires: Fri, 28 Oct 2022 04:08:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZWZ7VEHeEtK0LVUyPar-aCG_p6MnGX_s-ZSO5LNsxy09_A6_n8N0Hw==
age: 2262046
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/main_cloudfront_sd/ba880e84545dd9bd3237ed4557cef2bb089ba93f.js
200 OK 140 kB URL HTTP/2 cf.bstatic.com/static/js/main_cloudfront_sd/ba880e84545dd9bd3237ed4557cef2bb089ba93f.js
IP
File type ASCII text, with very long lines (57572)
Size 140 kB (139831 bytes)
Hash a0d2a466c999bce0bf8f1ec408c2c7b2
8fe6e9180958ff551ac663d0994578bd6f0a0f0c
a9c502b00f0e351bc6b7c838657134c3bc9fa5e3e0eccf13ecd8a2e3d422e6da
GET /static/js/main_cloudfront_sd/ba880e84545dd9bd3237ed4557cef2bb089ba93f.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 20 Oct 2022 11:18:19 GMT
last-modified: Thu, 20 Oct 2022 10:56:20 GMT
etag: W/"63512954-86991"
expires: Sat, 19 Nov 2022 11:18:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KY_MEqYr-6wkL-j-HbXornr-pGrnCb1ly2UWVUXQA9Po7zfMW5MZvw==
age: 335462
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/index_cloudfront_sd/225035d407384321db397ab901e9886f12e1d436.js
200 OK 18 kB URL HTTP/2 cf.bstatic.com/static/js/index_cloudfront_sd/225035d407384321db397ab901e9886f12e1d436.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4a41259208933feb6802ad202f2d6d0e
af3278c2d64e22a6a36d93cec4752684f68ad067
7baa56e446d3bca7b6d0ff4d156492163d91254c88e84863ed61eea1a148d689
GET /static/js/index_cloudfront_sd/225035d407384321db397ab901e9886f12e1d436.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 10:35:45 GMT
last-modified: Fri, 21 Oct 2022 10:30:50 GMT
etag: W/"635274da-12af9"
expires: Sun, 20 Nov 2022 10:35:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3DHF4dzaMm2DRENP8IG1bZZmS6KRUSM1UhxTGKCqLiI_HLunUJi6hg==
age: 251616
X-Firefox-Spdy: h2
t-cf.bstatic.com/design-assets/assets/v3.40.1/illustrations-traveller/TripsFlightsPlane.png
200 OK 20 kB URL HTTP/2 t-cf.bstatic.com/design-assets/assets/v3.40.1/illustrations-traveller/TripsFlightsPlane.png
IP
File type PNG image data, 628 x 260, 8-bit colormap, non-interlaced\012- data
Hash 764ac212c51e90e3ecb68afebffd1080
b22e47bf975863293c971fe900b0503a2a99459c
c993b4acf47ba7f128654fe4e8a3c7e00319a8af9452a752c682519a09c6a963
GET /design-assets/assets/v3.40.1/illustrations-traveller/TripsFlightsPlane.png HTTP/1.1
Host: t-cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 19639
last-modified: Tue, 11 Oct 2022 12:10:39 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 24 Oct 2022 01:47:10 GMT
etag: "764ac212c51e90e3ecb68afebffd1080"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hOBco7II4RfVMBjmFLQCJ_4yX2xhWTbfj_VdJ1DllUSnUzzozKYqbA==
age: 24279
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
200 OK 73 B URL HTTP/2 cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
IP
File type PNG image data, 1 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash ff823944bc0bb9e4bf87f0ad14f687d1
4b68ba281b9ab171611569bf78971df6970efbc1
6153929734ec12ec07072f327c1112301828497e4dd356ca261461b0b7ba9621
GET /static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 73
server: nginx
date: Sun, 02 Oct 2022 01:50:26 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-49"
expires: Tue, 01 Nov 2022 01:50:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3qla7qkmWBh5uy003HGn2g3bOk-ys3y9692KQFnLt4vy8qptdam_Tg==
age: 1924736
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
200 OK 436 B URL HTTP/2 cf.bstatic.com/static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png
IP
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 1416ab6009ad93f86e9cfc23a54e0c40
0578e45fadd1da2c26a4d5fe814a9239ff5eae97
88bb107350d5324906a2cf2b95847879ecf6bb09502d1186c38daaf15268830f
GET /static/img/flags/24/it/b539a003f197845e447b9d00d91cd74dd57bf3dd.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:53 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 04:12:10 GMT
expires: Tue, 22 Nov 2022 03:46:48 GMT
cache-control: max-age=2592000
etag: "5cadd1d1-1b4"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lv2GROHPHmUW85psJa_81l13fuKyN0cv-W6Wi4rxQnIiB-WcFa9e6g==
age: 103354
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
200 OK 7.5 kB URL HTTP/2 cf.bstatic.com/static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png
IP
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 06184b155b03a3035384042b32a67174
3458ca2a84896f0f5c39e3fb705b5c51b41c6553
b0999281a9703706445e24c253b75e9e36fc0d5d76f01b0842f902b08f00c2dd
GET /static/img/genius-globe-with-badge_desktop/d807514761b3684aedebced9265c5548a063b7a0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7455
server: nginx
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sat, 22 Oct 2022 19:04:31 GMT
expires: Mon, 21 Nov 2022 12:08:21 GMT
cache-control: max-age=2592000
etag: "61498df0-1d1f"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lIAWjKEF03HluvL_JpOoyjGqH5fdipXo2zFtimeRo4M-bXIP4iQwWA==
age: 159661
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png
IP
File type PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e32efd25ac0214b375fc8a6a32890f2
cd46a79db7e53e19d5869b3cb3e7aa22ee523479
807c8a1b498e17d227cf48a640b778bdc4398a9852493cb2f40bf0f33651d0dd
GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1628
server: nginx
date: Mon, 26 Sep 2022 01:55:24 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-65c"
expires: Wed, 26 Oct 2022 01:55:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5sJQme2DMEGrQ2yghLQJRd3HkIUQ31gnGjjCpiVaDBxHiQVNhP2nSg==
age: 2442838
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
200 OK 1.6 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png
IP
File type PNG image data, 91 x 26, 8-bit colormap, non-interlaced\012- data
Hash b6d0b31340d7a113f63b936e23d06f78
268e3856da737f7e56e679258949ef70ddde47f4
18c62988860a8ffd90bab6376b4fe36a723bd39403c420d3943aa3eb5a0029c5
GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1591
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 18:10:35 GMT
expires: Tue, 22 Nov 2022 18:10:35 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-637"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -LTPK7qfPHgmWrVGYNVSChql-wKJ98FB29J5PaYZr3vC0BPMS8nEgw==
age: 51527
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
200 OK 1.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png
IP
File type PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 6384185cbe9a4f106857a3cb85caea98
0e31a4fe2ce98a8b4fda60687aa71079b4d3a95b
5839f0330821cf08029beddd6d248170da1af16cd7aff253e7bd075d591f5d42
GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1154
server: nginx
date: Mon, 26 Sep 2022 07:51:28 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-482"
expires: Wed, 26 Oct 2022 07:51:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oOVm0gRyfojNRbNEJVAOr8MJWQSAAMdYW-w5irUpqrf5fPlGQe6t4w==
age: 2421474
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
200 OK 2.1 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png
IP
File type PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e71a5124018e16eae0b8897618623d
d0d54d88b04edfc71f338c19eab9994632bc6ced
1d6e86e59ab7235a8343f494c8e8da6cc02c5a98a75d682401340e6d06935f20
GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2146
server: nginx
date: Tue, 11 Oct 2022 19:45:05 GMT
last-modified: Thu, 12 Mar 2020 10:15:57 GMT
etag: "5e6a0bdd-862"
expires: Thu, 10 Nov 2022 19:45:05 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6lCYa_3WApp7Zf4uBJZz5JT_Rvsy11unhIAvkgXC3KcNTYqTXzvO8g==
age: 1082657
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
200 OK 3.2 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png
IP
File type PNG image data, 109 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 38784d782a29a302dab9135d63aef953
04db0e863a35062a355c4b2ea9585ec83c4ffc3e
8561e200a6a57195e480ed9d893b14579ef6acdeabfbb3fe22b5e4ec9b84b455
GET /static/img/tfl/group_logos/logo_rentalcars/6bc5ec89d870111592a378bbe7a2086f0b01abc4.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3221
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 00:20:38 GMT
expires: Tue, 22 Nov 2022 00:20:38 GMT
cache-control: max-age=2592000
etag: "5cadd1d3-c95"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hix_5fdE0-LKAeBsIpQoKirdxoI4v_Ycm5ieqYXJMMdp2O394L-AjQ==
age: 115724
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
200 OK 2.3 kB URL HTTP/2 cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png
IP
File type PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash d05a0ab9bf394439a1584a2b0d44db5c
183c28023d3ba3358a7a5df1db887582ae5340ed
b23272a9692c4ec3c020935917e9d096490876c976abec1290bd3cc9aae13974
GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2344
server: nginx
date: Sun, 25 Sep 2022 21:44:58 GMT
last-modified: Wed, 10 Apr 2019 11:21:55 GMT
etag: "5cadd1d3-928"
expires: Tue, 25 Oct 2022 21:44:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1CXod9Y6yu1xxiD0DfL445n6o4CXzlD28eC0AGM-kBwYjwusbOzUMw==
age: 2457864
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
200 OK 25 kB URL HTTP/2 cf.bstatic.com/static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1446)
Hash 284656c457a1b0f1e9637a8347ac0911
9d263fe54a268340ac72ad3c110fd1286b2d7c5f
d2a0cdd029a8982735094c46fa5566f5d26480063f6d3853212ddeb90623911b
GET /static/img/cross_product_index/accommodation/07ca5cacc9d77a7b50ca3c424ecd606114d9be75.svg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/xp-index-sb_cloudfront_sd.iq_ltr/e8153762b916a887a953370963ec9f1cf7eab5e7.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 29 Sep 2022 12:57:26 GMT
last-modified: Wed, 10 Apr 2019 11:21:51 GMT
etag: W/"5cadd1cf-7f2"
expires: Sat, 29 Oct 2022 12:57:26 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CQpd1LUZTAIpKQ-rra3OMYN8BDilrHYLt7KjIIiW9kfJhxsPd_hPaQ==
age: 2143916
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
200 OK 40 kB URL HTTP/2 cf.bstatic.com/static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 63e8cd077aa22d86c621524cda95397a
71a4340b26242ca8e1823863c27b923537b7319b
3383ed1b541de5128b18a879e11224d46631d1edfb7b38d918cd4028852c8c07
GET /static/js/raf_cloudfront_sd/b9e5b0bcf00cff69d910550bedf9b680172d2b89.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Fri, 16 Sep 2022 13:33:46 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 16 Oct 2022 13:49:03 GMT
expires: Tue, 15 Nov 2022 13:49:03 GMT
cache-control: max-age=2592000
etag: W/"63247b3a-1db04"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IuMJo2Ngf-5dTORn7va15frrH8o88ym7zNhFGN1l50llothTmwX7ag==
age: 672019
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
200 OK 7.4 kB URL HTTP/2 cf.bstatic.com/static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png
IP
File type PNG image data, 520 x 340, 8-bit colormap, non-interlaced\012- data
Hash a2bdd966488047aaa17dcebc5238432b
65c52eeb866eb2acbd183e5fb2dccc5205dbb6bf
cfc71dcddda21b32c0ac5ba5322bd41612224261fecdc38cd20a45b6b502457c
GET /static/img/genius-banner-world-bg/2b5cdbad7b92073bc396b8b59d0bb421b3a01cba.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7367
server: nginx
last-modified: Tue, 21 Sep 2021 07:46:56 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Sun, 23 Oct 2022 05:38:00 GMT
expires: Tue, 22 Nov 2022 05:38:00 GMT
cache-control: max-age=2592000
etag: "61498df0-1cc7"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ek1g0Rz7XQAzxjWAlXYyjrFgrKVXs1HlRPn76BCJU_oFbBuM_5sCRQ==
age: 96682
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
200 OK 23 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1cf4d8802d8a7c29a1c6a8f84fb42743
f0517ef84d0f9c60d23155359835b7e7f208d000
b75539e7d3b58a9a64ecfc01b01c0829392c6ccd991b3a9479c426bba4c4f6ac
GET /xdata/images/city/540x270/693535.webp?k=39f09e1a64b76dc38b82fae5e51dd9728a68c06b8a0a26c2e6254a80eb792e72&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23244
server: nginx
date: Wed, 05 Oct 2022 00:30:44 GMT
etag: "ef9f8dcd0c5841de401b3a67cacf6f4cbf3eea00"
expires: Fri, 04 Nov 2022 00:30:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PkelVaRxM0O9HwHytop6NRc68hpC7OvHSPh5sdNAkGelyHBITu4Vaw==
age: 1670318
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 606367d465fa9ffa8f549514869c322b
7e70beeff754fa21a0946def72031833fee1ea50
a4b97277078d575651a3745ddd9a0b4ecdec4c42591e16f2a873f8e680b6dd67
GET /xdata/images/hotel/540x270/65633294.webp?k=13eb1edcf90c9ee12f1f3b130c6435a9ec3175cb0633862a897a10ea25f2f029&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31426
server: nginx
date: Sun, 23 Oct 2022 04:08:08 GMT
etag: "f72d440f1e08197a502576fac0d9988733f285f1"
expires: Tue, 22 Nov 2022 04:08:08 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mQkHw7buPX5in-h81kO5vdl7Plnnok9JT5tqNwdlKtIoorYy20gIXQ==
age: 102074
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
200 OK 24 kB URL HTTP/2 cf.bstatic.com/xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o=
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8da231dc5119fa2631196021b5b76b79
acc913dd71a600d59d1485aeaf478217e6efb323
0e422d4bd5462f934cf16f7cf8be46278492bc9f35f4765cbb2382ba9233588c
GET /xdata/images/city/540x270/844103.webp?k=b4ff3d17a962184dfa8823beec573fa3f679306e8b3fa897b901ba0dedb157bd&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24262
server: nginx
date: Sun, 23 Oct 2022 02:17:10 GMT
etag: "54008e3601207ff3ed07c301b8bd26fbfe29ada3"
expires: Tue, 22 Nov 2022 02:17:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a3mB0X9dY0Ja-b1x91_1oUt5KuMgHNYsPbFduig-PCbor-qWH_0MNg==
age: 108732
X-Firefox-Spdy: h2
cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
200 OK 93 kB URL HTTP/2 cf.bstatic.com/static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 92724, version 1.0\012- data
Hash f132633e65809ec36c0f01b8a29fa457
e68a5b0de3e08ac85a13426ce3d8c13ad21d38ff
a98c20990fe3e31203fe2db8384af8e05e7b358cdae3c28b034e1f02b47db630
GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://cf.bstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 92724
server: nginx
date: Thu, 06 Oct 2022 08:17:37 GMT
last-modified: Wed, 10 Apr 2019 11:21:49 GMT
etag: "5cadd1cd-16a34"
expires: Sat, 05 Nov 2022 08:17:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -YSYmXC0uZrfgEwCe0JFGsvJ3oIO355eC0bgluDVaylMVmis6UFvvg==
age: 1555905
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
200 OK 14 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 714x300, components 3\012- data
Hash b08ebaadd8bdcdaab48146863ee7e2ac
ba8c861c80dfff7c6bb01c815341f7956f59908f
c3b9e0e160fdbdcfef162b2037b54f22235c6ed8186b1212666375215f9e671f
GET /xdata/images/xphoto/714x300/173282684.jpeg?k=e31b490d521194e65d41490f43dc704291ca07eaa762b6f36bca714d3211b9a1&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14522
server: nginx
date: Mon, 26 Sep 2022 10:23:02 GMT
etag: "c49db5d8dc1bf71b275ae7879485d99987f7d210"
expires: Wed, 26 Oct 2022 10:23:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZFvSp4jaArZIF75sJBQiiVBOagqxK32n2GUxjycAGShFsTTpDosY4Q==
age: 2412381
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
200 OK 2.9 kB URL HTTP/2 cf.bstatic.com/static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png
IP
File type PNG image data, 141 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash eeda6c96402e2a9ec176f43f0ac79e09
9cd713387ba5b2a468ffae40d40ae3718d2d1c49
08a917ae9e017c4b633b3d5920bb8e073968fa14b9bb7e78192fd2761465d0a4
GET /static/img/apple-touch-icon/c9b35bf29a75cac2f430f80a5d4bc7fd961d21a7.png HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2915
server: nginx
date: Thu, 06 Oct 2022 10:27:58 GMT
last-modified: Wed, 10 Apr 2019 11:21:50 GMT
etag: "5cadd1ce-b63"
expires: Sat, 05 Nov 2022 10:27:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rtqn9FbCFL4SLZU4ADjOIxofZBskIQXb_GoNTVVqr2Fb6ZO01BDgUQ==
age: 1548085
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/534.447b6a02.chunk.js
200 OK 17 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/534.447b6a02.chunk.js
IP
File type ASCII text, with very long lines (54424)
Hash 118ff883490e5158c50036bed1cb47fd
f05a96ac6e30d44a880c9c9266190acf2f2a0588
31f1277595a6412b0ac55ee368a842cde5580a68f87eb6348bf8f08f3b8540c0
GET /psb/capla/static/js/534.447b6a02.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 19 Oct 2022 14:44:27 GMT
etag: W/"14e17095909703078005c89efe9a9e93"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 19 Oct 2022 14:35:17 GMT
x-amz-expiration: expiry-date="Thu, 16 Feb 2023 14:35:17 GMT", rule-id=""
expires: Fri, 18 Nov 2022 14:44:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XeD33XBYz8Ehb3p-G-c4iKk-HRarqzZwSO_rpRA5E1qhzk-BqU8Xhw==
age: 409495
X-Firefox-Spdy: h2
account.booking.com/privacy-consents/implicit
204 No Content 0 B URL HTTP/2 account.booking.com/privacy-consents/implicit
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: envoy
date: Mon, 24 Oct 2022 08:29:23 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiIyNzgxYjQ0Zi02OWQ5LTQyYjktYTQ2NC00NzE0MzRlZjlmZDAiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=11643bb1aaa402d0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTESL5pS1QnXpwr5TVdQfDlxVAOnlxnFGEi;
content-security-policy-report-only: connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=11643bb1aaa402d0&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PiRWopy3QrKMJMbZhg96Pj4F15TvX2AmS6O-MuirWpTESL5pS1QnXpwr5TVdQfDlxVAOnlxnFGEi; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; default-src *.bstatic.com bstatic.com 'self'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; base-uri 'none'; object-src 'none'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-sETDKjWdxZenMZV' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -5aiDwkhfH-yOvW8eNt9yrK06_MrZw-gBDyORD0JgiqKLnby3HroWA==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/970.cdfc9560.chunk.js
200 OK 18 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/970.cdfc9560.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 23b976885d9e7cfdb36b12c722bdbdc0
a5b931bea6dc57bec25b5dd28f56570c0eda5bde
e435b49d9a5eea5fe615db9f5a8b13a3811bb4b8af10157ab8f7c87cbb717ee5
GET /psb/capla/static/js/970.cdfc9560.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 19 Oct 2022 14:42:59 GMT
etag: W/"24dfa5af25247c50cd40e50cf02f58f4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 19 Oct 2022 14:35:17 GMT
x-amz-expiration: expiry-date="Thu, 16 Feb 2023 14:35:17 GMT", rule-id=""
expires: Fri, 18 Nov 2022 14:42:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tt-7zpMrbuB0meEMHpXxDi9d_yGPd2AFfDe7AiZ2ZbsQzURaAFPbZQ==
age: 409583
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
200 OK 14 kB URL HTTP/2 cf.bstatic.com/static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js
IP
File type Unicode text, UTF-8 text, with very long lines (52155), with no line terminators
Hash 1117abc1efba777444962959b376e39c
8cd4f503a44c829b6b551d080372b518605ebb96
e9ae78b96f7b7073a3edb774f183f95892179f46c18b78dc5e3463a2473ff2dc
GET /static/js/calendar2_cloudfront_sd/06071dd1c4e89fbe99e5ad6e21584a6bf9585e84.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
last-modified: Tue, 12 Jan 2021 10:06:38 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 21 Oct 2022 18:53:48 GMT
expires: Sun, 20 Nov 2022 18:53:48 GMT
cache-control: max-age=2592000
etag: W/"5ffd74ae-cbbc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 07R_VM9Hn0ZQAbSNXLzq6LNcXNAvswiCwU7cIF3NYHLkUDoI0woAuA==
age: 221735
X-Firefox-Spdy: h2
www.booking.com/sendlayoutevents
200 OK 18 B URL HTTP/1.1 www.booking.com/sendlayoutevents
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2e05820d6f78d44fc523264488c141ed
15a4675c7eb16f533ded02117788d8f642a062df
baa1fa10e6d9e9034747499cd67e611af00aea7c01264e221182934fcacb10e7
POST /sendlayoutevents HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://www.booking.com
Content-Length: 115
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:23 GMT
content-type: application/json; charset=UTF-8
content-length: 18
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT9GOQ7RCxqeD2lTnOd7XtNkxsdLrnFPEsHSsuac6tEwajrTrXEAsc4YgcUMDMEXJOnFv3oFDjI7KMHUBvuhJtzJVE%2B%2BVofJSPmZTmRWhaRPEXdIH%2FIPuLV1Qzj6cU%2Bi0qCP8vxNg38h99w73IHXA7z28NCUyLYZrqw%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=44713bb1ae2b0515&e=UmFuZG9tSVYkc2RlIyh9YReXsVhv1rQKB4Zv_9za_vc9BNbucbf7i4UsrNB9n9iPX-uf_FNMwPQ;
x-xss-protection: 1; mode=block
account.booking.com/privacy-consents/implicit
200 OK 65 kB URL HTTP/2 account.booking.com/privacy-consents/implicit
IP
Hash 22b112df3af5d8ee5df00600cbd1d27c
cae79a387e62ccb9eb92492d7a1ca46148273676
47ac2fdf78aac4e4c5e142923e740d6c9855edbac79d5168b824dc2154dfb7db
POST /privacy-consents/implicit HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-type: application/json;charset=UTF-8
Content-Length: 36
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJ6AH0M1xLDQrFr%2BXyH7UsXiRhAp%2FWAerlfp9FYiNjmc2XHAbCPyqlcUV4W6NzFg16FH9Jp9E9bBxwN0n2xlJdhy8KuWiXrX7gKRUCZbCzBbG4xqA2kK38BTh7NAn3fUPqjo%2Bq1SYRRkiOk2emwmnQG; cors_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
server: envoy
date: Mon, 24 Oct 2022 08:29:23 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI4MGM3NzJkNC04YmQ1LTQwY2QtOWQ2NC05ODY3ZjMxYTc1OTAiLCJzZXNzaW9ucyI6W119fQ; domain=account.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=ed4a3bb18f910526&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK39bJA2SRYRXeo6CW_saaOF9HV64ucAD6K; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: default-src *.bstatic.com bstatic.com 'self'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-HjN6rl1FPGJVW6u' 'report-sample'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; base-uri 'none'; object-src 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=ed4a3bb18f910526&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdaPywujlMqYClpEWWnp7GR_-kbA2HXm3PvFWRdnUFAhBYMXFCJXDh48JHUCCGzkjlgOcpV9tqBK39bJA2SRYRXeo6CW_saaOF9HV64ucAD6K; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline';
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BE8Y-EX1UiFv0NQSYvEYwtdHS_hsehtSUTYV7qTOTXYYpbgpxeED3A==
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 42fcc80d879dd35c0bbdd04c1414890b
f1dbf58d1b458f9c50995bb8d84da4a67f2d437b
fb87565b58755d257fcf9af5b4b25e0dcfc682adb630dd2a32bbf56b91d2c325
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 572
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:23 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm4BzRCAWG6P7r31xOeCRJjLELblZrNR2fH5IgAkhwK45gMHCaJ17bHD6V%2FxhuZJKfo1xY0uuEvMn6xvCbivjs24aimH%2F3g5btielsvkqkpAoXLdYCdky52o%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/logo?ver=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&t=16666001611
200 OK 35 B URL HTTP/1.1 www.booking.com/logo?ver=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&t=16666001611
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /logo?ver=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&t=16666001611 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:23 GMT
content-type: image/gif
content-length: 35
vary: Accept-Encoding, User-Agent
content-encoding: br
set-cookie: BJS=-; domain=booking.com; expires=Tue, 25-Oct-2022 08:29:23 GMT; Secure; HTTPOnly
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=f6673bb1b1420077&e=UmFuZG9tSVYkc2RlIyh9YbpBYTW1tHKzhTg_Ohvxp7NJ5QpT5iSU77RiRuMEs2eC;
x-xss-protection: 1; mode=block
cf.bstatic.com/psb/capla/static/js/224.a60b79b9.chunk.js
200 OK 24 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/224.a60b79b9.chunk.js
IP
File type ASCII text, with very long lines (65460)
Hash 7fbfda48c7ce511687f701b1e45ff9d6
b34d0bad4030467efacf5f909b8cd8a5bbbe783b
8c00b435e3d5fb9da7a4b16c3d3f38d1c9725f3519a52eade7f3245619e2596f
GET /psb/capla/static/js/224.a60b79b9.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 20 Oct 2022 15:43:55 GMT
etag: W/"106c1411f2dec7d62b95e88edb9919ce"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 20 Oct 2022 14:52:04 GMT
x-amz-expiration: expiry-date="Fri, 17 Feb 2023 14:52:04 GMT", rule-id=""
expires: Sat, 19 Nov 2022 15:43:55 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5Yj2hWYdKxO4P7O0HgiUeUC_KfwIVoxx5S7VnKOEo5NE5T5Vl0cf0g==
age: 319527
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
200 OK 2.6 kB URL HTTP/1.1 www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
IP
File type JSON data\012- , ASCII text, with very long lines (10316), with no line terminators
Hash 07c1442e49c4a0c2e48f090c2a82c832
5073a5b199dc669aed4274f7fd791f7b9e80743f
bd06ea2522ab460918d47400d0b15babaefb3e36d3b29452614b8abf6ac6f270
POST /dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 2188611
x-booking-experiment-state: EZ3T7cUcpl7EINAc1FJ-OGi1uiBt-kMp1r6cvtkTPdhb84_K0JL8HB93WqZjRsMbF
x-booking-pageview-id: e19b3bb059220326
x-booking-site-type-id: 1
x-booking-timeout-ms: 400
x-booking-topic: capla_browser_b-index-lp-web-mfe
x-envoy-expected-rq-timeout-ms: 400
Origin: https://www.booking.com
Content-Length: 1119
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:23 GMT
content-type: application/json; charset=UTF-8
content-length: 2645
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=RS86AwJvJ4CuFoXgXO0151PegAfvrkSxWx9vLmGqPcO87S6yQ9eIKZ6GULDAPfVyEEs8Be2gaZrs8axxggwAsA%3D%3D%3AltjcJM5u9fOSukHvVR3G%2F7RWUtysQ%2FjstRH3lrk16rI-Z6UuYotk0U9vBN7Xc0KtN6F89joDb1P5TZyhYbstvw5Xq0BvyHYMUVBbQgOmzyw%3D; domain=booking.com; path=/; expires=Tue, 24-Oct-2023 08:29:23 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5skA6rp0ZNTlYYE5f4M7aFgrBNF9D0foaiJQMma1Pqdq%2FjS0bTEoCcn7M4EZb2X7uVkRwFLMjgFhXYbQzxTlTZhD7LVTEUXCwPq7CuMDriNYvbPIgc5psszxQRirDfMPbVD5nLWCg%2FJOomLuhkBJI07K%2BKqTz%2Fdqv4%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:23 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
200 OK 3.1 kB URL HTTP/1.1 www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12858), with no line terminators
Hash 7216c3140070d3b9371073f2b8bb5b90
5c6665db15aafbdb5e5b1113062c98e1b86890b9
d70037cebe5927b92fdb1507276be9faf042dfe579881ff30c80c5c5b03c69cf
POST /dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 2188611
x-booking-pageview-id: e19b3bb059220326
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 1719
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 3143
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=GE7BcNo7ym3%2Fe90LELQxGPGFQCm52BJ83OzplK1NvYSPOT3wOnAsDq9ovOcZz5w8DBVHme8lkVPH-ZFfsAMuyQ%3D%3D%3A%2F7-S-OZri2ZH-gCPx8hn%2FRGVH7aPnxeHci78B2zd1ttjRIs32xcoUNIDeQG8V-hDwlrLdjPD1H-UVvmjFmCkRtCfSJ50ruaNHN81Nv3fSgM%3D; domain=booking.com; path=/; expires=Tue, 24-Oct-2023 08:29:23 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm5vJJs4kKW88w2OlUQe3GPfMNSYXA8eraW2zZBgcU6%2BzMTcxhgik7%2F2RvZySOzhaJiEIqq9lvivc%2BdtOVNpjNjCVOXIb1nCuOlTNr90QSZ23aIb1H6d3QPc%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
IP
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
X-Booking-AID: 2188611
X-Booking-CSRF: IYVWYwAAAAA=pPUTnhl1cVZAwc3zhYVvHoFtu6-tTapY-LKT8Ru7_4ZKyoS2VGXqFtCPUEmAaDsA3hW7fy5uQawo37RgcHCqiOp8O2UzRw85Hf_Z0xt7MLEAqQhPXJlpTL1oDRm8wxHaV2Pi79olKIAx0V0Faf2MI4dACKF-MTUc6uKzCps4L1J32MwmRjvbY5zlltvYbPE4WKWDGw6PHBaQgB_4
X-Booking-Info: 1588860,1605620,1606170,1606360,1607820,1611780,1613770,1615240,1615680,1615930,1615950,1616150,aaTBNZZJRLESPIDNJDPVBC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Label: _63564ce05639dc0341ce37c5
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: eab515e6cb204a72b42bfb0e5b37cc13
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=RS86AwJvJ4CuFoXgXO0151PegAfvrkSxWx9vLmGqPcO87S6yQ9eIKZ6GULDAPfVyEEs8Be2gaZrs8axxggwAsA%3D%3D%3AltjcJM5u9fOSukHvVR3G%2F7RWUtysQ%2FjstRH3lrk16rI-Z6UuYotk0U9vBN7Xc0KtN6F89joDb1P5TZyhYbstvw5Xq0BvyHYMUVBbQgOmzyw%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5skA6rp0ZNTlYYE5f4M7aFgrBNF9D0foaiJQMma1Pqdq%2FjS0bTEoCcn7M4EZb2X7uVkRwFLMjgFhXYbQzxTlTZhD7LVTEUXCwPq7CuMDriNYvbPIgc5psszxQRirDfMPbVD5nLWCg%2FJOomLuhkBJI07K%2BKqTz%2Fdqv4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=10e23bb26e240212&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejL9-piifhzlvCBKEcpHdQ2LJLGEUKk4nkQ; frame-ancestors 'none';
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7&etgwv=
200 OK 35 B URL HTTP/1.1 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7&etgwv=
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7&etgwv= HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 2188611
X-Booking-Session-Id: 9baa1f1ef165f6ebaec69e56a1f884eb
X-Booking-ET-Serialized-State: EZ3T7cUcpl7EINAc1FJ-OGi1uiBt-kMp1r6cvtkTPdhb84_K0JL8HB93WqZjRsMbF
Connection: keep-alive
Cookie: _pxhd=RS86AwJvJ4CuFoXgXO0151PegAfvrkSxWx9vLmGqPcO87S6yQ9eIKZ6GULDAPfVyEEs8Be2gaZrs8axxggwAsA%3D%3D%3AltjcJM5u9fOSukHvVR3G%2F7RWUtysQ%2FjstRH3lrk16rI-Z6UuYotk0U9vBN7Xc0KtN6F89joDb1P5TZyhYbstvw5Xq0BvyHYMUVBbQgOmzyw%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5skA6rp0ZNTlYYE5f4M7aFgrBNF9D0foaiJQMma1Pqdq%2FjS0bTEoCcn7M4EZb2X7uVkRwFLMjgFhXYbQzxTlTZhD7LVTEUXCwPq7CuMDriNYvbPIgc5psszxQRirDfMPbVD5nLWCg%2FJOomLuhkBJI07K%2BKqTz%2Fdqv4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: image/gif
content-length: 35
vary: Accept-Encoding, User-Agent
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=b1403bb11e5a0258&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejJQIYxqgFP-KllI1gkimsxceWB9orawSAA; frame-ancestors 'none';
x-xss-protection: 1; mode=block
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o=
200 OK 12 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a36f4027287a0f6a3082dc0f55198730
046cdc6d82e7bd58bea3d7425a38d71bfb9c8914
93a0201d50a63130bc8b38fd47974805b864bf254427c8ea6e628b83f333f34b
GET /xdata/images/xphoto/300x240/45450084.jpeg?k=f8c2954e867a1dd4b479909c49528531dcfb676d8fbc0d60f51d7b51bb32d1d9&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12527
server: nginx
date: Thu, 20 Oct 2022 03:41:36 GMT
etag: "b5539c5ed8c359d5902f6b37fe163b3e20c96123"
expires: Sat, 19 Nov 2022 03:41:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k8yAy5oANqF-GZJwxm5MgQftXUcCMr-25DVeRLw5kLT7WkGN1xeYTw==
age: 362868
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
200 OK 15 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash d7f7b2f37d55a0948fe4d3b371f78f41
3cf5a1f3b666afbd4e8f3ea39e9de2b9f628f72c
8d70465609b50fe82003fee4bad7def0ca7b231f3d8e5878471aa88cff9bcd9e
GET /xdata/images/hotel/300x240/100235855.jpeg?k=5b6e6cff16cfd290e953768d63ee15f633b56348238a705c45759aa3a81ba82b&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15106
server: nginx
date: Wed, 19 Oct 2022 04:49:14 GMT
etag: "c57746d8d277c6888de45ce3f5daf075dca7c177"
expires: Fri, 18 Nov 2022 04:49:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p2P7__x3OQcUDwEtsMPjasmso5gkNNGR6hLmH6wsQCB0S20eH5BBog==
age: 445210
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 2414c022c1585360984508f5c5de208b
7f2fe2e841f4929dcf52c93c7efbe6401ef9fd24
2309e00634f6000b455200aeaae2c868aef28a31a05571aeada61b9c78264135
GET /xdata/images/xphoto/300x240/45450074.jpeg?k=7039b03a94f3b99262c4b3054b0edcbbb91e9dade85b6efc880d45288a06c126&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20152
server: nginx
date: Fri, 30 Sep 2022 06:34:59 GMT
etag: "21df8c54cc6ec0e37f85e461df60ca24063518fa"
expires: Sun, 30 Oct 2022 06:34:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rIvtRckll0-Gk3nz56zffIR8LdYYpfhMctzJhuYQPn9H-QITsItqmQ==
age: 2080465
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
200 OK 14 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 8acccb2d6683be0bca40bb1771e89a50
7b209f7d6f9a0f44f33f2a12b132ea391d5a7811
95e94b8bd3c16405b193fdd709c777fd2b5ea98d994a40232d95c26c04da6f79
GET /xdata/images/xphoto/300x240/45450090.jpeg?k=52f6b8190edb5a9c91528f8e0f875752ce55a6beb35dc62873601e57944990e4&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 14448
server: nginx
date: Fri, 21 Oct 2022 04:23:38 GMT
etag: "bcd64ff974431d47153b0d41c59dc90156e82b54"
expires: Sun, 20 Nov 2022 04:23:38 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QEQweZSO8iCgoqFoHE0a_ot5RrYgLa2oWjpZwkdAn_lCkEqHT90EXQ==
age: 273946
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
200 OK 12 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b5b754cfdb4146c7a99d432dd323a23b
901d28c8ad2a1431c560f4fefbd96768cea85823
1718dd5438e00eacc0afd6176fbe286bb20531864915d3c07c4312737d25ce7a
GET /xdata/images/xphoto/300x240/45450058.jpeg?k=2449eb55e8269a66952858c80fd7bdec987f9514cd79d58685651b7d6e9cdfcf&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12173
server: nginx
date: Sat, 24 Sep 2022 10:51:19 GMT
etag: "c640d9dab50e20f2d820223a90078e61edd61352"
expires: Mon, 24 Oct 2022 10:51:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RyER4BUH8phg81tsp62T30cAOVZrG6Wx63_DKQYPI0LSTVUMqZ37PQ==
age: 2583485
X-Firefox-Spdy: h2
cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
200 OK 96 kB URL HTTP/2 cf.bstatic.com/libs/perimeterx/px.v7.6.9.min.js
IP
File type ASCII text, with very long lines (65402)
Hash 6dd7eea6fec3219c2218496fd8bf1fae
c313073c47229648544517259214545cbe8ceffb
3501b0bad228e57a6c932a2cc8b22fd016103937d3972f86508d2b137c7dfa79
GET /libs/perimeterx/px.v7.6.9.min.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 03:37:20 GMT
last-modified: Wed, 21 Sep 2022 00:42:35 GMT
etag: W/"632a5dfb-39901"
expires: Fri, 28 Oct 2022 03:37:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UG2kSaaFLINQ7ASJ4WoHmZiHURjkoLKFRmbr2t0ZC_BW2Mi3AJOdYw==
age: 2263924
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b20c06f141858ff7b0aa0ade204140ba
a95923abb9dc509638db66c2821926f0e7d83db9
b5ecd72ebdb92a80d606d5f158ce5f7438d51a6075c80bfd8ba923df4c092025
GET /xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12557
server: nginx
date: Sun, 09 Oct 2022 02:17:24 GMT
etag: "65fc08f8dbe9a61e1bce3736738e2a08adbd99d2"
expires: Tue, 08 Nov 2022 02:17:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MHx6EoDDQgikGgVd5_qO4ss6Wus9c2HRQIEg-aOdnt67cbvNYobo-g==
age: 1318320
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a278b4f84e27ae6e53694c50c6c0db6e
8289a6f74256ebe6ead5ed14c58d6704ec72a7ef
57c23f20cba27810aa9c20deabd2edc8dac96cee6d1ca27f1c659610becee55d
GET /xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11252
server: nginx
date: Sun, 09 Oct 2022 02:11:07 GMT
etag: "6b3ce5505e63ed7502c24dea538bc31e0c533dfc"
expires: Tue, 08 Nov 2022 02:11:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PUj0ZDl90ruDNlO2bBCQo2cnSTkfb5Hjbc9DryMnDGnB_k3jBl6LCg==
age: 1318697
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b20c06f141858ff7b0aa0ade204140ba
a95923abb9dc509638db66c2821926f0e7d83db9
b5ecd72ebdb92a80d606d5f158ce5f7438d51a6075c80bfd8ba923df4c092025
GET /xdata/images/hotel/300x240/119467716.jpeg?k=f3c2c6271ab71513e044e48dfde378fcd6bb80cb893e39b9b78b33a60c0131c9&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12557
server: nginx
date: Sun, 09 Oct 2022 02:17:24 GMT
etag: "65fc08f8dbe9a61e1bce3736738e2a08adbd99d2"
expires: Tue, 08 Nov 2022 02:17:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yn7wx7EpVI2zBYTlJC9MINkTo4xeBLjB8ZVRPO9oakm9mjaFeTtHLA==
age: 1318320
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a278b4f84e27ae6e53694c50c6c0db6e
8289a6f74256ebe6ead5ed14c58d6704ec72a7ef
57c23f20cba27810aa9c20deabd2edc8dac96cee6d1ca27f1c659610becee55d
GET /xdata/images/hotel/300x240/52979454.jpeg?k=6ac6d0afd28e4ce00a8f817cc3045039e064469a3f9a88059706c0b45adf2e7d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11252
server: nginx
date: Sun, 09 Oct 2022 02:11:07 GMT
etag: "6b3ce5505e63ed7502c24dea538bc31e0c533dfc"
expires: Tue, 08 Nov 2022 02:11:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Xy02j9QsnpMZHLfvEtA7u3rXYtnA-cejSmOVlEUQ0gz_8U2wRfPsDw==
age: 1318697
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 36896ed28c3a04b337713e865e468131
b42b54b780ee6652ae6ba59bf57a1f7daaeb6458
6bf196e10de012119d344c3b9c9e1ca4637b5917264327dfb6704ecae22b059d
GET /xdata/images/xphoto/300x240/45450113.jpeg?k=76b3780a0e4aacb9d02ac3569b05b3c5e85e0fd875287e9ac334e3b569f320c7&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11215
server: nginx
date: Wed, 28 Sep 2022 04:49:31 GMT
etag: "350196331bfb15b7e849b6da553fe936ab6a9dcd"
expires: Fri, 28 Oct 2022 04:49:31 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RCMB9BnMpeFlh_W1zm95z3qw77EG5a-_vcUO9goum9ngcsuIMv8Fnw==
age: 2259593
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
200 OK 11 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5567eb5c3d7f1f8d3c5fa7d43cb32b34
4caeab4dfa4cbdad3bdde14b1f659f8b0b06b46f
84331b7d14d04d74b8b85ef87221f322f8508e5e596b5c8bae2f8197f233aec2
GET /xdata/images/xphoto/300x240/45450073.jpeg?k=795a94c30433de1858ea52375e8190a962b302376be2e68aa08be345d936557d&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10959
server: nginx
date: Sat, 08 Oct 2022 02:10:04 GMT
etag: "1aa87b775c64e0ebbb2ca48d9e0cb9cd269cfd58"
expires: Mon, 07 Nov 2022 02:10:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a3osaYsTIF7a952Sgjg4qfgvGWcWhlq0FqnE82R250COSSmiKIKyYw==
age: 1405160
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb649ad60fe5750fbc23da44d35206b4
a9c188e226fdd77e73f3fa374b210bf1bb0dfe65
a6f122a9ceb30d1ebc827c40e4e7e40b710da41f9a7ee454d8504128e0ca7aa0
GET /xdata/images/xphoto/300x240/45450082.jpeg?k=beb101b827a729065964523184f4db6cac42900c2415d71d516999af40beb7aa&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13058
server: nginx
date: Tue, 04 Oct 2022 00:52:57 GMT
etag: "1e64ccfeb1656ebfee7f5976fc97efc87a3e2536"
expires: Thu, 03 Nov 2022 00:52:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V5grxh5LI165ttbx7IXWxJaB5LNB9ZisUnh1W6t4caz0Jbtbg7u_tQ==
age: 1755387
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
200 OK 13 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 34cd95647e7bfee64c4854f7146348b9
8017d1d7da4d9079bd0608f985a01630543c7d3a
7f72c1e1d27db3f66b0362c6b6066f384302247b1bc315af8054109102860740
GET /xdata/images/xphoto/300x240/45450093.jpeg?k=aa5cc7703f3866af8ffd6de346c21161804a26c3d0a508d3999c11c337506ae1&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13027
server: nginx
date: Tue, 04 Oct 2022 00:56:00 GMT
etag: "8810332f279fd7b6d26036382d8548abf3ecf09e"
expires: Thu, 03 Nov 2022 00:56:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q-gwyCnq9T5ZBFKN6A7uCxevUys3k-P5ZMIoDcI76pDrugodcMatNg==
age: 1755204
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 5ce55d22c4e06809b72801bf78198fb2
8cc49f26d00a1b2747ba599b06d67fd57d724047
3781416aa7ee06509ed5e7aa5143189ca6e1436f586194544fba3b8cfff6f27a
GET /xdata/images/xphoto/300x240/45450056.jpeg?k=251e2507d43a24a4c58bb961b8d157147d56efbf91b49f9606bc768c58f581e4&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16003
server: nginx
date: Wed, 19 Oct 2022 04:54:34 GMT
etag: "5f50b3e58eb5954613b87ee105aaac2bd352d51c"
expires: Fri, 18 Nov 2022 04:54:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oF8rfnl9VdALCBTMlgdfHswzihaRQwRGDetJsb28NNw83t-nlYlIQw==
age: 444890
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css
200 OK 24 kB URL HTTP/2 cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css
IP
File type ASCII text, with very long lines (1823), with no line terminators
Hash dbf76563a8f7492af9993f7debfac721
4674d75943e143ce42d6ced4caae2cb7d2970a85
de720a6849d48605d51d26656024f5aaebd9ace32beef65fb96e330752565277
GET /static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 20 Oct 2022 11:18:19 GMT
last-modified: Thu, 20 Oct 2022 10:56:19 GMT
etag: W/"63512953-56b71"
expires: Sat, 19 Nov 2022 11:18:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CILVvrrOm_R7nmFAEQKT3I4kPhb9D3vGn-P3Un7RXiZtCyJh-GD0hA==
age: 335462
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
200 OK 18 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 3d32707cb3ccfc843ca809ff0ff08c28
950e8aa81a2f546217a0ca433700c4df4550bbfd
10d7e42ad31f48815167a292170eaacedd4e7b0ae8546795a63975c2711ce024
GET /xdata/images/xphoto/300x240/45450064.jpeg?k=4d4ea22dc4828fd55a3889e90531c9841ddb2d9abf460c420cdd24f2a9b658d2&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18103
server: nginx
date: Mon, 10 Oct 2022 16:55:56 GMT
etag: "e859b3ec1b423c059cc027e1acf5295516e7c0e3"
expires: Wed, 09 Nov 2022 16:55:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dsFmPFVDmx2M9ydlFk56fu8_2euuNesGjxV-0wXldSzx_6RoV3YDSw==
age: 1179208
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
200 OK 20 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 41bf36733e71ce642c45069444cfcf64
c931c599e9519d6c110ceed2c92432b818780d07
5c330c4cabaf246ebde2e47b2153d3e070423478706634c810980d67173f503a
GET /xdata/images/xphoto/300x240/45450068.jpeg?k=41cc7c5449011323aaaaed4e845cb16200b5d540c77a50c1bea90399a1e92d70&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19539
server: nginx
date: Fri, 30 Sep 2022 21:27:44 GMT
etag: "f57c9f8780a37133ff565858d05127d3c83f51e5"
expires: Sun, 30 Oct 2022 21:27:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yVksWqTo5AH69vrZR53Z7r1G4pCqrzEHXEj0qbAZ-FI_MYPpbHI1dA==
age: 2026900
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
200 OK 22 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a610b882e99f89c94893c05f18687ec3
16e551d6c5ac3a8db914ec8f5fc15bbe9589a1c8
9814b3eb58d8fb061b8ebe7b1a76f31f1d08e556f1c4b3662e3a6752f121ca07
GET /xdata/images/xphoto/300x240/45450066.jpeg?k=4adfab312f5d26da9f81da48d8c95ca8f108215b2c84085590891a9e0e17b144&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21509
server: nginx
date: Sun, 25 Sep 2022 01:28:10 GMT
etag: "3bea92699f1083d6968c192ef53dc749683f43c6"
expires: Tue, 25 Oct 2022 01:28:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Mh-zhP6WMXErhxvB26lgxnxsMtieqJmwz18VvLLAdM8k9_98DY5jZQ==
age: 2530874
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
200 OK 16 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6eb82e2bccd8b35e46f250238844ef3c
8f9cc26cce3b866559d1994c75147871b3d3bcea
0a96fd07340aee61dede1f72f25f593c9bed353963d8f289890b38fc2b827ba7
GET /xdata/images/xphoto/300x240/45450283.jpeg?k=44ef0e355cff36883935e4c99b5c01b035eabebad278d22363210b2fe40b2791&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15976
server: nginx
date: Sun, 02 Oct 2022 02:09:59 GMT
etag: "d66d2556dad134b536b6915a00238f6956108ef4"
expires: Tue, 01 Nov 2022 02:09:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4Dyo59BMe4KeKh0mp9ISWOsKMpQKBUrKixUNed_Rxe0D1m7oMO_lCw==
age: 1923565
X-Firefox-Spdy: h2
q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
200 OK 21 kB URL HTTP/2 q-xx.bstatic.com/xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 90383d39034028eafbd253eead13aecf
32035c5bcff0627f4901188d0e7b994aa46e64c8
150590b7a8af048e1a2696985211a78b0fa1800523f338e9fee9b5947cb0e5d7
GET /xdata/images/xphoto/300x240/45450103.jpeg?k=a1fa72362160b1df6e288050afa7ce1aade80871acd368ddd4a4ebf6ad87764e&o= HTTP/1.1
Host: q-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20736
server: nginx
date: Fri, 21 Oct 2022 01:37:20 GMT
etag: "a8cc76f5492606a61516275b6265840d7a14bc27"
expires: Sun, 20 Nov 2022 01:37:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I4P4WjaAe7WYk3wheH9yWtxiBdnpney-BRU82vPvV80ZjUDVCu_2kQ==
age: 283924
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
200 OK 17 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash cb830f24406a145f18b29227188fe8d0
6244d25c3af11e7b1106c7652c6dd0818bf47849
3f3e48ee42260b5d5cbe17052df364872d6853d6a77db87b859d52d12411ede3
GET /xdata/images/xphoto/300x240/57175023.jpeg?k=dc0319d4d64ded9ee4b0ddb162a2e80db7899300b7bf21b34506888895d74c79&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17041
server: nginx
date: Mon, 24 Oct 2022 04:27:13 GMT
etag: "520fd03d74a805da796c0b28eb575af03a7f742e"
expires: Wed, 23 Nov 2022 04:27:13 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KUHrxALN_dAKnOAX_SGDuPsjcSAx4cqJ9KMbNakDPgQjd6Xx5IwPfg==
age: 14531
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
200 OK 13 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 04e82ce3fa3ae9bd52cad3056a100c91
93693b20ed0103332bbb4e9f29852a5eaa187f1a
2e50a6fcd67533e10f476f84bbfafd558dd520f5b53ef1c2256e221bdaac9513
GET /xdata/images/xphoto/300x240/45450080.jpeg?k=15d9709efa513f2b23b5fa8d5234d87bdee2bf97b3e7552244592da11413db9a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12640
server: nginx
date: Sun, 23 Oct 2022 01:54:22 GMT
etag: "6afbcf7f23b7e8698a9fafdd230bf0ced085c3bb"
expires: Tue, 22 Nov 2022 01:54:22 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Mg0oMbQmq0i_JXgRke05rkTm01rQU7cg1QdBQz7HZdJ1GWZk_nZvwA==
age: 110102
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
200 OK 20 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash deb177f86bfc7083567ae12e1964f4ad
45c07c5d8cdec20431c81aee3aee189a4d87cd99
1f14eeb3c3ef9eeb1170e99a2fea2fbd034a83305f72be3fdfd7a7711f5fd4ee
GET /xdata/images/xphoto/300x240/45450095.jpeg?k=cd5e46e632dab722d22217813485efde31fbe82f5f26a624166edccdbe8187bc&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 20002
server: nginx
date: Mon, 26 Sep 2022 04:35:10 GMT
etag: "38b94696558e8701c850ee877f956d554be9238d"
expires: Wed, 26 Oct 2022 04:35:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: W7bgvVjXTZycSLDN2tyd6bSbR96gxUzms-OLN1nXItZk1O5dgtO4Pw==
age: 2433254
X-Firefox-Spdy: h2
r-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
200 OK 15 kB URL HTTP/2 r-xx.bstatic.com/xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 13d1467c76d772dd6647f49fe4140d08
7ff7e63be06a3e98495eae5c0a1fb26482025d78
50fa8a1dfe8f3251194c1564def0dda195ce6fc96f05a63a83753b7b6bc9463d
GET /xdata/images/xphoto/300x240/45450097.jpeg?k=eac0f917a53dc395bd379fef8c191e7d5e37012b68e60232e4f6bba2a2901b7a&o= HTTP/1.1
Host: r-xx.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15440
server: nginx
date: Tue, 11 Oct 2022 03:46:14 GMT
etag: "807a35c8a903e8cd5c0a84f3412ac34401ee965f"
expires: Thu, 10 Nov 2022 03:46:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zvhkfq9LGu0QktltZzXd-HJz6EsnBXQKm8JMY9WTefoVSe_87gRJ1Q==
age: 1140190
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/597c7da10eaa9c7f822f93115b9302ff25a51bbd.css
200 OK 12 kB URL HTTP/2 cf.bstatic.com/static/css/sp_loyalty_cloudfront_sd.iq_ltr/597c7da10eaa9c7f822f93115b9302ff25a51bbd.css
IP
Hash f9b81d29754609253833fb749eb9c430
76bee0195580b7ed6fbbf132c14e4b04dd1828dc
f3ff755c327cbe08419dbc2fe6ef2452dba8c5e805e9bc1ac08dd55527360b4e
GET /static/css/sp_loyalty_cloudfront_sd.iq_ltr/597c7da10eaa9c7f822f93115b9302ff25a51bbd.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 05 Oct 2022 12:07:58 GMT
last-modified: Wed, 05 Oct 2022 11:35:12 GMT
etag: W/"633d6bf0-3619"
expires: Fri, 04 Nov 2022 12:07:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: umCgsNJB2BxisTHRWzRrQvaDkhII23Lq0dy0-7SnhDQbXMO12XgMBA==
age: 1628483
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
IP
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8&etgwv=&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
X-Booking-AID: 2188611
X-Booking-CSRF: IYVWYwAAAAA=pPUTnhl1cVZAwc3zhYVvHoFtu6-tTapY-LKT8Ru7_4ZKyoS2VGXqFtCPUEmAaDsA3hW7fy5uQawo37RgcHCqiOp8O2UzRw85Hf_Z0xt7MLEAqQhPXJlpTL1oDRm8wxHaV2Pi79olKIAx0V0Faf2MI4dACKF-MTUc6uKzCps4L1J32MwmRjvbY5zlltvYbPE4WKWDGw6PHBaQgB_4
X-Booking-Info: 1588860,1605620,1606170,1606360,1607820,1611780,1613770,1615240,1615680,1615930,1615950,1616150,aaTBNZZJRLESPIDNJDPVBC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8
X-Booking-Label: _63564ce05639dc0341ce37c5
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: eab515e6cb204a72b42bfb0e5b37cc13
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=GE7BcNo7ym3%2Fe90LELQxGPGFQCm52BJ83OzplK1NvYSPOT3wOnAsDq9ovOcZz5w8DBVHme8lkVPH-ZFfsAMuyQ%3D%3D%3A%2F7-S-OZri2ZH-gCPx8hn%2FRGVH7aPnxeHci78B2zd1ttjRIs32xcoUNIDeQG8V-hDwlrLdjPD1H-UVvmjFmCkRtCfSJ50ruaNHN81Nv3fSgM%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm5vJJs4kKW88w2OlUQe3GPfMNSYXA8eraW2zZBgcU6%2BzMTcxhgik7%2F2RvZySOzhaJiEIqq9lvivc%2BdtOVNpjNjCVOXIb1nCuOlTNr90QSZ23aIb1H6d3QPc%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=22f33bb2a8490109&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLgTmJCTmPCaWlbOPDicebgW-ouX2VQYzs;
x-xss-protection: 1; mode=block
www.booking.com/get_handpicked_bh_properties?aid=2188611&label=_63564ce05639dc0341ce37c5
200 OK 1.1 kB URL HTTP/1.1 www.booking.com/get_handpicked_bh_properties?aid=2188611&label=_63564ce05639dc0341ce37c5
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5206), with no line terminators
Hash 7dbf30eb94ecf13a2ba62c62f66f809e
ca7028f425d6fe3e9629df0dfbbd76b5bcd6cf6c
3e51e62dd7751a166d252b5efe8c284d1759970a4b5b7cccbf264a2ffe1af3e4
POST /get_handpicked_bh_properties?aid=2188611&label=_63564ce05639dc0341ce37c5 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-AID: 2188611
X-Booking-Session-Id: eab515e6cb204a72b42bfb0e5b37cc13
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Booking-Label: _63564ce05639dc0341ce37c5
X-Booking-CSRF: IYVWYwAAAAA=pPUTnhl1cVZAwc3zhYVvHoFtu6-tTapY-LKT8Ru7_4ZKyoS2VGXqFtCPUEmAaDsA3hW7fy5uQawo37RgcHCqiOp8O2UzRw85Hf_Z0xt7MLEAqQhPXJlpTL1oDRm8wxHaV2Pi79olKIAx0V0Faf2MI4dACKF-MTUc6uKzCps4L1J32MwmRjvbY5zlltvYbPE4WKWDGw6PHBaQgB_4
X-Booking-Language-Code: en-us
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7
X-Booking-Info: 1588860,1605620,1606170,1606360,1607820,1611780,1613770,1615240,1615680,1615930,1615950,1616150,aaTBNZZJRLESPIDNJDPVBC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=RS86AwJvJ4CuFoXgXO0151PegAfvrkSxWx9vLmGqPcO87S6yQ9eIKZ6GULDAPfVyEEs8Be2gaZrs8axxggwAsA%3D%3D%3AltjcJM5u9fOSukHvVR3G%2F7RWUtysQ%2FjstRH3lrk16rI-Z6UuYotk0U9vBN7Xc0KtN6F89joDb1P5TZyhYbstvw5Xq0BvyHYMUVBbQgOmzyw%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5skA6rp0ZNTlYYE5f4M7aFgrBNF9D0foaiJQMma1Pqdq%2FjS0bTEoCcn7M4EZb2X7uVkRwFLMjgFhXYbQzxTlTZhD7LVTEUXCwPq7CuMDriNYvbPIgc5psszxQRirDfMPbVD5nLWCg%2FJOomLuhkBJI07K%2BKqTz%2Fdqv4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 1116
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=RS86AwJvJ4CuFoXgXO0151PegAfvrkSxWx9vLmGqPcO87S6yQ9eIKZ6GULDAPfVyEEs8Be2gaZrs8axxggwAsA%3D%3D%3AltjcJM5u9fOSukHvVR3G%2F7RWUtysQ%2FjstRH3lrk16rI-Z6UuYotk0U9vBN7Xc0KtN6F89joDb1P5TZyhYbstvw5Xq0BvyHYMUVBbQgOmzyw%3D; domain=booking.com; path=/; expires=Tue, 24-Oct-2023 08:29:24 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBKtCN8f0CTZfSL3JjPorb47xfYwJTlTiorQyLOHU4LMKXkD8pe08r9Gzkn7XOBP3z47%2F3qmMmKhZXPQTy%2BIIutoSrRtCSAftXlcAMxRw6ots9WAPCiUeUe1FMZXwyloYzDq1nZwpQEQ5a0JmHgDfDl4Pdn8mSiVAF8%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
200 OK 180 kB URL HTTP/2 cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css
IP
File type ASCII text, with very long lines (65487)
Size 180 kB (180305 bytes)
Hash 7bb829f73cb7f119c6bd38ba4367b08e
a95c3ab72f10491d6141947404e8770d6adcee4d
2c309da55656a418ab5895a9955e09af86ec66476161edc67e7bf9b5ed1cb622
GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Wed, 10 Apr 2019 11:21:48 GMT
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
date: Fri, 21 Oct 2022 05:19:09 GMT
expires: Sun, 20 Nov 2022 04:09:34 GMT
cache-control: max-age=2592000
etag: W/"5cadd1cc-375af"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bcjsUmn2YBDKsWVtrVhtwXMXYIK-HJXQvNISKwl7X--w32vkoD_30g==
age: 274790
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 144ea530c7ce441545e4faf8436567c5
adc26707883764b633c3c56b6fd94eadd1f02658
3b463c2a52c167a2ca60af3010e689f9edb48dcdfab7918a06b9ca83df7f4270
GET /xdata/images/hotel/square600/90166571.webp?k=0b63f507a150b0e5f6e2173786be4374ee7deae468fc1a6443feef111cc01ef5&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 30798
server: nginx
date: Wed, 12 Oct 2022 11:29:59 GMT
etag: "374e3f2c7907dee180eddb845ccc01ce376217b9"
expires: Fri, 11 Nov 2022 11:29:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yGtMfz7bQl4vzxkWZ6hA0D7aL5SuVv5LC4WaVKD9J2H6cMU26ETrVg==
age: 1025965
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40c15dcecbbe184be6892d94541acc13
38bfdd7a11f114b478d926355ef9dfbb0d95ae34
e13b70dfc2ab40cc17975653efd4ddb411329be6e1f042511d754129b439db1c
GET /xdata/images/hotel/square600/125840065.webp?k=3443f59e7b7c521c1abdfa94fcbf62b8e5386a2a7b70d815db2714b793d22f96&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31122
server: nginx
date: Wed, 12 Oct 2022 11:30:02 GMT
etag: "234029b94afca5b68266ab5f8e48f8781126cc30"
expires: Fri, 11 Nov 2022 11:30:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: coYf15lnaFLFcqjGuWVJQA9UX8OEnGokRxfaVgPptPN4wqRpmiR-cA==
age: 1025961
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
200 OK 44 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a4d2393c57cc8f4803d5142fbec0b15
bc63da22a153bbeb61fc53874e2c86fab68392ff
a4c1d356a4ef9d0eff6a71be2d6a8fd03300bf48087346743197f6a096f1628a
GET /xdata/images/hotel/square600/236840535.webp?k=ce3c9fd759ec1a8d942b39f8fa1b8f4f388918523b269b9dff75842fec735038&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44364
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "30eee16a804e901c54c46763f3033ffca579c2e8"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mjjZujD5d4sH_PfccWaNiDvmrvWK7MIqGGK5v-EUwuTbseIMfEjr9A==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
200 OK 128 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 128 kB (128296 bytes)
Hash 72a0c3af78637f10b366a61bb49696bc
4dc6662ac320116b46d35edf4bd07870b6924df2
db14d14f8adfd6cb7b6636aef60e31df2bd660773b870ddbbf05c509720bfad1
GET /xdata/images/hotel/square600/262247242.webp?k=ac5f696d6e7c82349e66d4e54d6a12bb0d89003eac8e7734489cc3e5d76944b8&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 128296
server: nginx
date: Mon, 03 Oct 2022 07:15:24 GMT
etag: "3861d91c6cca4cfb0c859ea90286ea3855dfc9a4"
expires: Wed, 02 Nov 2022 07:15:24 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XRruc-P2nA_ygnsgAg7IVOmeDROdaTZ6MQQAETuW7MdlkxJ-0xLEXw==
age: 1818839
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
200 OK 20 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce2edbb1483dd2f1a695bb9fe57f7574
5684d3255717041c66037bd6d76f2aa9761578b7
e5c6e93bfa6be2a02b28f5b1e3bd4ff78eaf4b7738710e73f91c3235db6b3c77
GET /xdata/images/hotel/square600/101174842.webp?k=515b19cd29852207a9e6add777068c1df7931a0dc58ddb80b36af9b605a3a00d&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 19804
server: nginx
date: Wed, 12 Oct 2022 11:29:53 GMT
etag: "a7c39bbbd544f79a69ff9d5bb43783a2d83a2e7d"
expires: Fri, 11 Nov 2022 11:29:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D0PuSKc1xxhFq5v0_Ed2AdSY7K_C0Tei7EAAtgOtg6wxm0SgY-Xzhg==
age: 1025970
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
200 OK 40 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae5abd3325e28c423001f3f540d38b80
aa9535e550f5c89977b4f598eb656de20ec767cc
938a823e490adc84ef5d12c5b763baebb2e0ccc0592b3f0faa785a7e94e88055
GET /xdata/images/hotel/square600/98662660.webp?k=6e981419e8af97778c5b13a8aca3c264a0be73e9ebfd565cb17c0e4134783564&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39584
server: nginx
date: Wed, 12 Oct 2022 11:30:02 GMT
etag: "03d15c673b903ea5879d590a1b14390dbc50b8b6"
expires: Fri, 11 Nov 2022 11:30:02 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Aw7cVCqXJ-fI6Osq4RKm9odxlNOv2Ht2Tv06zO9g4AAcx6Mih7YVmA==
age: 1025961
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
200 OK 72 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc699d1bd67bda2dd2771f1160ebf07
5bd339ae7baa59fb6ea72d9b0adfc22859458596
deb835a811f25db8ab52d0a20100d29baf15fa5b2ec3f2b4f01210c56fb0163f
GET /xdata/images/hotel/square600/109319008.webp?k=b8fc6fbc8d874cffedf49c0080f14933a20995b040dc02aeaee3afad1e79c670&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 71756
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "be8a3d88f0e7ccb4d218b707bed2f67b8052a04d"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9AEl03IOgnoKGKRAbjF1uKxfGKH-IJMIKjIgm3TXmNLVT2Yctg_kpQ==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
200 OK 68 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ae4768126a76f4093bcf30833c7a4a0
3b35ab740b2f5860d1c6e0096446247d5b7c406d
9f222b46c7a092237c0e4bc1fe0c972365ba84e64463825f7b5fd31963e94c77
GET /xdata/images/hotel/square600/218529186.webp?k=669db47d57f15a20a66212f4d267ecde0a5866a896f3d2a3223441aef8b07f6c&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 68144
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "289a88ee59611b8852ff31ca2d3558ac6884bbd5"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4fi_nKNiubCfNrPmz6TvkRxUMhR5I5wtZlsnTNQ7wda3H7IRxEPpYg==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
200 OK 65 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 651317e3637bdb07fead8acac91ff1df
677318c0d98efb6b0fed37c7f2594cedd7458f06
89f50060edeff15d0df29057194bcd3e035944bb5f8b14f64471174ff57a3389
GET /xdata/images/hotel/square600/286573218.webp?k=05df3eea56c59038cf7fa2ab228ec44c47c66ac49f708bc924c2b24738ea1e61&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 65350
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "45a434b28910fe35acd66fab776eea297cfa9f4f"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YGGqM7FbA4oZJ9LcKe9Yo3UFCCJer7wmwgqsr0FPtGjV7rX8Ff2FHQ==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchresults_cloudfront_sd/c969f3735409ea3efec75ff839784e24406db8d0.js
200 OK 92 kB URL HTTP/2 cf.bstatic.com/static/js/searchresults_cloudfront_sd/c969f3735409ea3efec75ff839784e24406db8d0.js
IP
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 460e83cf1b43273a72b0760de305f649
54b6c0547676eaa54930a3673d0756902daf007d
7c32b7868080151b97b3ec281a803a9211343b6dc8cd4d95d24da25218f9c7be
GET /static/js/searchresults_cloudfront_sd/c969f3735409ea3efec75ff839784e24406db8d0.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 10:35:50 GMT
last-modified: Fri, 21 Oct 2022 03:09:14 GMT
etag: W/"63520d5a-314b7"
expires: Sun, 20 Nov 2022 10:35:50 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uEeFHZXenA85WDCSyD-epuC0lTtRd4FYEFsztC9ROJhJkcx32agR0w==
age: 251613
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
200 OK 124 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 124 kB (124272 bytes)
Hash 2867261384ef36b3257b72b797b26bb4
21e4abf06b714b14727e593d7e7cb543cbc1ff9d
ef3d8d9bbb1970944acaa14e0729f4001989221a35d0e91802534a3a8753268a
GET /xdata/images/hotel/square600/236967822.webp?k=1465d052cf64137e1976c658cf1d63c249e8409896cd8f58cc088effbe552af6&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 124272
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "c6f319db453a2086e01d193b1c75d45897fdc91f"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rog4KqzYDr-zp8psB1ecLE0xKaKF_h_xpb9scHm5yesIy9CV9VwyxQ==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
200 OK 93 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c61a50dfef740fa62682940dacaad92d
da520b09281a21446f71695fed7700c2d80200c1
8d94001a72b6689fbb4f0bd7e34118fc7557043833acdb730565f5f3f5f4b622
GET /xdata/images/hotel/square600/156985326.webp?k=26e1231c1a1e2dc7fe1dd0ad8ff94bdf807e0917f7a22cc1a15f71ad644743bb&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 92834
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "74aedc27cd54c47164190d7158e92531a10558a1"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HKv5i2_uzYe6o8IVAstloIYUDBw_Hr6n3OfPVVCCbYq_F_6q_jU0CQ==
age: 1025969
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
200 OK 36 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb64ec57700ec86c850ac9d4f0f5589e
8d02a485746db6f9ec0935b2daf5577491003614
94de30bdfb15c208a49b1320082c994dfdf6b622cead146dbbb7b050578b6509
GET /xdata/images/hotel/square600/294401155.webp?k=4c91bd821bcf8a21dfd3cd73dfc8043179b0b35412cd7ce30e14e45092db6be9&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35794
server: nginx
date: Wed, 12 Oct 2022 11:29:59 GMT
etag: "083b8b98a5f947a51af93e83d4dd5992f0f65c82"
expires: Fri, 11 Nov 2022 11:29:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BBG7mR87ZUeasSfvxDnB5hkxKBNN68qIGP3T-70c5BItgn1KrAwq9Q==
age: 1025965
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
200 OK 52 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d04eb453f0e7fbbbdbba2a1951a8f290
1a6eb24b80524789134492cff32767adf785b1e9
d05234f5c8999958b2953ba76dc2180eecb1643c24419c009acd808332ba05f9
GET /xdata/images/hotel/square600/279333721.webp?k=8b632db276149b1ce327e8bfea4ac83e15d7ffc4f2b343a30af4bdd49197813e&o=&s=1 HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 51934
server: nginx
date: Wed, 12 Oct 2022 11:29:54 GMT
etag: "d421c5d055d3bf40d3baed85ddba03d4399cba76"
expires: Fri, 11 Nov 2022 11:29:54 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uZ-jLrW4v0yt00BQYpuc8tH1pRUbPvWTR_4_lJ2vvS6_JP2DidHK6Q==
age: 1025969
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash dd219ac5671544f7ec306d871289993c
8621b28c6875f6ddf67f031a7969ad53ad5dc245
1229275f5d84fca5e3da95f92433f4aeb242e5cc12e6b7391df11404ff4bbf87
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 08:29:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 05:38:14 GMT
Expires: Mon, 31 Oct 2022 05:38:13 GMT
Etag: "8621b28c6875f6ddf67f031a7969ad53ad5dc245"
Cache-Control: max-age=593928,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75f15832feba1c06-OSL
cf.bstatic.com/xdata/images/hotel/max500/87429279.jpg?k=c42e70f7026958ba62b91d68267c207fca4dce772d603a2e7159405a55e223d0&o=
200 OK 32 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/87429279.jpg?k=c42e70f7026958ba62b91d68267c207fca4dce772d603a2e7159405a55e223d0&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 808ef736ed272748f80b939a59f16752
dc2246927d74ba8acf8d6ef67ddcf0391037bad2
802a894ab3d21ded4be599b1838d7ba362b76f73d2a97246c3ba549beca17da5
GET /xdata/images/hotel/max500/87429279.jpg?k=c42e70f7026958ba62b91d68267c207fca4dce772d603a2e7159405a55e223d0&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 31978
server: nginx
date: Sat, 08 Oct 2022 02:01:18 GMT
etag: "f73f091001b81a7d43e43377146baad6449160c0"
expires: Mon, 07 Nov 2022 02:01:18 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w1a-0kOwZeDMjuoAU9R6rlJ2b3zg-k6CTy9J7DZU1zDUFfgaLFiOPQ==
age: 1405686
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o=
200 OK 34 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x334, components 3\012- data
Hash 230406204e40a132fdf937703e8df84b
e7d97fdef14af3f3f18020687e37aaba2150d087
afc3f433397b200e73def545ecf08c08ab2b85e8b11d948098ba8ebd4b9ec9be
GET /xdata/images/hotel/max500/103951224.jpg?k=03736dd4e1e89c1132e4957149e394d01ac6e8f64f4b09e30ade97a6176f0640&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 33958
server: nginx
date: Mon, 26 Sep 2022 02:22:57 GMT
etag: "8f5e38d132eb849f02083acbb8bd51bb1c3b986c"
expires: Wed, 26 Oct 2022 02:22:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jwVu9bgZ4euywLXVwgeIYONWz64fZIXGAqQoddC1Rr2AbwHzttejxg==
age: 2441187
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/64768746.jpg?k=b0a62a2eb299aaa31553ffcb9887d54cb5ea112e81a7a942a45aa25f88c84921&o=
200 OK 28 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/64768746.jpg?k=b0a62a2eb299aaa31553ffcb9887d54cb5ea112e81a7a942a45aa25f88c84921&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 63640b6162c87f7717a7739c97d30b79
5583b8eac4475c55252ed69af3be1fc2683c65a5
2a0534df7cb00bca8e1f44453a4d1b7f44509f5ebffa830f36ac6b1f5107b28a
GET /xdata/images/hotel/max500/64768746.jpg?k=b0a62a2eb299aaa31553ffcb9887d54cb5ea112e81a7a942a45aa25f88c84921&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 27785
server: nginx
date: Tue, 04 Oct 2022 02:30:40 GMT
etag: "5c431ceac4c94f2c5510921201e29f843d9e09bc"
expires: Thu, 03 Nov 2022 02:30:40 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DXtoIw88IyurlzglHITDMmmA_72G9D3D9LgH-AVGSAKQFr65_nPYrA==
age: 1749524
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/45976851.jpg?k=7bd839dd07e1384ebfde004069e25090a4a901728e9bdc8e200f411ed243999d&o=
200 OK 26 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/45976851.jpg?k=7bd839dd07e1384ebfde004069e25090a4a901728e9bdc8e200f411ed243999d&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x375, components 3\012- data
Hash a2d80f4132a45db3c5ce21d46cc19592
a41d76087225103f791f585b2a333514aa175ad5
663a527e3a9b699466e086849992d2c18583cfb9fb3063e1399cc97d3ba29e32
GET /xdata/images/hotel/max500/45976851.jpg?k=7bd839dd07e1384ebfde004069e25090a4a901728e9bdc8e200f411ed243999d&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 26169
server: nginx
date: Sat, 22 Oct 2022 00:25:10 GMT
etag: "789bef837e87607456bfd71aa42dac3fec2acc8f"
expires: Mon, 21 Nov 2022 00:25:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cZrQIErUV7fTaMJ9lAkmJLzYy2d2TlF1iIFR6ml2U9zpfJsZBRV1eQ==
age: 201854
X-Firefox-Spdy: h2
cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
200 OK 47 kB URL HTTP/2 cf.bstatic.com/static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 353x433, components 3\012- data
Hash 3471913b5eaf34016f7f8fd2b795353a
830765f7fccc5bc5a6e6ac6d57648c1f48e86c72
22d1b410f2a9e346185c14dbd28e358bab1edc3d1929751534c39b93010ee131
GET /static/img/join/bh_carousel_more_background/5132764897ca62019efeefc5ad9c296227434ba9.jpg HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.bstatic.com/static/css/index_cloudfront_sd.iq_ltr/df9866cfd9b9c178148d6caee338e59ec64e6e41.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47062
server: nginx
date: Sat, 01 Oct 2022 02:23:37 GMT
last-modified: Mon, 08 Jul 2019 08:40:15 GMT
etag: "5d23016f-b7d6"
expires: Mon, 31 Oct 2022 02:23:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
accept-ranges: bytes
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AuVYWlCmQHUDHJsCthsGZGsmDz98p1bvXfyOUWr2zPAK_D1B95pgqA==
age: 2009147
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/hotel/max500/112346687.jpg?k=b0c1b36d31151ed463b8960c21e868584043522f4f380c0f382994d4b3e7ada2&o=
200 OK 31 kB URL HTTP/2 cf.bstatic.com/xdata/images/hotel/max500/112346687.jpg?k=b0c1b36d31151ed463b8960c21e868584043522f4f380c0f382994d4b3e7ada2&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data
Hash 219da0361d4a20b3f827e1ae51cb54fb
1c80af8e59976baa63c798eb4a24a7139c4d023d
e8ee391ed78c90f6898d726fdc453a53296a55bf2d9288db06a1d3a93f8a413b
GET /xdata/images/hotel/max500/112346687.jpg?k=b0c1b36d31151ed463b8960c21e868584043522f4f380c0f382994d4b3e7ada2&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 30755
server: nginx
date: Mon, 26 Sep 2022 02:04:36 GMT
etag: "bd5c20e4d7bcafcd6b5bb007fe4bdda997ec43f6"
expires: Wed, 26 Oct 2022 02:04:36 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JsB0ltFDl2qkQqB_IjI2o_Rv8YinsMdmdTUrgR8Hg_BfH9fVRw0aww==
age: 2442288
X-Firefox-Spdy: h2
collector-pxikkul2rm.px-cloud.net/api/v2/collector
200 OK 524 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP
File type JSON data\012- , ASCII text, with very long lines (523)
Hash 6e816e6c100bb6076e799a762701d7f9
e45d6c8ebafdc62638d13f3dd0f5d2e957286591
3e9e71d6699df4c98bcf0b4f7e5caf5aeb41764c7a7e79fb6f0b3851ef8a20d7
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 769
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=utf-8
content-length: 524
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
200 OK 3.7 kB URL HTTP/1.1 www.booking.com/dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14862), with no line terminators
Hash 0c8f09a0b5bc1dbda8b9770a6840a022
569d68fed7643c102e27b01f166e862159d273a2
ae1a5ecfc49d3b6dc463b49b8905d58208a3eed4ae780d3654d2c8e9fb98865d
POST /dml/graphql?aid=2188611&label=_63564ce05639dc0341ce37c5&lang=en-us HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
content-type: application/json
x-booking-context-action-name: index
x-booking-context-aid: 2188611
x-booking-pageview-id: e19b3bb059220326
x-booking-site-type-id: 1
x-booking-topic: capla_browser_b-index-lp-web-mfe
Origin: https://www.booking.com
Content-Length: 550
Connection: keep-alive
Cookie: _pxhd=DRKu2PVRxyi8HrwhlghH05qBuMt0iaye84i8KIqfXCyvk2Bwl1C32k0Dl9hX3HlAk4KGSu1siWSf-kvP8iJCOA%253D%253D%253Ai%252F%252F9wx2ZOqdCOyyShPo-8X8fVa5J2Ma-5B2u5P5yyXy4-86rsCQzOA82gy8GqsCFJGE-JS4UjMFbFEwBTkHZIwviKcVzPWxb2lKRkmuT034%253D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLNaCsZ0rVp8yMWt%2FYMDTnSxT5dpEb3H6w04cQyjKl6fjIhTYBCbndsdD44RCoY3SY29LS1T9abK3DCoOovp01AgmW41P9%2BUskgm2uy8StgYLlSzq4%2FRGJ1bB5PKRL56xT3J164owCESitwXCbGRxuIX7Mg%2B0uhfTM%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 3686
vary: User-Agent, Accept-Encoding
content-encoding: br
set-cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; domain=booking.com; path=/; expires=Tue, 24-Oct-2023 08:29:23 GMT
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ae94fcfc5fb8ffeeee29be495f5fe4b3
2ad3cd887170be08723cd5ba1b4729c591303b42
172d699a4f2456a7fb538fbdc7ad120569695040d92eb22919ebf324b7318610
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash dd219ac5671544f7ec306d871289993c
8621b28c6875f6ddf67f031a7969ad53ad5dc245
1229275f5d84fca5e3da95f92433f4aeb242e5cc12e6b7391df11404ff4bbf87
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 08:29:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 24 Oct 2022 05:38:14 GMT
Expires: Mon, 31 Oct 2022 05:38:13 GMT
Etag: "8621b28c6875f6ddf67f031a7969ad53ad5dc245"
Cache-Control: max-age=593928,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75f15834c8741c06-OSL
cf.bstatic.com/xdata/images/xphoto/300x240/140040837.jpg?k=154f1c361fa53f635e5be2e40bb85c396eab774a01d7187f9e15f4b2554d0306&o=
200 OK 17 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040837.jpg?k=154f1c361fa53f635e5be2e40bb85c396eab774a01d7187f9e15f4b2554d0306&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b7dec6e502e3fcf35c29c3eb20e1a3c6
ef1517c4833d4d051d800d1b3717f733cc575b9c
00c79e1f6c7d226e5d11f33a3f65fc5597503bf445d352dd16346ef6303299a7
GET /xdata/images/xphoto/300x240/140040837.jpg?k=154f1c361fa53f635e5be2e40bb85c396eab774a01d7187f9e15f4b2554d0306&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16571
server: nginx
date: Thu, 06 Oct 2022 09:45:57 GMT
etag: "cd4749631747f4054a2a1d54b4bb2282d03a620f"
expires: Sat, 05 Nov 2022 09:45:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RAOqmjyr6ImKf08oIUB5DwwAqxbKUxrKcQxmgdKbrMDjVEJ5opUxSw==
age: 1550607
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
200 OK 90 kB URL HTTP/2 accounts.google.com/gsi/client
IP
Hash 6511d13a2ca7429f2c6ab9adf1ea8bf4
7547e6951c02261c1f79ee707f9e98353d47641f
11c119f89da56d155f544ef8f8b2db6eaa6eb14497669cf892be8cba8ab8de7a
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Mon, 24 Oct 2022 08:29:24 GMT
date: Mon, 24 Oct 2022 08:29:24 GMT
cache-control: private, max-age=1800
content-security-policy: script-src 'nonce-y5tycgZc1F9iz3_qhb6gCg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040719.jpg?k=aacf4427c1b521477f0f0cf9977f7c28562cbe145983aab1bff2c6d6a2e7c4d2&o=
200 OK 13 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040719.jpg?k=aacf4427c1b521477f0f0cf9977f7c28562cbe145983aab1bff2c6d6a2e7c4d2&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 53cf4876022a1b1c28b5fbf2d5cafe43
10e93cb719a28671858a783d8650c8338abc81a5
937f1e3adb5ceb401e911d8c6a9ad90e4ab3bd022309f20fa5760afc8aba498a
GET /xdata/images/xphoto/300x240/140040719.jpg?k=aacf4427c1b521477f0f0cf9977f7c28562cbe145983aab1bff2c6d6a2e7c4d2&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12584
server: nginx
date: Thu, 06 Oct 2022 09:45:57 GMT
etag: "ec41ff853d03f368f93e22b5b4402bb985380dda"
expires: Sat, 05 Nov 2022 09:45:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wqWPAFD4V30riY9yAM3uG602gx5Gmy7FmtjRbASqOvRAGDWkHqrXhw==
age: 1550607
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040496.jpg?k=105685b15efc0186c76966128b0bedad31cd54f092f3679d5b2453155c82a773&o=
200 OK 10 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040496.jpg?k=105685b15efc0186c76966128b0bedad31cd54f092f3679d5b2453155c82a773&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 6d257086f21fd27fa80ccad0acfc9345
4b13076ef4ad169622b049e237ba9c05ed9ce437
98e76b0417a9828371fb8f8e357cf6e4e78f71f0e32d584216186b3b6c13da7b
GET /xdata/images/xphoto/300x240/140040496.jpg?k=105685b15efc0186c76966128b0bedad31cd54f092f3679d5b2453155c82a773&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10198
server: nginx
date: Thu, 06 Oct 2022 09:45:57 GMT
etag: "da4c9d52ff7fcc81ad4a0a6f3e68a2d0da274e53"
expires: Sat, 05 Nov 2022 09:45:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mdjhi3mob4Yhe5bgccDamYxqXSIdPeAdLNUivZ9w0qgHE41VTL_aUA==
age: 1550607
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040830.jpg?k=5e4e2a3394abd905f48731725d0fec5d55946e3cff69a4c3206ea2a42854ff3f&o=
200 OK 7.2 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040830.jpg?k=5e4e2a3394abd905f48731725d0fec5d55946e3cff69a4c3206ea2a42854ff3f&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 009346c9db58c2efaf230dd0ca503ed9
932f2979facd8e638bfd3d3fc0eaa518ace62c92
a14cbf97c0e94bb86942954126cd1c2e5d4b6782e3f0279c2854e8e3f4925d9b
GET /xdata/images/xphoto/300x240/140040830.jpg?k=5e4e2a3394abd905f48731725d0fec5d55946e3cff69a4c3206ea2a42854ff3f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7193
server: nginx
date: Thu, 06 Oct 2022 09:45:57 GMT
etag: "597203e6770a03331016fbb400b5400cc43e2dde"
expires: Sat, 05 Nov 2022 09:45:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u3c2CwkhH2rgFqUoU-veaX2YhLBwfurapNuKRPFLgVDeoYWy9VIWJA==
age: 1550607
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040584.jpg?k=3b491418b21d27f8c16af8a77641a6e2e3b12f04c7324a3bb1685eceb7cc2418&o=
200 OK 14 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040584.jpg?k=3b491418b21d27f8c16af8a77641a6e2e3b12f04c7324a3bb1685eceb7cc2418&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 241f996b375335cdbbf5f7c5d5f4aea3
620a493c3d45939c96420819fbbc929637cef68a
c14f155a862d351c94b08bb15767bc4255b5661645443514e4758db2ab019a41
GET /xdata/images/xphoto/300x240/140040584.jpg?k=3b491418b21d27f8c16af8a77641a6e2e3b12f04c7324a3bb1685eceb7cc2418&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13632
server: nginx
date: Thu, 06 Oct 2022 09:45:57 GMT
etag: "3e2d79ec1e9da97cdb5fbd7c6d698c5e945c3229"
expires: Sat, 05 Nov 2022 09:45:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XwAg3WsiDQDPewc8gpGhfgGRfmhOiAL92_Fgo32iNQLoNtxgt3eCjA==
age: 1550607
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140052559.jpg?k=e5d20d58f64d0e9bce340c667038f11130c855e3cb60ca85dd6b91a5295433d5&o=
200 OK 8.7 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140052559.jpg?k=e5d20d58f64d0e9bce340c667038f11130c855e3cb60ca85dd6b91a5295433d5&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 194131577f2dfaf126df1e2ed0859960
04adbf2279a5a5a8ded293a2fbca343aa5720001
8551c6c56f23db0181181add9876de8a648a284a77305e2548c3c5193458d18a
GET /xdata/images/xphoto/300x240/140052559.jpg?k=e5d20d58f64d0e9bce340c667038f11130c855e3cb60ca85dd6b91a5295433d5&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8741
server: nginx
date: Thu, 06 Oct 2022 09:51:46 GMT
etag: "68b3c8a113ac83b5fd31ae7e29c975d9b072f3cc"
expires: Sat, 05 Nov 2022 09:51:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DonjLmwWTgK6xCngdCpsaLOPJlh3fAVuFa65YMy7K3fHKUoXDJFIOA==
age: 1550258
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040602.jpg?k=e5ad57053f0bb18f51822fe9ee16ee17ea28bde1dcd593f0643fea340584d85f&o=
200 OK 18 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040602.jpg?k=e5ad57053f0bb18f51822fe9ee16ee17ea28bde1dcd593f0643fea340584d85f&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash a92581736e924996ea87bd939fa1539d
fb4d4a025058472b455802c0308a6d5ad8ff1b2b
8eec565de5f7ebab83260bfaa9e5f33a8b7d425254c8d3b3a255ae2904344b7b
GET /xdata/images/xphoto/300x240/140040602.jpg?k=e5ad57053f0bb18f51822fe9ee16ee17ea28bde1dcd593f0643fea340584d85f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18526
server: nginx
date: Thu, 06 Oct 2022 09:51:46 GMT
etag: "4e4da0c885c56874b2f427dfdc0521321d28a3bb"
expires: Sat, 05 Nov 2022 09:51:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MSXYWW_cGaUN3T3j1fzLwb4VIafAkhiYZAUBDkAAHVJpVgtztC5NfA==
age: 1550258
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040896.jpg?k=49938f0bd79fdf1393eb03c3816e015f3affe88bc0c433272168471c32c9207a&o=
200 OK 9.8 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040896.jpg?k=49938f0bd79fdf1393eb03c3816e015f3affe88bc0c433272168471c32c9207a&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash 08e8a51b2f42906ee3d255929dff32db
86d5a8b9d9fab06a7ea21edb1996d0f9deb01c0d
322a8d0b98f3eb1e9cab3904fbbfd6d7a42c803a314d90926d8c26d56784252f
GET /xdata/images/xphoto/300x240/140040896.jpg?k=49938f0bd79fdf1393eb03c3816e015f3affe88bc0c433272168471c32c9207a&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9842
server: nginx
date: Thu, 06 Oct 2022 09:51:46 GMT
etag: "ea31a15ab388be8d7186a326184bc330dcad2e11"
expires: Sat, 05 Nov 2022 09:51:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lWq-iICvsvofA4wknNZTQGwgb0kwjnV8qfkpU1RKfsl8GR9sKI0b_Q==
age: 1550258
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140051306.jpg?k=e9fd0663f3532480edef1e8636018e145154bb30885a089024b9032ab0b5e351&o=
200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140051306.jpg?k=e9fd0663f3532480edef1e8636018e145154bb30885a089024b9032ab0b5e351&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash f8582e652a2e96c49993cc1b234155a5
5ddd88de015af27baa68da353120fd6e0d4e2bcb
598616ab19021e2c66cd9462b500464ea2ef37841557e96104bc1692b0803548
GET /xdata/images/xphoto/300x240/140051306.jpg?k=e9fd0663f3532480edef1e8636018e145154bb30885a089024b9032ab0b5e351&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11754
server: nginx
date: Thu, 06 Oct 2022 09:51:46 GMT
etag: "d8acc1ea1a436668b250e7d86c0ea5a4e7c01e0f"
expires: Sat, 05 Nov 2022 09:51:46 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E4fw_2RyngRwxmL_0Zn1lfOWJqU4yCiBmpVxlYebjk5XMGugwClOKA==
age: 1550258
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
200 OK 23 kB URL HTTP/2 cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js
IP
File type ASCII text, with very long lines (6029), with no line terminators
Hash 56d05103edc253ec96958057218919c3
7413b3fd10669ebb805ebeccd6ae08dc3cf7e571
0683bc92e4264343e5c20001e92f331b15fcc4cbdff11479a7bfb77543e39839
GET /static/js/error_catcher_bec_cloudfront_sd/282f83b6049fe9bacd964cb6ea8a6d5447528b14.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 29 Sep 2022 06:49:45 GMT
last-modified: Mon, 06 Sep 2021 09:06:05 GMT
etag: W/"6135d9fd-178d"
expires: Sat, 29 Oct 2022 06:49:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xaIA031kL5q5v0Kl7vGxVanU4RA5nXRfn5a4nojCVONd9sWTu7ieWA==
age: 2165976
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
200 OK 12 kB URL HTTP/2 cf.bstatic.com/static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js
IP
File type ASCII text, with very long lines (5619), with no line terminators
Hash 095d088281e8c43aef3908ec740acb45
df3f722068bfd186c493347178f0bd04b644973e
18b59b2a8159d6d4ba1d1211c83fdb23d43bfac79c12ffbad31bd76ddd29e176
GET /static/js/lazy_load_images_cloudfront_sd/77204d4da4aa41b08b1a4062c8e66e4629550994.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 28 Sep 2022 00:19:58 GMT
last-modified: Tue, 04 Feb 2020 10:19:57 GMT
etag: W/"5e39454d-15f3"
expires: Fri, 28 Oct 2022 00:19:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7hAYf4UIBz0EXyXTsUNg_zPdV_ujeUtOppjNsVp6PtnWyHjbHTCUPw==
age: 2275763
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/searchbox_cloudfront_sd/4c49ba9675080109c05a3ff7bdf6afccbe743a3e.js
200 OK 68 kB URL HTTP/2 cf.bstatic.com/static/js/searchbox_cloudfront_sd/4c49ba9675080109c05a3ff7bdf6afccbe743a3e.js
IP
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 7facb63d0c3535c8ad6f14299ecbc8fe
6d9294173dddc08af477ec2ccd5426dffb9b8cec
826ebd5ff3ce8d76ee0160fe37c5f6dbf351719d5edd9c9088f0f6c894c6574e
GET /static/js/searchbox_cloudfront_sd/4c49ba9675080109c05a3ff7bdf6afccbe743a3e.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 10:35:45 GMT
last-modified: Fri, 21 Oct 2022 10:30:50 GMT
etag: W/"635274da-396dc"
expires: Sun, 20 Nov 2022 10:35:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z2nWXMkyNiX1ltEsf44wRxsgSdeI68zS3iiXrwhJQwnuwWRNIPBS6A==
age: 251615
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040843.jpg?k=ab72dd03f472e2062d04ad42a74ff404215a23fd5fd48e85c7b2923210297a8f&o=
200 OK 15 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040843.jpg?k=ab72dd03f472e2062d04ad42a74ff404215a23fd5fd48e85c7b2923210297a8f&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash b98f35c11060c17b2feda02d4d4d4cb5
40db9d0e5aa59d5335a9796b4ec3391219d28928
75cf8022b8ea0b6cb19c48d6ef9bb79bd3f9ef1120bbae6da3e59a2025f40979
GET /xdata/images/xphoto/300x240/140040843.jpg?k=ab72dd03f472e2062d04ad42a74ff404215a23fd5fd48e85c7b2923210297a8f&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15045
server: nginx
date: Thu, 06 Oct 2022 09:51:47 GMT
etag: "5fd66de2b25e3537d66bb1aca2eaef8bec69a6a9"
expires: Sat, 05 Nov 2022 09:51:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UqRheDUv04fjPYQncGa3QGL4qlwSVjCHFg6bfLEsv5dZbyuMiqIJlg==
age: 1550257
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 08:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cf.bstatic.com/xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o=
200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c360a3315fdf9a83dcea2dc619bb859f
c22c06d9eaa6c5ecea05e284246db7247e18ddfd
52f5ddca4376d0dc0447df4af875fdced8eca82498fa5153ce7f7af701006e48
GET /xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11980
server: nginx
date: Thu, 06 Oct 2022 09:51:47 GMT
etag: "4e13bd83eaeb6a311c0368abcc9aaa73315f0fd2"
expires: Sat, 05 Nov 2022 09:51:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zLUeIPsWxhgpVEB5Dt87_z_ETnId9wf77ms28TSe79JUOr9B9shxTg==
age: 1550257
X-Firefox-Spdy: h2
cf.bstatic.com/xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o=
200 OK 12 kB URL HTTP/2 cf.bstatic.com/xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o=
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x240, components 3\012- data
Hash c360a3315fdf9a83dcea2dc619bb859f
c22c06d9eaa6c5ecea05e284246db7247e18ddfd
52f5ddca4376d0dc0447df4af875fdced8eca82498fa5153ce7f7af701006e48
GET /xdata/images/xphoto/300x240/140040489.jpg?k=805ddfdcfb71cf3c23f2136c2c844973f1de54ce1d05ae6ddd8a7a68166cfc41&o= HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11980
server: nginx
date: Thu, 06 Oct 2022 09:51:47 GMT
etag: "4e13bd83eaeb6a311c0368abcc9aaa73315f0fd2"
expires: Sat, 05 Nov 2022 09:51:47 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-xss-protection: 1; mode=block
timing-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fA6gCjMf2Uf5KZmi8fwP6r5N6tZG1LRQstEDtPBSzRellGUNCjjSuQ==
age: 1550257
X-Firefox-Spdy: h2
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLZTE6rlSNoO5xbu1c9fYr%2FtD%2Bdf0Cgi925eoKCz1nsVCiwF6BcCQnmP3OsO2KGbe6lmdUNTStEVz%2FP%2FAwAhjIpS9P%2BgLZOr5R%2FL1RD2eInuZwwQrUlITYT0CQe2iXs9yDfV0eCiZO7JrkXCP2NkI%2BExq%2BewXdY8Fk%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhAl%2FWj5zx%2BepKtBD2wIN8n1aWLMyXBjHuoIzv49c6%2FN%2FfwQSR2B6naehaLzioMbH5cGC8wBpICM1nHbAN53S7SXt3WsqwPFKbU%2FKTODk31gXLm8nnAg7P76kr2ol4BASjvO8vKF9FfHW8zEi2wdEgcRSLI%2BN2dlZX8%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbof7CEiNviT9LrboUWY6Xq2HrJtFZ7%2BGHPJqOwAcY1%2BO3GvO5ZZ71JmqHnlXYarU%2FTE2nNvtuab%2Fy3pmpky9EQghc4iGBdbp3O9UNJy0Vw4KSoTdvqYfOmriFMXYVND9IYsX9JYvQIEWgZsgO%2FTPI6e8%2Fjnv%2Fgz%2BITI9JS123ncI%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbbmD9q%2B5pe3XsanVhLQk9GE5g6cg0DSxbKVcZmYpDu%2F8cPOHGUcRI2za10b3EbTCZN4mL4%2Fv8u7o5vQV%2Bl%2FQRMPfkPd1WIEAql3FKiLRK3%2FWEVzP%2FPlXQ08IbSG21SMa%2FeIJZTtHEsx0IXGI%2Fv3VHFytncGkJZSDDlsTsKMjNs4A%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: User-Agent, Accept-Encoding
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbXpFeYC4TUhAHYGu9A261gHPeX8K2551iiiJesy0F7NFDpEstuU8TFcl16Hf81ExeUd3nfz1XZ5Nu%2BffgQf1sV5RGnBwpxbYT641cx5QScb2499vEGM1GjlHfdJh7jj1UZmu5EQYle5tx4uHAAXOtcli4l4G6BuXhpesyYm1te3Q%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/c360/v1/track
200 OK 33 B URL HTTP/1.1 www.booking.com/c360/v1/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ef0949d72ccdcc083647d001c8ba940
ebe4e2284d3892b010623597d0945b6b5cd64448
fe1a912baa83e36855bb934de3f2cfdffe77b1224a552533a4a7f2e984a51e52
POST /c360/v1/track HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
Content-Type: application/json
X-Booking-Platform: undefined
X-Booking-SiteType-Id: undefined
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: undefined
X-Booking-ET-Seed: undefined
X-Booking-AID: 2188611
X-Booking-Label: undefined
X-Booking-CSRF: undefined
X-Booking-Language-Code: en-us
Origin: https://www.booking.com
Content-Length: 734
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBJD5t6AEEKd4H99t4jwNN7cA0aLaf%2FOvAVuCcZZngu26c2uQDZYABeOsV9qA6BRL5B6FtmuuIzN7Frrc5%2B%2FYBR3fU1lYhuqakliLwSqc%2Fva0eUkTMhFTw8mbJ9%2FamEtbwHZjW876cknWhkKO3ff9sFb80Ue6EYdLNA%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=UTF-8
content-length: 33
vary: Accept-Encoding, User-Agent
content-encoding: br
access-control-allow-credentials: true
access-control-allow-origin: https://www.booking.com
set-cookie: bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm1dWkCP4fZ3VL1DBRZpGwsox%2FQZCNPht%2BI5c%2BFr2PVkYGgOCmRXzJGBn0U0zCNqJI%2Ba%2Fwo5HvkPEZ4C0ytFkWks9Up7qR%2FqO1%2FOXRmoCfPu1FUrR80gCdW0%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:24 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-options: nosniff
x-xss-protection: 1; mode=block
www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
200 OK 35 B URL HTTP/1.1 www.booking.com/js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4
IP
Hash 79a611524d7c43a354c589264cc2376e
2e25649d9a8a208302be0502b47a0e44b07bc7c1
c7a9af81f3467d3c95760df18d0853bda8c191f612fb2e8b2b5c4ed941fbaf1a
GET /js_tracking?ref_action=index&ver=2&stype=1&lang=en-us&pid=e19b3bb059220326&ete=&etg=&etcg=&ets=&etgwv=js_wcu_trip_type_based_destination_number_of_types|4 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
X-Booking-Info:
X-Booking-Client-Info:
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-SiteType-Id: 1
X-Booking-Language-Code: en-us
X-Booking-AID: 2188611
X-Booking-Session-Id: 9baa1f1ef165f6ebaec69e56a1f884eb
X-Booking-ET-Serialized-State: EZ3T7cUcpl7EINAc1FJ-OGi1uiBt-kMp1r6cvtkTPdhb84_K0JL8HB93WqZjRsMbF
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm1dWkCP4fZ3VL1DBRZpGwsox%2FQZCNPht%2BI5c%2BFr2PVkYGgOCmRXzJGBn0U0zCNqJI%2Ba%2Fwo5HvkPEZ4C0ytFkWks9Up7qR%2FqO1%2FOXRmoCfPu1FUrR80gCdW0%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:25 GMT
content-type: image/gif
content-length: 35
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=8eef3bb21bf900eb&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejIJP3_7p1Mo4EPUQz_0XIoobTFvKmxZl2c; frame-ancestors 'none';
x-xss-protection: 1; mode=block
collector-pxikkul2rm.px-cloud.net/api/v2/collector
200 OK 573 B URL HTTP/2 collector-pxikkul2rm.px-cloud.net/api/v2/collector
IP
File type JSON data\012- , ASCII text, with very long lines (572)
Hash 93439f1d8f487edb8703e4d3da207edc
9eb20979e9b75ed8606e2a0242a475d07dc52f25
80597194a4f36add66fbe904fde2f32a5ee7707806eb352ef90b4d8bf0c8f013
POST /api/v2/collector HTTP/1.1
Host: collector-pxikkul2rm.px-cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4428
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 08:29:24 GMT
content-type: application/json; charset=utf-8
content-length: 573
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.booking.com
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
account.booking.com/static/booking-sso.v1.js
200 OK 1.6 kB URL HTTP/2 account.booking.com/static/booking-sso.v1.js
IP
File type ASCII text, with very long lines (3558)
Hash 9bbcf7c1ef2aa8cee866bebd7d660dc3
e729d8c27de9a6df4114408c8fc0d02bff8670dd
26259035de1b7e4babd27a5ef3c8e095e9535ea358817ab191227fb3b0fe8b72
GET /static/booking-sso.v1.js HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm1dWkCP4fZ3VL1DBRZpGwsox%2FQZCNPht%2BI5c%2BFr2PVkYGgOCmRXzJGBn0U0zCNqJI%2Ba%2Fwo5HvkPEZ4C0ytFkWks9Up7qR%2FqO1%2FOXRmoCfPu1FUrR80gCdW0%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI4MGM3NzJkNC04YmQ1LTQwY2QtOWQ2NC05ODY3ZjMxYTc1OTAiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: envoy
date: Mon, 24 Oct 2022 08:29:25 GMT
last-modified: Wed, 19 Oct 2022 20:33:38 GMT
vary: Accept-Encoding
etag: W/"63505f22-de7"
strict-transport-security: max-age=17280000
content-encoding: gzip
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V2CLa2gKQmqzA6Pmzdn6-jON6kjH2v_cdpjyymkDiu2abgFo8HU2Rg==
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 487213efa2d5aa0d856fe56186b87765
a484351db947bd9d767f005e6f0673b174a3a908
f489ff98893c15bb2c5330413e5ae15098ee8fa1ad4dd355017943e1bd046d54
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 24 Oct 2022 08:29:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 24 Oct 2022 05:05:19 GMT
Expires: Tue, 25 Oct 2022 05:05:19 GMT
ETag: "a484351db947bd9d767f005e6f0673b174a3a908"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.booking.com/general.en-us.html?aid=2188611&sid=eab515e6cb204a72b42bfb0e5b37cc13&tmpl=profile%2Flogin_callback_anon_session&label=_63564ce05639dc0341ce37c5&iframe=1
200 OK 207 B URL HTTP/1.1 www.booking.com/general.en-us.html?aid=2188611&sid=eab515e6cb204a72b42bfb0e5b37cc13&tmpl=profile%2Flogin_callback_anon_session&label=_63564ce05639dc0341ce37c5&iframe=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 44be8039ae13cc777caafcf3d531b464
fe7c9e3e17fccf9a99a11a121000842702938be1
7ed8cf9bf40dca6abb53e4ac1c86c9ab106b689ccde0023843fad26f0e0d075d
GET /general.en-us.html?aid=2188611&sid=eab515e6cb204a72b42bfb0e5b37cc13&tmpl=profile%2Flogin_callback_anon_session&label=_63564ce05639dc0341ce37c5&iframe=1 HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLblgO%2Fz4BDP5skA6rp0ZNTlYYE5f4M7aFgLOE0KaM9KWXZT8werAmY6nPKuDxYUYRnAwMM6PNM6dt2lacadMohhO1mm2wlhKQImJMcEwQ%2FgLEqlCIY%2FNwWNgD9c7Sa%2FnUFNGjUFbEGqRADuTusjoXf8AEkqjPN943%2By3GOqk%2BfpH4%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=0&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjRtYmNQcFVOUkJjaGpWcU8yNWt1N1hjTkhqWVVnWWpRWlNsTmtrTURuZEkiLCJhIjoxfV19; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=1437c33e1440cb6703f2ca836cbff065e4787170ba14546c4e453886de569202:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjUzODAsImZfa2IiOjAsImlwY19pZCI6W119; _px3=38a4443d672f8db2b7ee93e9aaaff1119bac3931749dd8d1ea44da0341568653:ySkaplaagB4w8Ig2rKy5Zh1z0/qi2JFUS0g9ho3DPAAcRgv9FwxFjI8D+Kf0Qsj1cC1yoPlV24CNvW5sicvPog==:1000:jHvNuGbYlcfSVILlrhathN+lHjDVf7pqk/IPAPo7nfI93rnuFSMi9HMKRMmlSAfzcWvWjAmr2MphTNkhdFTm04BKfxAEM8IBermJEag0C6pAOYGakxToEc/7DblL3acIA31noM3iqMKNoBa8sWr/2u5Tiz95ZsudwQCa4o2tONv5gYIBIL3T+BN3o31SHAlkuKBaTZcjhqF4jm/4wPf7Vg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:26 GMT
content-type: text/html; charset=UTF-8
content-length: 207
cache-control: private
vary: Accept-Encoding, User-Agent
content-encoding: br
nel: {"max_age":604800,"report_to":"default"}
report-to: {"max_age":604800,"endpoints":[{"url":"https://nellie.booking.com/report"}],"group":"default"}
set-cookie: px_init=0; domain=booking.com; expires=Tue, 15-Oct-2075 16:58:50 GMT; SameSite=Strict; secure; HttpOnly
bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCplEZVQf%2FX%2Fsdiph4G4q%2BVZK2TUXEr%2FkOSMRt9fg9RmglhAwEmy1jIAmqchK7%2BlHoItfQZqbWKOB1Mb7WkPCNM8LxMJTk5MXehRApwWVliesODAOmqL1Mw%2FPauWc1Bu%2Br41nk0nvjCU7qO%2FBJSB38tkqIyrYIemZ40%3D; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; Secure; HTTPOnly; SameSite=None
strict-transport-security: max-age=604800
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
account.booking.com/collector/anon_session_init
204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.booking.com/
Origin: https://www.booking.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Mon, 24 Oct 2022 08:29:26 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImViNTE3ZDhkLTM3NmYtNGQzYi05ZmMyLTI4ZmVhNmFjN2RmNiJ9fQ; domain=account.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
bkng_sso_ses=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=b72e3bb3a22e01f6&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTzvBXmOeko_cAtX-FC5K7brpuiEcGAP-O; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=b72e3bb3a22e01f6&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHuJUmoS1jnI5l8Ckpav_Buh2I8NJLAkmT_v2XtH3z--EgVIurJw_ypTzvBXmOeko_cAtX-FC5K7brpuiEcGAP-O; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-R45e58jChozxsE0' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; default-src *.bstatic.com bstatic.com 'self'; object-src 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YrskOBqlgOuqnGSNDNk_Glu7CkZTXLKZ3mO4W6WlS9eNycnuj3LNgw==
X-Firefox-Spdy: h2
account.booking.com/collector/anon_session_init
204 No Content 0 B URL HTTP/2 account.booking.com/collector/anon_session_init
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collector/anon_session_init HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Content-Type: application/json
Content-Length: 176
Origin: https://www.booking.com
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCplEZVQf%2FX%2Fsdiph4G4q%2BVZK2TUXEr%2FkOSMRt9fg9RmglhAwEmy1jIAmqchK7%2BlHoItfQZqbWKOB1Mb7WkPCNM8LxMJTk5MXehRApwWVliesODAOmqL1Mw%2FPauWc1Bu%2Br41nk0nvjCU7qO%2FBJSB38tkqIyrYIemZ40%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjRtYmNQcFVOUkJjaGpWcU8yNWt1N1hjTkhqWVVnWWpRWlNsTmtrTURuZEkiLCJhIjoxfV19; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI4MGM3NzJkNC04YmQ1LTQwY2QtOWQ2NC05ODY3ZjMxYTc1OTAiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxeVprWGdlejZqZ3NIV1UySE5mMTREektLY1hnWEFLYi1iOVp5WnFfVE5YcUpITWlnZUl5M3RpdE5WazlXM0xqZHc1dUg4THY4QjR4eS00TnViRDBldkFrbmhRNXVJeW5LZDVhQm1sQlhadHB1VEp5VDVmZHcyWkVfSHNheEhVQVpweUhzeE5wYV9lcWNwc01zOG1QYk52U1d6SG1QIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiJmZTNjMWQ0MS1jNzBmLTQzY2QtOGMyNy1mOGY0NTE4ODhkZDkifV19fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxde=1437c33e1440cb6703f2ca836cbff065e4787170ba14546c4e453886de569202:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjUzODAsImZfa2IiOjAsImlwY19pZCI6W119; _px3=38a4443d672f8db2b7ee93e9aaaff1119bac3931749dd8d1ea44da0341568653:ySkaplaagB4w8Ig2rKy5Zh1z0/qi2JFUS0g9ho3DPAAcRgv9FwxFjI8D+Kf0Qsj1cC1yoPlV24CNvW5sicvPog==:1000:jHvNuGbYlcfSVILlrhathN+lHjDVf7pqk/IPAPo7nfI93rnuFSMi9HMKRMmlSAfzcWvWjAmr2MphTNkhdFTm04BKfxAEM8IBermJEag0C6pAOYGakxToEc/7DblL3acIA31noM3iqMKNoBa8sWr/2u5Tiz95ZsudwQCa4o2tONv5gYIBIL3T+BN3o31SHAlkuKBaTZcjhqF4jm/4wPf7Vg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: envoy
date: Mon, 24 Oct 2022 08:29:26 GMT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: POST
access-control-allow-origin: https://www.booking.com
access-control-max-age: 1728000
set-cookie: bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IjRtYmNQcFVOUkJjaGpWcU8yNWt1N1hjTkhqWVVnWWpRWlNsTmtrTURuZEkifV19; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxeVprWGdlejZqZ3NIV1UySE5mMTREektLY1hnWEFLYi1iOVp5WnFfVE5YcUpITWlnZUl5M3RpdE5WazlXM0xqZHc1dUg4THY4QjR4eS00TnViRDBldkFrbmhRNXVJeW5LZDVhQm1sQlhadHB1VEp5VDVmZHcyWkVfSHNheEhVQVpweUhzeE5wYV9lcWNwc01zOG1QYk52U1d6SG1QIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiJmZTNjMWQ0MS1jNzBmLTQzY2QtOGMyNy1mOGY0NTE4ODhkZDkifV0sImRhdGFfc3ViamVjdF9pZCI6IjgwYzc3MmQ0LThiZDUtNDBjZC05ZDY0LTk4NjdmMzFhNzU5MCJ9fQ; domain=account.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:26 GMT; secure; HttpOnly
content-security-policy: frame-ancestors https://*.booking.com 'self'; report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=ed4a3bb3ae4500b8&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAqEpQqzPOdtuaJ6TVjwPVzgQSOeZpeFfbA;
content-security-policy-report-only: default-src *.bstatic.com bstatic.com 'self'; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-JrT9CuQFQdSDpQw' 'report-sample'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; base-uri 'none'; frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; object-src 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=ed4a3bb3ae4500b8&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdfdvBlyk9NlKcLEfSqFdAHv1CmYlbsbmyirNXm6MJ_S6d1wWGe6fE6L4Udx8pl8sAqEpQqzPOdtuaJ6TVjwPVzgQSOeZpeFfbA; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o9jUrY3BurgLoieyBjGWtTiJFdwVehCAtfTuWAVCyzG2gEU4_0haPg==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/797.f43135e1.chunk.js
200 OK 22 kB URL HTTP/2 cf.bstatic.com/psb/capla/static/js/797.f43135e1.chunk.js
IP
File type ASCII text, with very long lines (48278)
Hash 9929172e0941691d8dbb393816a3d9d7
67821339f173d1cb388699baac98d94fbce6d3aa
a3b6e4efc93fc75481aac8df0ce4e5b8d41698e7a798e6cf4bb5c9e86422c168
GET /psb/capla/static/js/797.f43135e1.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 19 Oct 2022 14:42:59 GMT
etag: W/"c0b4a95df3e45540103335adb0a910ad"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Wed, 19 Oct 2022 14:35:17 GMT
x-amz-expiration: expiry-date="Thu, 16 Feb 2023 14:35:17 GMT", rule-id=""
expires: Fri, 18 Nov 2022 14:42:59 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CCZNLp6Whip-j7ChWAhZE3Q-X5uTItVc0bixDZ2cEH1wIJE6SdRgAw==
age: 409583
X-Firefox-Spdy: h2
www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
200 OK 3 B URL HTTP/1.1 www.booking.com/js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz
IP
Hash 29a29c1a9510295faffe1081ce907c38
e56ed85fa42ad8367711b2d7a5680f781bc8cf2c
953364ba17432048a9b97116a689d04da08ff77b1ead69c7fe1b51faa6542667
GET /js_tracking?ver=2&lang=en-us&stype=1&sid=eab515e6cb204a72b42bfb0e5b37cc13&pid=e19b3bb059220326&aid=2188611&ref_action=index&ete=&etg=&etcg=&ets=&etgwv=js_index_www_time_on_page_seconds|6&m=UmFuZG9tSVYkc2RlIyh9YfCtBuoSEA6H_6uXSwODvIFOz49V8KxEPUndl6k7rFxpyw-D9ZHDi5z4SjRuj7M4G-4_uQhBPakbQfg5nCQLzUw6sDNALTIbxXGkrSUzzKDhnNXzUImKiHyBeU8hsMxkDY-7xRJsnUJQBg1xTwEcVhoco11H97QVtE-P5aJf9ISY9oodRptppqAsVSATb_ySxiZI6wkBqG0o3XzJfFxmbE23CrChiyG7Kg8YuWivlAY7xJK61ZsIDD5GEMyKoy_EMRyxPh-xOz_WPeCLYV2hjx27BHHeI7m3jKx3QauC9xGz HTTP/1.1
Host: www.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/index.html?aid=2188611&label=_63564ce05639dc0341ce37c5
X-Booking-AID: 2188611
X-Booking-CSRF: IYVWYwAAAAA=pPUTnhl1cVZAwc3zhYVvHoFtu6-tTapY-LKT8Ru7_4ZKyoS2VGXqFtCPUEmAaDsA3hW7fy5uQawo37RgcHCqiOp8O2UzRw85Hf_Z0xt7MLEAqQhPXJlpTL1oDRm8wxHaV2Pi79olKIAx0V0Faf2MI4dACKF-MTUc6uKzCps4L1J32MwmRjvbY5zlltvYbPE4WKWDGw6PHBaQgB_4
X-Booking-Info: 1588860,1605620,1606170,1606360,1607820,1611780,1613770,1615240,1615680,1615930,1615950,1616150,aaTBNZZJRLESPIDNJDPVBC|1,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|1,cCHObdRdJJXCcaWQOcNNOaUALOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|1,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|2,cCHObMKdFEVRVVPKLZZVCMISLUDZSedLOLOLMO|7,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8
X-Booking-Client-Info: aaTBNZZJRLESPIDNJDPVBC|1,cCHObVZMYCAFFQZcNKNMC|1,cCHObVZMYCAFFQZcNKNMC|2,cCHObVZMYCAFFQZcNKNMC|4,cCHObVZMYCAFFQZcNKNMC|7,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|2,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|4,BHDTJdReQLOLOLOVZMYCVCMILRVVPKLZZOJNET|7,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|1,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|3,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|6,cCGaYSdMbYSfcdReLbFZVGAZbaTaTaET|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|1,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|7,cCHObVXAZQBJbKYbeQMIaSdFaLbFJdDBKFRURURHe|8
X-Booking-Label: _63564ce05639dc0341ce37c5
X-Booking-Language-Code: en-us
X-Booking-Pageview-Id: e19b3bb059220326
X-Booking-Session-Id: eab515e6cb204a72b42bfb0e5b37cc13
X-Booking-SiteType-Id: 1
X-Partner-Channel-Id: 2
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbwcLxQQ4VaCplEZVQf%2FX%2Fsdiph4G4q%2BVZK2TUXEr%2FkOSMRt9fg9RmglhAwEmy1jIAmqchK7%2BlHoItfQZqbWKOB1Mb7WkPCNM8LxMJTk5MXehRApwWVliesODAOmqL1Mw%2FPauWc1Bu%2Br41nk0nvjCU7qO%2FBJSB38tkqIyrYIemZ40%3D; cors_js=1; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Oct+24+2022+08%3A29%3A25+GMT%2B0000+(Coordinated+Universal+Time)&version=6.22.0&isIABGlobal=false&hosts=&consentId=f1c1f739-cfce-4207-ae11-337288d10c1e&interactionCount=1&landingPath=https%3A%2F%2Fwww.booking.com%2Findex.html%3Faid%3D2188611%26label%3D_63564ce05639dc0341ce37c5&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0&implicitConsentCountry=GDPR&implicitConsentDate=1666600162878; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siYSI6MSwiaCI6IjRtYmNQcFVOUkJjaGpWcU8yNWt1N1hjTkhqWVVnWWpRWlNsTmtrTURuZEkifV19; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxff_ddtc=1; _pxde=1437c33e1440cb6703f2ca836cbff065e4787170ba14546c4e453886de569202:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjUzODAsImZfa2IiOjAsImlwY19pZCI6W119; _px3=38a4443d672f8db2b7ee93e9aaaff1119bac3931749dd8d1ea44da0341568653:ySkaplaagB4w8Ig2rKy5Zh1z0/qi2JFUS0g9ho3DPAAcRgv9FwxFjI8D+Kf0Qsj1cC1yoPlV24CNvW5sicvPog==:1000:jHvNuGbYlcfSVILlrhathN+lHjDVf7pqk/IPAPo7nfI93rnuFSMi9HMKRMmlSAfzcWvWjAmr2MphTNkhdFTm04BKfxAEM8IBermJEag0C6pAOYGakxToEc/7DblL3acIA31noM3iqMKNoBa8sWr/2u5Tiz95ZsudwQCa4o2tONv5gYIBIL3T+BN3o31SHAlkuKBaTZcjhqF4jm/4wPf7Vg==; lastSeen=1666600165668
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
server: nginx
date: Mon, 24 Oct 2022 08:29:26 GMT
content-type: text/plain; charset=UTF-8
transfer-encoding: chunked
vary: User-Agent, Accept-Encoding
content-encoding: br
strict-transport-security: max-age=604800
content-security-policy-report-only: frame-ancestors 'none'; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=112&pid=78bd3bb33aa10084&e=UmFuZG9tSVYkc2RlIyh9Yea92wm0yRUjnCBymoy8ejLKglNtaqPXW0IG3NBxpvq00nMCNAXpYZw;
x-xss-protection: 1; mode=block
cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js
IP
GET /static/js/genius_vip_cloudfront_sd/f980dbafa6b20d980f25ca835a161e7cece00d9d.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sun, 09 Oct 2022 01:48:07 GMT
last-modified: Thu, 30 Jun 2022 09:12:43 GMT
etag: W/"62bd690b-c32"
expires: Tue, 08 Nov 2022 01:48:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HheKdcIlsobat1TzrQA9nWHmFTwsZvg82o5AvxYXGZGtgcwviydWeg==
age: 1320075
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/landingpage_cloudfront_sd/1bf399220c9931431f658f6574069285b9123c71.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/landingpage_cloudfront_sd/1bf399220c9931431f658f6574069285b9123c71.js
IP
GET /static/js/landingpage_cloudfront_sd/1bf399220c9931431f658f6574069285b9123c71.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 20 Oct 2022 11:18:19 GMT
last-modified: Thu, 20 Oct 2022 10:56:21 GMT
etag: W/"63512955-67fd9"
expires: Sat, 19 Nov 2022 11:18:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VNnU-TA6yZarVMl4uy1OJFvV-QcbImyzl64IqqpVvSVDlTWukA3OtQ==
age: 335462
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/vendors.a2ac7d33.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/vendors.a2ac7d33.js
IP
GET /psb/capla/static/js/vendors.a2ac7d33.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 11:50:57 GMT
etag: W/"2c2048a769775781594f623be00078a4"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 10:11:50 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 10:11:50 GMT", rule-id=""
expires: Sun, 20 Nov 2022 11:50:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eFb4hV_rlOiFY2HXNuh8hlWi_HvyXGG2WCQoKCEC1_Bb4ZmYYIHdoQ==
age: 247105
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/513.d45b13c5.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/513.d45b13c5.chunk.js
IP
GET /psb/capla/static/js/513.d45b13c5.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 13 Oct 2022 11:58:51 GMT
etag: W/"36ee9db0b76ea9b5419612aed9e0d1ba"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 11:38:56 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 11:38:56 GMT", rule-id=""
expires: Sat, 12 Nov 2022 11:58:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S9y4ocYcHE2kQ36djeJtA8ecsMSC-Juu8AUv2rk_VLMG_JAZASIh_Q==
age: 937831
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/736.f8dea886.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/736.f8dea886.chunk.js
IP
GET /psb/capla/static/js/736.f8dea886.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 13 Oct 2022 11:58:51 GMT
etag: W/"0da1984eed5e81980ef74637ef02c23b"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 11:38:56 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 11:38:56 GMT", rule-id=""
expires: Sat, 12 Nov 2022 11:58:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d9tZVYYtjf_8dXKYEwIgnYTll71qBUw8LTPKHLZp4MNCfpnhfIl_Sg==
age: 937831
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/bui-react.bd6ffbe2.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/bui-react.bd6ffbe2.js
IP
GET /psb/capla/static/js/bui-react.bd6ffbe2.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 09:55:00 GMT
etag: W/"3d092864862863a9904fcea9853309b8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 09:14:07 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 09:14:07 GMT", rule-id=""
expires: Sun, 20 Nov 2022 09:55:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JtUKa916kxedwoGdpC_pxDYvtUNEgRdZRSec6BNBdKJpeCvroDcyww==
age: 254061
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/664.a7a9d765.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/664.a7a9d765.chunk.js
IP
GET /psb/capla/static/js/664.a7a9d765.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 09:55:00 GMT
etag: W/"9cbed85fe87acb8cacf86d4e0d120e80"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 09:14:07 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 09:14:07 GMT", rule-id=""
expires: Sun, 20 Nov 2022 09:55:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OdftW95lmZSCYfsY6g5UZkCCCQiwUuulVbtp-XR8-CRniSM6Jwb9QQ==
age: 254062
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
IP
GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 06 Oct 2022 15:21:43 GMT
last-modified: Wed, 10 Apr 2019 11:21:34 GMT
etag: W/"5cadd1be-13ac"
expires: Sat, 05 Nov 2022 15:21:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N5htTm74aDBDwVrNAWxd52jufhcqaQIPMNNP-kfFqVgv4jrkT20j6g==
age: 1530460
X-Firefox-Spdy: h2
cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/1210b04b4cf2568144a2eb9eabcae969a99c95e7.css
200 OK 0 B URL HTTP/2 cf.bstatic.com/static/css/searchresults_cloudfront_sd.iq_ltr/1210b04b4cf2568144a2eb9eabcae969a99c95e7.css
IP
GET /static/css/searchresults_cloudfront_sd.iq_ltr/1210b04b4cf2568144a2eb9eabcae969a99c95e7.css HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 06 Oct 2022 14:15:44 GMT
last-modified: Thu, 06 Oct 2022 13:03:17 GMT
etag: W/"633ed215-55d1f"
expires: Sat, 05 Nov 2022 14:15:44 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dKWl10W0zeqIzGgfwmybJ5hRuka06puwnzKVARcPMEXP2O7GczVkwQ==
age: 1534419
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/579.3282d6d7.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/579.3282d6d7.chunk.js
IP
GET /psb/capla/static/js/579.3282d6d7.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 09:55:00 GMT
etag: W/"e287d632cf4307d65acd9a5802d0d1e8"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 09:14:07 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 09:14:07 GMT", rule-id=""
expires: Sun, 20 Nov 2022 09:55:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iF5umiwSi2XQP0Ctcw7fvlVhj-c1jRvSdvTaOdPb5uu8taJn_3ghqw==
age: 254062
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/186.e2e2067b.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/186.e2e2067b.chunk.js
IP
GET /psb/capla/static/js/186.e2e2067b.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 09:55:00 GMT
etag: W/"10defca2fa02c84cf0144edda2ffa933"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 09:14:06 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 09:14:06 GMT", rule-id=""
expires: Sun, 20 Nov 2022 09:55:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LcuM_EWLFSiXJSoJBYXg9Fg07Plt7dMB2LcvAI9Rul9mMXPR-Pfbyw==
age: 254062
X-Firefox-Spdy: h2
cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js
IP
GET /static/js/sp-on-maps_cloudfront_sd/d30eef4dc5202875d4c3301b8a0e8ff09f9a0e28.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 10 Oct 2022 00:12:58 GMT
last-modified: Thu, 19 May 2022 11:44:13 GMT
etag: W/"62862d8d-25ae"
expires: Wed, 09 Nov 2022 00:12:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -zCMIzcYKWctGtPHvnAdDQnMu5a-5rp4SzcPPZmCrXaKj8OAuwSDkg==
age: 1239384
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/527.5d754299.chunk.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/527.5d754299.chunk.js
IP
GET /psb/capla/static/js/527.5d754299.chunk.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 13 Oct 2022 11:58:51 GMT
etag: W/"7718a35f6a3c0c7974179465a653c3b3"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Thu, 13 Oct 2022 11:38:56 GMT
x-amz-expiration: expiry-date="Fri, 10 Feb 2023 11:38:56 GMT", rule-id=""
expires: Sat, 12 Nov 2022 11:58:51 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9tujBO4g6DztmMrXhav_MoL6TwRMfA9tWznZlQDB7JtdhgR0VDERWQ==
age: 937831
X-Firefox-Spdy: h2
account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1666600164407&state=UswCQM5WedGY1nQIs5bJ064NOLOuMVRmOAQrWsqtkS6SCxXTri34Rd8Jm0xKYWc-fRAcJn8JExnX49XCrI1GszGkqNo26SYrWsTFzBIoN9Sdt9-R8d1fyOVIK-YTbh_UqTLnIRoXm05BA9kuOF3xBICMoWIyiJGsHDtTRJd0Y0n_N81eG6KRdvPcL5yKDa8x0Ka6hnZhZ_WQZyRAuFn9Sf5YaxxGSPqfjQ-4SzM2KenV_UEMteU4FOJNV8n4mIkQcL_UHmlR45bGd-7yOkq1AvOmwwSw9XS06v1TNQm2undc_3SToAZ5vc-BP40MnQqdnrR_xR8QPYB5yFjFCSmB-2EnwntMOFOZyCp6UgAYO5j5pF-BJ4_yxp1jVNBm5CO-iHQa_L3bhMPrAp-Nd3Ph-WNFrwmqL3RxmxFg5iNcdllrv43c0sWbh4fnXQqMAgo&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
302 Found 0 B URL HTTP/2 account.booking.com/oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1666600164407&state=UswCQM5WedGY1nQIs5bJ064NOLOuMVRmOAQrWsqtkS6SCxXTri34Rd8Jm0xKYWc-fRAcJn8JExnX49XCrI1GszGkqNo26SYrWsTFzBIoN9Sdt9-R8d1fyOVIK-YTbh_UqTLnIRoXm05BA9kuOF3xBICMoWIyiJGsHDtTRJd0Y0n_N81eG6KRdvPcL5yKDa8x0Ka6hnZhZ_WQZyRAuFn9Sf5YaxxGSPqfjQ-4SzM2KenV_UEMteU4FOJNV8n4mIkQcL_UHmlR45bGd-7yOkq1AvOmwwSw9XS06v1TNQm2undc_3SToAZ5vc-BP40MnQqdnrR_xR8QPYB5yFjFCSmB-2EnwntMOFOZyCp6UgAYO5j5pF-BJ4_yxp1jVNBm5CO-iHQa_L3bhMPrAp-Nd3Ph-WNFrwmqL3RxmxFg5iNcdllrv43c0sWbh4fnXQqMAgo&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index
IP
GET /oauth2/authorize/v2?client_id=vO1Kblk7xX9tUn2cpZLS&redirect_uri=https%3A%2F%2Fsecure.booking.com%2Flogin.html%3Fop%3Doauth_return&response_type=anon_session&prompt=none&iframe=1&dt=1666600164407&state=UswCQM5WedGY1nQIs5bJ064NOLOuMVRmOAQrWsqtkS6SCxXTri34Rd8Jm0xKYWc-fRAcJn8JExnX49XCrI1GszGkqNo26SYrWsTFzBIoN9Sdt9-R8d1fyOVIK-YTbh_UqTLnIRoXm05BA9kuOF3xBICMoWIyiJGsHDtTRJd0Y0n_N81eG6KRdvPcL5yKDa8x0Ka6hnZhZ_WQZyRAuFn9Sf5YaxxGSPqfjQ-4SzM2KenV_UEMteU4FOJNV8n4mIkQcL_UHmlR45bGd-7yOkq1AvOmwwSw9XS06v1TNQm2undc_3SToAZ5vc-BP40MnQqdnrR_xR8QPYB5yFjFCSmB-2EnwntMOFOZyCp6UgAYO5j5pF-BJ4_yxp1jVNBm5CO-iHQa_L3bhMPrAp-Nd3Ph-WNFrwmqL3RxmxFg5iNcdllrv43c0sWbh4fnXQqMAgo&bkng_referrer=https%3A%2F%2Fwww.booking.com%2Findex.html&bkng_action=index HTTP/1.1
Host: account.booking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.booking.com/
Connection: keep-alive
Cookie: _pxhd=Z3iKit5dKmMw04Dg3CIcmRwj1NEWD-qlX03wEIP8cwI3qwZcadwhALiY4Kpfy10UIzt6zXa65yL4vcFPhvhCCA%3D%3D%3AROlqqVg0q26lWtBCylbUU-YFPcBm8SiB-iFWnOJhMRxRynTGecL2gk5ectRCMb72XWA5vkjRMeao1OLQKwTAVgcyzj-ymviND-laMV%2Fj54s%3D; px_init=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbnmKTRaewPBul6qgrsd3xZ2ZZI71I1j34rkn2DEMpT5axKd4pMklQm1dWkCP4fZ3VL1DBRZpGwsox%2FQZCNPht%2BI5c%2BFr2PVkYGgOCmRXzJGBn0U0zCNqJI%2Ba%2Fwo5HvkPEZ4C0ytFkWks9Up7qR%2FqO1%2FOXRmoCfPu1FUrR80gCdW0%3D; cors_js=1; bkng_frontend_sese_exp=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI4MGM3NzJkNC04YmQ1LTQwY2QtOWQ2NC05ODY3ZjMxYTc1OTAiLCJzZXNzaW9ucyI6W119fQ; BJS=-; _px_f394gi7Fvmc43dfg_user_id=ZjZkMDc4ZDEtNTM3NS0xMWVkLThhYjMtZGZmZjM3YzI1ZjA5; pxcts=f7642f75-5375-11ed-8482-625a6b4e6e58; _pxvid=f6f4c994-5375-11ed-84c2-574a77614651; _pxde=3693a38ee05d1cf87728f917675476862ff962d0c5e5ebbf7b5ac60e38e1e6a9:eyJ0aW1lc3RhbXAiOjE2NjY2MDAxNjQ1MzQsImZfa2IiOjAsImlwY19pZCI6W119
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: https://secure.booking.com/login.html?lang=en-us&aid=304142&state=UswCQM5WedGY1nQIs5bJ064NOLOuMVRmOAQrWsqtkS6SCxXTri34Rd8Jm0xKYWc-fRAcJn8JExnX49XCrI1GszGkqNo26SYrWsTFzBIoN9Sdt9-R8d1fyOVIK-YTbh_UqTLnIRoXm05BA9kuOF3xBICMoWIyiJGsHDtTRJd0Y0n_N81eG6KRdvPcL5yKDa8x0Ka6hnZhZ_WQZyRAuFn9Sf5YaxxGSPqfjQ-4SzM2KenV_UEMteU4FOJNV8n4mIkQcL_UHmlR45bGd-7yOkq1AvOmwwSw9XS06v1TNQm2undc_3SToAZ5vc-BP40MnQqdnrR_xR8QPYB5yFjFCSmB-2EnwntMOFOZyCp6UgAYO5j5pF-BJ4_yxp1jVNBm5CO-iHQa_L3bhMPrAp-Nd3Ph-WNFrwmqL3RxmxFg5iNcdllrv43c0sWbh4fnXQqMAgo&op=oauth_return&code=v8d3YPsuQCLFpyNQr1YONV59D0uFthV6X7Y5b5tinwRH2afbcH7RbuIaEZwXGghCBbXwVZr8IQZE0K2E7PhWMKaEbH2eGuTvcFzRLQhNA2azAWDLrJ7vU3s6OBtKbZLjwOiduYESppsBriVaVOviZK2ZgS9lrNstErzPsbPMhJttaH
server: envoy
date: Mon, 24 Oct 2022 08:29:25 GMT
set-cookie: bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJkYXRhX3N1YmplY3RfaWQiOiI4MGM3NzJkNC04YmQ1LTQwY2QtOWQ2NC05ODY3ZjMxYTc1OTAiLCJzZXNzaW9ucyI6W3sicmVmcmVzaF90b2tlbiI6IkNBRVNkMUoxeVprWGdlejZqZ3NIV1UySE5mMTREektLY1hnWEFLYi1iOVp5WnFfVE5YcUpITWlnZUl5M3RpdE5WazlXM0xqZHc1dUg4THY4QjR4eS00TnViRDBldkFrbmhRNXVJeW5LZDVhQm1sQlhadHB1VEp5VDVmZHcyWkVfSHNheEhVQVpweUhzeE5wYV9lcWNwc01zOG1QYk52U1d6SG1QIiwic2Vzc2lvbl9yZWZlcmVuY2UiOiJmZTNjMWQ0MS1jNzBmLTQzY2QtOGMyNy1mOGY0NTE4ODhkZDkifV19fQ; domain=account.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:25 GMT; secure; HttpOnly
bkng_sso_session=e30; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:25 GMT; secure; HttpOnly
bkng_sso_ses=eyJib29raW5nX2dsb2JhbCI6W3siaCI6IjRtYmNQcFVOUkJjaGpWcU8yNWt1N1hjTkhqWVVnWWpRWlNsTmtrTURuZEkiLCJhIjoxfV19; domain=.booking.com; path=/; expires=Sat, 23-Oct-2027 08:29:25 GMT; secure; HttpOnly
bkng_expired_hint=; domain=.booking.com; path=/; expires=Sun, 23-Oct-2022 08:29:25 GMT; secure; HttpOnly
content-security-policy: report-uri https://nellie.booking.com/csp-report-uri?type=block&tag=42&pid=5f253bb2597a0092&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZKBOuNa2Xk59CvfoztP9gSP5Sc9qPLHN3Q; frame-ancestors https://*.booking.com 'self';
content-security-policy-report-only: frame-src https://www.youtube.com/embed/Vv4w5SmRkss *.bstatic.com https://www.google.com bstatic.com www.booking.com secure.booking.com paymentcomponent.booking.com 'self'; object-src 'none'; img-src 'self' data: www.booking.com graph.facebook.com cdn.cookielaw.org account.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google-analytics.com www.google.com stats.g.doubleclick.net *.px-cloud.net *.perimeterx.net www.gstatic.com; report-uri https://nellie.booking.com/csp-report-uri?type=report&tag=41&pid=5f253bb2597a0092&e=UmFuZG9tSVYkc2RlIyh9YTVpYxb9mtJD3cReeqMXo_5qxpf4W7JwdVGoUAc7XLxp8Xc7XQuWfM7nSTkT3Y1TELxA3w-qXihaSBP_o-RCyiBNhPkI-YW4ZKBOuNa2Xk59CvfoztP9gSP5Sc9qPLHN3Q; script-src saa.booking.com *.bstatic.com bstatic.com *.static.booking.cn www.google.com www.google-analytics.com cdn.cookielaw.org geolocation.onetrust.com 'self' 'nonce-eYmPIuZlfY6Gywl' 'report-sample'; base-uri 'none'; connect-src saa.booking.com secure.booking.com reports.booking.com privacyportal-eu.onetrust.com geolocation.onetrust.com cdn.cookielaw.org www.google-analytics.com *.perimeterx.net *.pxchk.net *.px-cdn.net *.px-client.net *.px-cloud.net 'self' 'report-sample'; style-src *.bstatic.com bstatic.com *.static.booking.cn 'self' 'unsafe-inline'; default-src *.bstatic.com bstatic.com 'self';
strict-transport-security: max-age=17280000
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uGrvgL6dRThwLZq3KSCIO8MqK0yIUBa8xA9hWNk2I6NJoq3PGkQa7w==
X-Firefox-Spdy: h2
cf.bstatic.com/psb/capla/static/js/client.1d7bf6f6.js
200 OK 0 B URL HTTP/2 cf.bstatic.com/psb/capla/static/js/client.1d7bf6f6.js
IP
GET /psb/capla/static/js/client.1d7bf6f6.js HTTP/1.1
Host: cf.bstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.booking.com
Connection: keep-alive
Referer: https://www.booking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 21 Oct 2022 11:50:57 GMT
etag: W/"550c1da8af616a43ba4e6aaeb6597874"
x-amz-meta-x-deployment-hash: foo
x-amz-server-side-encryption: AES256
last-modified: Fri, 21 Oct 2022 10:11:50 GMT
x-amz-expiration: expiry-date="Sat, 18 Feb 2023 10:11:50 GMT", rule-id=""
expires: Sun, 20 Nov 2022 11:50:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
nel: {"report_to":"default","max_age":600}
report-to: {"endpoints":[{"url":"https://nellie.booking.com/report"}],"max_age":600,"group":"default","failure_fraction":0.05}
content-encoding: br
x-xss-protection: 1; mode=block
timing-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F-sMtemmLzlEuEdWzv2z1fgjdnS7iM2wq9Q8baMm4q5UOB7ETdRKRQ==
age: 247105
X-Firefox-Spdy: h2
185.107.56.53
34.117.237.239
93.184.220.29
104.18.41.98
23.36.77.32