www.hawaiianairlines.com/covid-test-options/
96.6.16.96301 Moved Permanently 0 B URL HTTP/1.1 www.hawaiianairlines.com/covid-test-options/
IP 96.6.16.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1
GET /covid-test-options/ HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.hawaiianairlines.com/covid-test-options/
Expires: Thu, 05 Jan 2023 11:58:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 05 Jan 2023 11:58:44 GMT
Connection: keep-alive
Set-Cookie: SampleGroup=48; expires=Thu, 05-Jan-2023 12:03:44 GMT; path=/; secure
Server-Timing: cdn-cache; desc=HIT, edge; dur=1
Timing-Allow-Origin: *
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19576
Expires: Thu, 05 Jan 2023 17:25:00 GMT
Date: Thu, 05 Jan 2023 11:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b5997a492d3d161c9009d95add566733
9db765ae549ebe4aa859ca27abe365cf7f62dc4d
1ec0de25b0afd3b402c728b9c6b47c4fcf25fb989052427886841a3f52510a0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EC0DE25B0AFD3B402C728B9C6B47C4FCF25FB989052427886841A3F52510A0E"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13642
Expires: Thu, 05 Jan 2023 15:46:06 GMT
Date: Thu, 05 Jan 2023 11:58:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 05 Jan 2023 11:47:52 GMT
content-type: application/json
age: 652
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash da484f5e9c6805745e063b236fb81473
ae454bf4a7ae0e96935afc81ee0f89c049097b15
068d0da23acbe7f6b600c4e7dbe9c81d3ad78c8afd122255bbf3550e8a290686
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "068D0DA23ACBE7F6B600C4E7DBE9C81D3AD78C8AFD122255BBF3550E8A290686"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19088
Expires: Thu, 05 Jan 2023 17:16:52 GMT
Date: Thu, 05 Jan 2023 11:58:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: obWBAGcgnMmaKNtdnRdoxRC/SXxby/QcGBhFMNWPvoP1oTLKHRUWaCNhiU3Z/sw4smrJkST3Fi0=
x-amz-request-id: 68VG17WHZ1BV03H8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 05 Jan 2023 11:01:42 GMT
age: 3422
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 094178dbe1cdab72164c6622537eb1c9
d2d6bb0b21e36de28e8cdcb2a10b9219b021c9e1
b8771c58f60bc12f5ccfa87772dd9ad5939e479e5b2a723ab0c3771de0aaaa82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5506
Cache-Control: max-age=139952
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:44 GMT
Etag: "63b625a2-1d7"
Expires: Sat, 07 Jan 2023 02:51:16 GMT
Last-Modified: Thu, 05 Jan 2023 01:19:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jan 2023 11:58:44 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.hawaiianairlines.com/covid-test-options/
96.6.16.96200 OK 20 kB URL HTTP/2 www.hawaiianairlines.com/covid-test-options/
IP 96.6.16.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10618), with CRLF, LF line terminators
Hash e7cbf3d2b4b3a0588dc62d9ceeb0c62e
4db6c25180852f1f6f95c1944a2406aea633182d
b20e34e398159f3553b9cd519570fc70c6e25c8560257fd730cacd6613a607a2
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1
GET /covid-test-options/ HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-security-policy: default-src 'self' hawaiianairlinesinc.marketing.adobe.com data: blob:; script-src * data: 'unsafe-inline' 'unsafe-eval'; style-src * data: 'unsafe-inline'; img-src * data:; connect-src * data:; font-src * data:; frame-src *; frame-ancestors 'self' hawaiianairlinesinc.marketing.adobe.com https://www.kayak.com/; media-src 'self' *.s-hawaiianairlines.com
x-akamai-transformed: 9 64222 0 pmb=mRUM,3
vary: Accept-Encoding
content-encoding: gzip
expires: Thu, 05 Jan 2023 11:58:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 05 Jan 2023 11:58:45 GMT
content-length: 19842
set-cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; Secure; SameSite=None; path=/; secure; HttpOnly; ;SameSite=None
SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; Secure; SameSite=None; expires=Sun, 02-Jan-2033 11:58:44 GMT; path=/; secure; HttpOnly
__RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; Secure; SameSite=None; path=/; secure; HttpOnly
www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; path=/; Httponly; Secure
SampleGroup=50; expires=Thu, 05-Jan-2023 12:03:45 GMT; path=/; secure
AKA_A2=A; expires=Thu, 05-Jan-2023 12:58:45 GMT; path=/; domain=hawaiianairlines.com; secure; HttpOnly
server-timing: cdn-cache; desc=MISS, edge; dur=197, origin; dur=224
link: <https://css.s-hawaiianairlines.com>;rel="preconnect",<https://assets.adobedtm.com>;rel="preconnect",<https://html.s-hawaiianairlines.com>;rel="preconnect",<https://js.s-hawaiianairlines.com>;rel="preconnect",<https://fast.fonts.net>;rel="preconnect",<https://us.gimp.zeronaught.com>;rel="preconnect",<https://connect.facebook.net>;rel="preconnect",<https://secure-ds.serving-sys.com>;rel="preconnect"
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 05 Jan 2023 11:33:38 GMT
age: 1507
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hawaiianairlines.com/scriptlog/hascriptloggerv2.js
96.6.16.96200 OK 992 B URL HTTP/2 www.hawaiianairlines.com/scriptlog/hascriptloggerv2.js
IP 96.6.16.96:0
File type ASCII text, with very long lines (1001)
Hash bb73ea70728ab7a3bf39f4500703b76f
5122f154d898786c216c5dd7e3095976f6b57887
2f1acf83c0e0c1bd9478b6cc1a0bf9a8a4930959092cee9ceb32006f95994c77
GET /scriptlog/hascriptloggerv2.js HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=50; AKA_A2=A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ion-hop: prod
pragma: no-cache
content-encoding: gzip
content-length: 992
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 05 Jan 2023 11:58:44 GMT
date: Thu, 05 Jan 2023 11:58:44 GMT
vary: Accept-Encoding
set-cookie: rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed; Path=/; Max-Age=1577847600; Domain=www.hawaiianairlines.com
SampleGroup=16; expires=Thu, 05-Jan-2023 12:03:44 GMT; path=/; secure
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=86
strict-transport-security: max-age=31536000 ; includeSubDomains
shp_route: Default
timing-allow-origin: *
x-akamai-http2-push: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 73a99621729e1bc9e236a1085b98a0cf
5e1f71493085f6be7788f59987c1f0850b77d4d7
219d1a8d7d1a027553f72c8c024488863d8996457b31c78014002f81174f3ad1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2689
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:45 GMT
Last-Modified: Thu, 05 Jan 2023 11:13:56 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.hawaiianairlines.com/scriptlog/hascriptloggerv2.js?seed=AMDusYGFAQAAC4mLewmeOhBoHybkhz4c7WLDPNhGR9Bf0wLdo4v7h-dovbLY&X-d9KhUqP7--z=q
96.6.16.96200 OK 140 kB URL HTTP/2 www.hawaiianairlines.com/scriptlog/hascriptloggerv2.js?seed=AMDusYGFAQAAC4mLewmeOhBoHybkhz4c7WLDPNhGR9Bf0wLdo4v7h-dovbLY&X-d9KhUqP7--z=q
IP 96.6.16.96:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 140 kB (140447 bytes)
Hash 497f7bb4aba694a7997a351a38be076b
d0b22f848f45064185a6d5e2a3d931ad10d0187d
6854519fa1763fdfcef693d52da81d50b3091fbb3e15c0e88bd59e378fb132ee
GET /scriptlog/hascriptloggerv2.js?seed=AMDusYGFAQAAC4mLewmeOhBoHybkhz4c7WLDPNhGR9Bf0wLdo4v7h-dovbLY&X-d9KhUqP7--z=q HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=16; AKA_A2=A; rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ion-hop: prod
content-encoding: gzip
content-length: 140447
cache-control: public, max-age=1905
expires: Thu, 05 Jan 2023 12:30:30 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
vary: Accept-Encoding
set-cookie: Sample1=true; expires=Thu, 05-Jan-2023 12:03:45 GMT; path=/; secure
Sample2=true; expires=Thu, 05-Jan-2023 12:03:45 GMT; path=/; secure
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000 ; includeSubDomains
shp_route: Default
timing-allow-origin: *
X-Firefox-Spdy: h2
www.hawaiianairlines.com/layouts/system/VisitorIdentification.js
96.6.16.96200 OK 740 B URL HTTP/2 www.hawaiianairlines.com/layouts/system/VisitorIdentification.js
IP 96.6.16.96:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b2ac9041a8648916865fe8e8809c9628
28b06a2572c0de0238275483331bfc64942df32c
6b21f0c235968694dde022406d659b0e74f387bf10bd81af1ef1b9855485a127
GET /layouts/system/VisitorIdentification.js HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=50; AKA_A2=A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
etag: "06ba3e29a20d41:0"
content-type: application/javascript
last-modified: Sat, 21 Jul 2018 02:31:10 GMT
content-encoding: gzip
content-length: 740
unused62: 8096267
cache-control: private, max-age=423
expires: Thu, 05 Jan 2023 12:05:48 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
vary: Accept-Encoding
set-cookie: Sample1=true; expires=Thu, 05-Jan-2023 12:03:45 GMT; path=/; secure
server-timing: cdn-cache; desc=HIT, edge; dur=43
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3a0778c97e5f1308fab98419995b0006
a8cc91f7443d297155d25493d01521b83c684940
1aedb3068576508ecd7257bee2c654d48529c0b4c54cc3fb8411b761977495cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4091
Cache-Control: max-age=120142
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:45 GMT
Etag: "63b5ddc8-118"
Expires: Fri, 06 Jan 2023 21:21:07 GMT
Last-Modified: Wed, 04 Jan 2023 20:12:56 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
js.s-hawaiianairlines.com/Scripts/i18n/angular-locale_en.js
96.6.16.96200 OK 676 B URL HTTP/2 js.s-hawaiianairlines.com/Scripts/i18n/angular-locale_en.js
IP 96.6.16.96:0
File type ASCII text, with CRLF line terminators
Hash 860280cc99d771067af6df5a022e59d2
ec803b6a4eb42ecbd467cc26038e05d045ed1ea3
42de32080a98be13e050da408fa325eefafbbfc0b39c639105f823e2632fb038
GET /Scripts/i18n/angular-locale_en.js HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-encoding: gzip
content-length: 676
cache-control: private, max-age=65
expires: Thu, 05 Jan 2023 11:59:49 GMT
date: Thu, 05 Jan 2023 11:58:44 GMT
vary: Accept-Encoding
access-control-allow-origin: *
x-akamai-http2-push: 1
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=bc1fa060-63f7-44d4-9424-7679fb3ebf34
104.17.224.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=bc1fa060-63f7-44d4-9424-7679fb3ebf34
IP 104.17.224.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=bc1fa060-63f7-44d4-9424-7679fb3ebf34 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:45 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: BSBo49GWVGKxGmRFvdHq+ve3gXtscjm0/ZvXFqkFdGS4/6Y+mbI5mvSEkfn5YI9g9cQl2nDyL7Q=
x-amz-request-id: 92ENF61WV9AK83XH
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 389732
accept-ranges: bytes
set-cookie: __cf_bm=.JrFjcXYJMpdWqWvABhAdQttJxP5C_9E0Wra140z1y8-1672919925-0-AZUloJyeKyr0CFGJoFWn40Gqj5SED/Duq3DSIgCAy15SQlX2uV+a8NJ6KxF/NPrvhphSdJXk637ZpOHP/iFKtjE=; path=/; expires=Thu, 05-Jan-23 12:28:45 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 784c0b3d89e0b524-OSL
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/bundles/1.6.9/vendor
96.6.16.96200 OK 206 kB URL HTTP/2 js.s-hawaiianairlines.com/bundles/1.6.9/vendor
IP 96.6.16.96:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 206 kB (206227 bytes)
Hash 9c31c370f9f0e00589296c4af34a4ac1
bc1e085ddbb3d49d6ab5e878f1dd8f8cf6f38a95
e70a1a47afc3586baea202d979ea9566b1f20474e80603c18d7d24a86fad5776
GET /bundles/1.6.9/vendor HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Sun, 01 Jan 2023 06:47:46 GMT
content-encoding: gzip
content-length: 206227
cache-control: public, max-age=240492
expires: Sun, 08 Jan 2023 06:46:57 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/bundles/22.12.16.1997/app
96.6.16.96200 OK 442 kB URL HTTP/2 js.s-hawaiianairlines.com/bundles/22.12.16.1997/app
IP 96.6.16.96:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Size 442 kB (442483 bytes)
Hash cefcbeba5f77370ef1a27fb36f4d7522
63192fe66e4fa15e216ea61f5a1ba2b200f3dc17
d872ba76c5038073e39b55b37d3e9099c5aa16c035386422f02b6030d79e946c
GET /bundles/22.12.16.1997/app HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Sun, 01 Jan 2023 00:28:30 GMT
content-encoding: gzip
content-length: 442483
cache-control: public, max-age=217787
expires: Sun, 08 Jan 2023 00:28:32 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/nativeapp/google-play-badge-135x40.png?version=bd11&sc_lang=en
96.6.16.96200 OK 3.9 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/nativeapp/google-play-badge-135x40.png?version=bd11&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cadbec045e34a7a2e28db2e91d5e000
b74d5d90040c12596c79409b33137c26c9fc4286
15e9735c0d4b6f8e85cdbeb8687bd5607b8ac6e03fc761717e7184b2b20b55f6
GET /static/images/nativeapp/google-play-badge-135x40.png?version=bd11&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 09 Oct 2019 23:33:42 GMT
etag: bf770bf84ad045fa80a80776ef94c09b
content-length: 3916
unused62: 8096267
cache-control: public, max-age=22585300
expires: Sat, 23 Sep 2023 21:40:25 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/nativeapp/hanativeapp.png?version=2b7e&sc_lang=en
96.6.16.96200 OK 6.7 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/nativeapp/hanativeapp.png?version=2b7e&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash bad2fc7395a3b4825db53dc465987378
c0e4baa0b55ba605fefa38f00969c7c6f463caec
5cc33cb64cc352148287bcfdc832895d7f5e4325384ddaffb32b254fbec57ca3
GET /static/images/nativeapp/hanativeapp.png?version=2b7e&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 09 Oct 2019 23:33:43 GMT
etag: 0eb7528aefa342739e0149d94a64dea7
content-length: 6671
unused62: 8096267
cache-control: public, max-age=22586157
expires: Sat, 23 Sep 2023 21:54:42 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/nativeapp/app-store-badge-135x40.png?version=922f&sc_lang=en
96.6.16.96200 OK 4.0 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/nativeapp/app-store-badge-135x40.png?version=922f&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 135 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 5277734451c19d2663bd4c4648e105b6
f94540780460642d9e7bd62e5fe8b79a8b740aaa
3bcecb6bf752454736aaf166e9898731e9c9b5d2d0e1103656cda8a4a85e6f89
GET /static/images/nativeapp/app-store-badge-135x40.png?version=922f&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 09 Oct 2019 23:33:41 GMT
etag: a40ac75c19bf4352b4c3b47db01e4d0e
content-length: 4006
unused62: 8096267
cache-control: public, max-age=22585179
expires: Sat, 23 Sep 2023 21:38:24 GMT
date: Thu, 05 Jan 2023 11:58:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
96.6.16.96200 OK 165 kB URL HTTP/2 css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
IP 96.6.16.96:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 165 kB (165094 bytes)
Hash 479f20ab914e72f89b3e30911132261d
6ad35bc55c549effa88d5f16d044f95ea32a42d8
cd52625cee97367b50dd73cf8c8565ce9afbb615cdb8c515e225fc53325f1bbf
GET /Styles/css/dist/global.22.12.16.131997-pr.min.css HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 19 Dec 2022 06:27:35 GMT
accept-ranges: bytes
etag: "beed76fb7213d91:0"
content-encoding: gzip
content-length: 165094
cache-control: private, max-age=284
expires: Thu, 05 Jan 2023 12:03:28 GMT
date: Thu, 05 Jan 2023 11:58:44 GMT
vary: Accept-Encoding
access-control-allow-origin: *
x-akamai-http2-push: 1
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KG3p4ik96E58Q6CHG+DCbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BIs4pYzmO/sR1lMqNMjL2BByz/c=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash b98d5f31dbb7103ad6ab7c6fb2060cd1
586ff96aff900aa42e9267575631647213ccde4e
86d6a6caf6cd65bee37c7c59de6750f7e30d1e9fd06d6043dc289ef62c41d5a4
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "86D6A6CAF6CD65BEE37C7C59DE6750F7E30D1E9FD06D6043DC289EF62C41D5A4"
Last-Modified: Thu, 05 Jan 2023 04:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Thu, 05 Jan 2023 12:58:32 GMT
Date: Thu, 05 Jan 2023 11:58:45 GMT
Connection: keep-alive
us.gimp.zeronaught.com/__imp_apg__/js/sed-hawaiianairlines-66239934.js
34.120.21.7200 OK 200 kB URL HTTP/2 us.gimp.zeronaught.com/__imp_apg__/js/sed-hawaiianairlines-66239934.js
IP 34.120.21.7:0
File type ASCII text, with very long lines (65402)
Size 200 kB (200393 bytes)
Hash 9c6c6bd0b59da3d09759496cb91a3a72
f51448abfe19d20769a03df9c363bb83d35a0dc0
54f0ab9e32c0a9bd1026fdcc59e97f24331941d2d0bb86d9d1c0db3492e93e71
GET /__imp_apg__/js/sed-hawaiianairlines-66239934.js HTTP/1.1
Host: us.gimp.zeronaught.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.hawaiianairlines.com
content-encoding: gzip
vary: Accept-Encoding
server: istio-envoy
x-envoy-upstream-service-time: 1
via: 1.1 google
content-length: 200393
date: Thu, 05 Jan 2023 11:26:14 GMT
age: 1951
last-modified: Fri, 03 Dec 2021 03:02:41 GMT
content-type: application/javascript
cache-control: public,max-age=600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash b98d5f31dbb7103ad6ab7c6fb2060cd1
586ff96aff900aa42e9267575631647213ccde4e
86d6a6caf6cd65bee37c7c59de6750f7e30d1e9fd06d6043dc289ef62c41d5a4
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "86D6A6CAF6CD65BEE37C7C59DE6750F7E30D1E9FD06D6043DC289EF62C41D5A4"
Last-Modified: Thu, 05 Jan 2023 04:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Thu, 05 Jan 2023 12:58:32 GMT
Date: Thu, 05 Jan 2023 11:58:45 GMT
Connection: keep-alive
assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/EXfdda890418f848f69230aa83371048ca-libraryCode_source.min.js
23.38.200.237200 OK 31 kB URL HTTP/2 assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/EXfdda890418f848f69230aa83371048ca-libraryCode_source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32756)
Hash 5c5ac7418c3070ea1b1016452f897d0b
9d11066c35b49fbc91d4df9bb46019ded112be88
60dbee719dbd57dea4d99a0f3905a1e4641c8efdb76dd380165a4eca7a5bd2af
GET /e272d7f0f44e/c03cc471b6a8/7063e5d987cb/EXfdda890418f848f69230aa83371048ca-libraryCode_source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "a7165b386bb96e24fc44b2ef223abffb:1672873254.166469"
last-modified: Wed, 04 Jan 2023 23:00:54 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 31095
cache-control: max-age=3600
expires: Thu, 05 Jan 2023 12:58:46 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: https://www.hawaiianairlines.com
timing-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/images/bkgds/page_bg_flower01a.png
96.6.16.96200 OK 71 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/images/bkgds/page_bg_flower01a.png
IP 96.6.16.96:0
File type PNG image data, 226 x 2780, 8-bit/color RGBA, non-interlaced\012- data
Hash 7eb8712c459136a04dd9880743f7584a
0a555cf8a6f413e6b9fa1cb242537e4922235abd
5c2dd78400f317ddab66b681c51107df4268702defd29b5d55b6083b9bcc5023
GET /Content/assets/images/bkgds/page_bg_flower01a.png HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Feb 2022 22:02:14 GMT
accept-ranges: bytes
etag: "077bcda8023d81:0"
content-length: 70628
unused62: 8096267
cache-control: max-age=22590264
expires: Sat, 23 Sep 2023 23:03:10 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/hero-banner---illustration.png?version=0eee&sc_lang=en
96.6.16.96200 OK 815 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/hero-banner---illustration.png?version=0eee&sc_lang=en
IP 96.6.16.96:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1600x550, components 3\012- data
Size 815 kB (814601 bytes)
Hash a84674ee6ca4bfcbc042be9d90f226f6
36f74f6c3436e498c5e105da205852ea8c7c6adb
19441d719bff36b09bd076cd0669c944e75d67273c1551d022e8f84032af5d48
GET /static/images/2021-covid-testing-center/hero-banner---illustration.png?version=0eee&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Jun 2021 00:07:54 GMT
etag: 0a9e0e7de03448d5abed4497f6c95d53
content-length: 814601
cache-control: public, max-age=30021657
expires: Mon, 18 Dec 2023 23:19:43 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/samoa.png?version=68a8&sc_lang=en
96.6.16.96200 OK 702 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/samoa.png?version=68a8&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 696 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size 702 kB (701652 bytes)
Hash db0dde662e5a24a087c326643d810694
1aada8cdd64284495c5307f1214b42fa3475c69f
a1771e2a8c6d355cf07068e1c9b21f7b91d6a4f054a156fae3e4a1d3a7a7faf8
GET /static/images/2021-covid-testing-center/samoa.png?version=68a8&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:41 GMT
etag: f2200abbefb2441f91a9987c9d75f584
content-length: 701652
cache-control: public, max-age=24102819
expires: Wed, 11 Oct 2023 11:12:25 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/aus.png?version=4fdb&sc_lang=en
96.6.16.96200 OK 558 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/aus.png?version=4fdb&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 696 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size 558 kB (558333 bytes)
Hash 315b725117785bd94e949999a77e4fc2
2fc02694a769c46775a921bb1abe46bb7d758798
5bd83a3972813ed564184d84c690cfd356200a358299bb5b24986ae2f109e00f
GET /static/images/2021-covid-testing-center/aus.png?version=4fdb&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:40 GMT
etag: f81622f171f24d03986d3e17d9abeebf
content-length: 558333
cache-control: public, max-age=24102694
expires: Wed, 11 Oct 2023 11:10:20 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/jp.png?version=3585&sc_lang=en
96.6.16.96200 OK 804 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/jp.png?version=3585&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 696 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size 804 kB (803697 bytes)
Hash 856bcead9ccbc2919f08ce0536e86eaf
13404d3bb950949e30d2f29e2d8484c472e0ff7c
1a02909b2c071a954f034a54ec2072410c8f5206514850c7ff5edc7b59433a90
GET /static/images/2021-covid-testing-center/jp.png?version=3585&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:39 GMT
etag: 51c52f11687546ed864f4f434dd5550b
content-length: 803697
cache-control: public, max-age=24102775
expires: Wed, 11 Oct 2023 11:11:41 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d845c87c11854453c0e2d933c4c342e9
bae86d31c52f9b274e7e9cfd41890dd51d552f1d
57afc76578e0b65fed6d8a002454a04a387d20d6d08ecf727f3afa7d46ec882e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6234
Cache-Control: max-age=157923
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:46 GMT
Etag: "63b668ff-1d7"
Expires: Sat, 07 Jan 2023 07:50:49 GMT
Last-Modified: Thu, 05 Jan 2023 06:06:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
css.s-hawaiianairlines.com/Content/assets/images/svg/down-arrow-disabled.svg
96.6.16.96200 OK 263 B URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/images/svg/down-arrow-disabled.svg
IP 96.6.16.96:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 7d8d0b39cde12645fe206864fdb37467
126d37716d83ce06afce523348bfc398fcf48e9f
eee49110fde523487fe94e40537a816493241253575508dd6cfbe03ba55f7e10
GET /Content/assets/images/svg/down-arrow-disabled.svg HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 16 Dec 2022 14:53:52 GMT
accept-ranges: bytes
etag: "0c050365e11d91:0"
content-encoding: gzip
content-length: 263
cache-control: private, max-age=281376
expires: Sun, 08 Jan 2023 18:08:22 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/planesky.png?version=d341&sc_lang=en
96.6.16.96200 OK 117 kB URL HTTP/2 img.s-hawaiianairlines.com/static/planesky.png?version=d341&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 348 x 260, 8-bit/color RGBA, non-interlaced\012- data
Size 117 kB (116934 bytes)
Hash 3740e79d65d949f7ffcf6a4bda0775e5
fb7742867c4dea618e9a899260bf70d944b5c7e0
5941d115be6c5fe0238d192347b2ecec28817a1433736d205737e51237683ba5
GET /static/planesky.png?version=d341&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 21 Mar 2022 20:16:28 GMT
etag: 6803ded4610a42c8ba596bd959370ef6
content-length: 116934
cache-control: public, max-age=24267977
expires: Fri, 13 Oct 2023 09:05:03 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/images/bkgds/page_bg_flower01b.png
96.6.16.96200 OK 52 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/images/bkgds/page_bg_flower01b.png
IP 96.6.16.96:0
File type PNG image data, 212 x 2780, 8-bit/color RGBA, non-interlaced\012- data
Hash a6336b53a2ef1b7672b73c27a8b114bf
9aca2ca9ceeb2b1efeff42f02bb2284eaf5b7fb8
6ded80b5cb7384f459c84fd6bf4fae045f04d890cdd2ea1072c3e0aca3a40c9f
GET /Content/assets/images/bkgds/page_bg_flower01b.png HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Feb 2022 22:02:14 GMT
accept-ranges: bytes
etag: "077bcda8023d81:0"
content-length: 52267
unused62: 8096267
cache-control: private, max-age=22601652
expires: Sun, 24 Sep 2023 02:12:58 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/nz.png?version=f368&sc_lang=en
96.6.16.96200 OK 779 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/nz.png?version=f368&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 696 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size 779 kB (779044 bytes)
Hash 3364591a0eb80a6fe9e6332a3dfa1fac
331412c1320b823848a80cfb5985375a4e6015c4
52ec5d00ea925621967ce31691d957c70f345f7072b86a717294369e215e3f59
GET /static/images/2021-covid-testing-center/nz.png?version=f368&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:37 GMT
etag: 96481462be2c48a4b8f933359ad37001
content-length: 779044
cache-control: public, max-age=24267977
expires: Fri, 13 Oct 2023 09:05:03 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/keepers-of-vacation/travelpono.png?version=4ca6&sc_lang=en
96.6.16.96200 OK 212 kB URL HTTP/2 img.s-hawaiianairlines.com/static/keepers-of-vacation/travelpono.png?version=4ca6&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 348 x 260, 8-bit/color RGBA, non-interlaced\012- data
Size 212 kB (212335 bytes)
Hash 92101fe58ef9976c64b944e1e84a27c6
a8243ff732c7718599fbbf6e87f574c74b34d038
0f0eb960c3e5260f356f228a27e44fb0607bbd0ba8339f6019405b7b22b7b2cc
GET /static/keepers-of-vacation/travelpono.png?version=4ca6&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 212335
content-type: image/png
last-modified: Tue, 19 Oct 2021 21:23:50 GMT
etag: 0dc2a6633dc54767975ece3588d495fa
cache-control: public, max-age=22814282
expires: Tue, 26 Sep 2023 13:16:48 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/images/logos/ha-logo-stacked.png
96.6.16.96200 OK 15 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/images/logos/ha-logo-stacked.png
IP 96.6.16.96:0
File type PNG image data, 150 x 130, 8-bit/color RGBA, non-interlaced\012- data
Hash 25e33ccfd1973d7ae2215212d2f656c6
5f114786a02c033bff8bf6be4f23dd7420b93443
8d03821f19bf77bdb8232a05a8287e7f5e93eff41b3179056066c569c530a18a
GET /Content/assets/images/logos/ha-logo-stacked.png HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Feb 2022 22:02:14 GMT
accept-ranges: bytes
etag: "077bcda8023d81:0"
content-length: 15046
unused62: 8096267
cache-control: max-age=22590277
expires: Sat, 23 Sep 2023 23:03:23 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/hawaiistories/hawaii-is-our-home/reservations/image---safety-1.jpg?version=59b3&sc_lang=en
96.6.16.96200 OK 355 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/hawaiistories/hawaii-is-our-home/reservations/image---safety-1.jpg?version=59b3&sc_lang=en
IP 96.6.16.96:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 670x420, components 3\012- data
Size 355 kB (355263 bytes)
Hash b4aebb29c3a88a12edd78324e65c2aa1
a9e73492d0e57efcb3dc835c5309bcee56d2f3e4
f898ec365c7b112c00b37a0e61be9b6454271f390c4ee326a103cd9241937e1a
GET /static/images/hawaiistories/hawaii-is-our-home/reservations/image---safety-1.jpg?version=59b3&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 27 Jul 2021 02:49:22 GMT
etag: 51162ac0cbd846f2a9d89139073bab25
content-length: 355263
cache-control: public, max-age=27887080
expires: Fri, 24 Nov 2023 06:23:26 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3354DA_1_0.woff2
96.6.16.96200 OK 42 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3354DA_1_0.woff2
IP 96.6.16.96:0
File type Web Open Font Format (Version 2), TrueType, length 41582, version 1.65\012- data
Hash ec760bf8bd2fb5af925bcab79f7fa259
42d4ada68b9644fae9f68f676d2c7feccdeb1541
e7b764fe85a0f4a6bf92b4016badcddd9584e86546149568236d0932b9bff926
GET /Content/assets/fonts/SlatePro/3354DA_1_0.woff2 HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-length: 41582
cache-control: private, max-age=210531
expires: Sat, 07 Jan 2023 22:27:37 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/rarcovidhub.jpg?version=775c&sc_lang=en
96.6.16.96200 OK 612 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/rarcovidhub.jpg?version=775c&sc_lang=en
IP 96.6.16.96:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 696x520, components 3\012- data
Size 612 kB (612499 bytes)
Hash 5b14d5a34adca44b4bb31210d6410f01
0eac59a7782b64cc46966213808fedf938ba1a45
997b09ef96d17b0b5fa92a9296675d5676b6a08270f665d40dc10286b8a65cba
GET /static/images/2021-covid-testing-center/rarcovidhub.jpg?version=775c&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Wed, 21 Dec 2022 21:10:23 GMT
etag: a42ca53e418540149752c1a9abff04f1
content-length: 612499
cache-control: public, max-age=31307004
expires: Tue, 02 Jan 2024 20:22:10 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/kr.png?version=0369&sc_lang=en
96.6.16.96200 OK 556 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/kr.png?version=0369&sc_lang=en
IP 96.6.16.96:0
File type PNG image data, 696 x 520, 8-bit/color RGBA, non-interlaced\012- data
Size 556 kB (556531 bytes)
Hash c2c1de9060de313c883b77c38f7fc2c9
ddb344f066bfcdd2fa50c269710c517be099d3c6
5581c87e6dabe4f0c9d6d83e39d1a0eaf8cc1e777802b27673e7fd0bde630c6d
GET /static/images/2021-covid-testing-center/kr.png?version=0369&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:38 GMT
etag: cf2bf90c9395461381bc8d2e87b258a4
content-length: 556531
cache-control: public, max-age=24102717
expires: Wed, 11 Oct 2023 11:10:43 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro//3354DA_3_0.woff2
96.6.16.96200 OK 44 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro//3354DA_3_0.woff2
IP 96.6.16.96:0
File type Web Open Font Format (Version 2), TrueType, length 43481, version 1.65\012- data
Hash 621703901d1a5840d3edefa7962d9fc8
d37ea5e93754ee978126ed4f9428890074773e95
ea76ac69bee561596a742cbf9b92a753f7e29d70aa320d7ee6f20c20aaedc0b5
GET /Content/assets/fonts/SlatePro//3354DA_3_0.woff2 HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-length: 43481
cache-control: private, max-age=281417
expires: Sun, 08 Jan 2023 18:09:03 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=5E29123F5245B2B70A490D45%40AdobeOrg&d_nsid=0&ts=1672919915930
54.75.234.63200 OK 1.1 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=5E29123F5245B2B70A490D45%40AdobeOrg&d_nsid=0&ts=1672919915930
IP 54.75.234.63:0
File type JSON data\012- , ASCII text, with very long lines (2838), with no line terminators
Hash e0778591a7c7b549e46d094b924b4f00
063f827a5846699cc36b16005801ac3581652bd3
9c2337bff992c9c60d50547806d6021be4d3d86bc1ce4a17afd53b8632830d62
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=5E29123F5245B2B70A490D45%40AdobeOrg&d_nsid=0&ts=1672919915930 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hawaiianairlines.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-0ebeee8d5.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=20330729008358535162157718794676798310; Max-Age=15552000; Expires=Tue, 04 Jul 2023 11:58:47 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Ps4zA2F/R4U=
Content-Length: 1081
Connection: keep-alive
css.s-hawaiianairlines.com/Content/assets/fonts/ha-icons/fonts/ha-icons.woff
96.6.16.96200 OK 60 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/fonts/ha-icons/fonts/ha-icons.woff
IP 96.6.16.96:0
File type Web Open Font Format, TrueType, length 60500, version 1.0\012- data
Hash 601f5bfe040f270ff678ffcc47361326
a03f0ab0e0fa62b93b6a19077b3bd1a0e3976629
9b2c21e3494d499c5077cf33cc293a4f7c97e85d3d1c5fd9425abe74c224604c
GET /Content/assets/fonts/ha-icons/fonts/ha-icons.woff HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-length: 60500
cache-control: private, max-age=240170
expires: Sun, 08 Jan 2023 06:41:36 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3371D7_2_0.woff2
96.6.16.96200 OK 44 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3371D7_2_0.woff2
IP 96.6.16.96:0
File type Web Open Font Format (Version 2), TrueType, length 43555, version 1.65\012- data
Hash 83be6b0b61fc5b6e45dd4e00138f9f24
6a5412889c681a58239c9dfbd6e5ce2b6622f9ab
0cfa3b1e8ff276c2dd1906788d380727e9719565a7a4c66e8824210f7bda1d4d
GET /Content/assets/fonts/SlatePro/3371D7_2_0.woff2 HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-length: 43555
cache-control: private, max-age=306283
expires: Mon, 09 Jan 2023 01:03:29 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3354DA_5_0.woff2
96.6.16.96200 OK 41 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/fonts/SlatePro/3354DA_5_0.woff2
IP 96.6.16.96:0
File type Web Open Font Format (Version 2), TrueType, length 40602, version 1.65\012- data
Hash e6bcc281c076261bc3c25efff78c953a
5fcfe2f659f3e11adca45ed50e9f07a8938878f4
a9592f74553b45bee797394d35d6cc255a0628508fc4e6d440180c7b26be363f
GET /Content/assets/fonts/SlatePro/3354DA_5_0.woff2 HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-length: 40602
cache-control: private, max-age=319906
expires: Mon, 09 Jan 2023 04:50:32 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.hawaiianairlines.com/covid-test-options/~/media/DD81B409721348ABA587409C5B4D22D0.ashx
96.6.16.96200 OK 116 kB URL HTTP/2 www.hawaiianairlines.com/covid-test-options/~/media/DD81B409721348ABA587409C5B4D22D0.ashx
IP 96.6.16.96:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 375x200, components 3\012- data
Size 116 kB (115660 bytes)
Hash ad14191ab3975213b3106bd6af1e8aed
731ed81370f6db2728c60b8680e47d2e59c4448b
7da00467c8bbc1f3e9a038d116cf66233c12c30654a96769f33ab3f82ef8cb58
GET /covid-test-options/~/media/DD81B409721348ABA587409C5B4D22D0.ashx HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=16; AKA_A2=A; rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed; Sample1=true; Sample2=true; AMCV_5E29123F5245B2B70A490D45%40AdobeOrg=-1124106680%7CMCIDTS%7C19363%7CvVersion%7C5.2.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 19 Sep 2022 19:50:54 GMT
etag: b28f1c816abb401287c1dc440f326b50
content-length: 115660
cache-control: public, max-age=114
expires: Thu, 05 Jan 2023 12:00:40 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=122, origin; dur=308
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash fca089505f30fe0cc4005f56ea7bd29f
9298f94f19d3561afa702a763e1aca605cf5d898
ec592eca86d9da3ccdb6fd4d579145b4cf25364c3b75a66c0ac1875f67663192
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92556
Date: Thu, 05 Jan 2023 11:58:46 GMT
Etag: "63b57b4c-1d7"
Expires: Fri, 06 Jan 2023 13:41:22 GMT
Last-Modified: Wed, 04 Jan 2023 13:12:44 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zqvZrOHi0YC9gbWTI9HdIk8suOJH09PuRd88vSlyGsNbDPc8rfqUnw==
Age: 1718
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13569
Expires: Thu, 05 Jan 2023 15:44:56 GMT
Date: Thu, 05 Jan 2023 11:58:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13569
Expires: Thu, 05 Jan 2023 15:44:56 GMT
Date: Thu, 05 Jan 2023 11:58:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13569
Expires: Thu, 05 Jan 2023 15:44:56 GMT
Date: Thu, 05 Jan 2023 11:58:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DqWBkBqUffF-tNXmSr2AzrL7hMr0RufOsND4zDF26f8A4c1tetxnWg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 03:41:11 GMT
age: 29856
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13569
Expires: Thu, 05 Jan 2023 15:44:56 GMT
Date: Thu, 05 Jan 2023 11:58:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 008614d302ad57bc6502ad5e07652378
968bc262d2939ec6f0dce9d852682c0aaf86d3d7
5eab9a2591f0f9761ba3b90a5a191b79b6326cccb1ee6b586b00dfc1517c8db6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4248
x-amzn-requestid: 17ccfd69-0d12-42ac-b111-059a68735e70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eCutmF7mIAMFW2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b0f7f0-5e1653641a0303815656a578;Sampled=0
x-amzn-remapped-date: Sun, 01 Jan 2023 03:03:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zxPQmFj8Y1QxN5CKzoPL9l_tBPeokp60xLh7nhRHTWjcdKreTPy01A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 07:08:59 GMT
age: 17388
etag: "968bc262d2939ec6f0dce9d852682c0aaf86d3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7711a1490729319952a150b84e91a5d6
11fda31d48a4df3fd6346d92f45a680f500bff64
e9663e981c6716c243b58ac99549dfbe6dd8371c42d50add46457b5911f63529
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11381
x-amzn-requestid: 6964d7af-01cd-425b-aeb9-89a336f83a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ePKyuGyJoAMF91Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b5f1aa-62558f6852d5861033eecdef;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 21:37:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BQpaWc_3xnsf6SPx3UvVIfgBRURZkVYrXyKQi6Khv6_90Ao78BZDeg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 21:55:08 GMT
age: 50619
etag: "11fda31d48a4df3fd6346d92f45a680f500bff64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1b2573cd90d9c94112bc677d90d8a7
52830fa620718a629970f4ca9df109ea1d979f2d
f869d532534d81fd1335a9182409f9f1dda1ec7e8dba6445bcd219aec5f5d1e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7367
x-amzn-requestid: 24c48b0b-7f01-4f67-b37e-8bc7ed792c36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGlAJEqsIAMFeIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b28200-0813561555102cf079fd916a;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 07:04:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 37GusA4sbXjkTta8RVbfbgH9DBDcURpydCozw6ZQmS5biBUxqPZEGQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 05:30:34 GMT
age: 23293
etag: "52830fa620718a629970f4ca9df109ea1d979f2d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ce88a04d7f32ce0497bd84db44da8d4
761049019c342553004815ea394dcf282f2cc613
038aa4e5da1428524de833071814998d6c1d8b8b60d4e9c10e60d8a75f7b88fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5601
x-amzn-requestid: 54813ea9-9435-4355-910b-5b4d1eadf2ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGlhgHU1oAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b282d6-17e772ae5b70371367792063;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 07:08:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hB4FJa_z49ZYA_EY_5CH9CVlU2tYkrhayxyWMmR8lNxR10rjfff-MQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 06:33:38 GMT
age: 19509
etag: "761049019c342553004815ea394dcf282f2cc613"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2165a068-222a-4ded-97fd-4b0e851a096a.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2165a068-222a-4ded-97fd-4b0e851a096a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 858fd50b78673524f2ec1b0712d3d0ad
a844d19f9bbc210ea3134b925173e3fb4baa764f
2b9460f2a4a0f0c4662cf847d30f2e5fa2d714a6c39e0eda2ed34294a92c7e7d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2165a068-222a-4ded-97fd-4b0e851a096a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2897
x-amzn-requestid: 8c6896e3-ea36-400f-a1df-13dccf6bb211
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3qiFzJIAMF7LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49fdc-08198522625baf3c334cf71b;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:36:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UMPjRKqLmb6ZuJtWVjdA1nSRBdFfGxen53DbBRs47No6SK02OeKqhg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 21:53:48 GMT
age: 50699
etag: "a844d19f9bbc210ea3134b925173e3fb4baa764f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ec4eb5276a6872b64135f424c57124
261ffe8ee941a2e48eb12bb5f6e5d6bc0b8e6344
38dc5616ee5568e1714ea7364b2578af0e854599f46e699fa97990bd1154da66
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6328
Cache-Control: max-age=89985
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:47 GMT
Etag: "63b55f40-1d7"
Expires: Fri, 06 Jan 2023 12:58:32 GMT
Last-Modified: Wed, 04 Jan 2023 11:13:04 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: /1y5gmb4KF+rc0Kyc4iEOlWLERIYDwZpQakdcDpTJQl3cY5sdCWFGKd2qsR48RxPP7oY9xYOQH/JGESyKxhBNA==
content-length: 27298
x-fb-trip-id: 1679558926
date: Thu, 05 Jan 2023 11:58:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/ppg.png?version=21e8&sc_lang=en
96.6.16.96200 OK 33 kB URL HTTP/2 img.s-hawaiianairlines.com/static/images/2021-covid-testing-center/ppg.png?version=21e8&sc_lang=en
IP 96.6.16.96:0
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash de64ba796e25093cf70f13b1e44d3c69
a622198d2738d01985aaef21e11dea78030212d1
ea434bc4c4d6722bd805b890adade4a5ec0121c7065e5207f873904d7f264fb7
GET /static/images/2021-covid-testing-center/ppg.png?version=21e8&sc_lang=en HTTP/1.1
Host: img.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Mar 2022 19:51:39 GMT
etag: 6d4a9931618146019f9724ba0e97bddb
content-length: 593518
cache-control: public, max-age=24102743
expires: Wed, 11 Oct 2023 11:11:09 GMT
date: Thu, 05 Jan 2023 11:58:46 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ec4eb5276a6872b64135f424c57124
261ffe8ee941a2e48eb12bb5f6e5d6bc0b8e6344
38dc5616ee5568e1714ea7364b2578af0e854599f46e699fa97990bd1154da66
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6328
Cache-Control: max-age=89985
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:47 GMT
Etag: "63b55f40-1d7"
Expires: Fri, 06 Jan 2023 12:58:32 GMT
Last-Modified: Wed, 04 Jan 2023 11:13:04 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
css.s-hawaiianairlines.com/Content/assets/images/logos/ha-logo-horizontal.png
96.6.16.96200 OK 10 kB URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/images/logos/ha-logo-horizontal.png
IP 96.6.16.96:0
File type PNG image data, 196 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b0eaf058c7aaa909920a76037f21ec5
3b99dc90b70495497e7dda4da0f18949e2f66661
4f9b5f2276aa68af90ab097272b675da3511706496c67881e0646f6ff467aa74
GET /Content/assets/images/logos/ha-logo-horizontal.png HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Feb 2022 22:02:14 GMT
accept-ranges: bytes
etag: "077bcda8023d81:0"
content-length: 10548
unused62: 8096267
cache-control: private, max-age=22590072
expires: Sat, 23 Sep 2023 22:59:59 GMT
date: Thu, 05 Jan 2023 11:58:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Content/assets/common/images/icons-spritesheet-flags-26.png
96.6.16.96200 OK 662 B URL HTTP/2 css.s-hawaiianairlines.com/Content/assets/common/images/icons-spritesheet-flags-26.png
IP 96.6.16.96:0
File type PNG image data, 154 x 12, 8-bit colormap, non-interlaced\012- data
Hash 5312e8aed2476266450983ba37c2869c
b76e2497fc3cf836a0beb674df8bb1e4a44afb57
3e8c7d48030692724967ef39f9eca9ea3d4e6d2808beb5b4c80670a3936213f0
GET /Content/assets/common/images/icons-spritesheet-flags-26.png HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 16 Feb 2022 22:02:14 GMT
accept-ranges: bytes
etag: "077bcda8023d81:0"
content-length: 662
unused62: 8096267
cache-control: private, max-age=22590336
expires: Sat, 23 Sep 2023 23:04:23 GMT
date: Thu, 05 Jan 2023 11:58:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/sitecoreresources/forms?sc_lang=en
96.6.16.96200 OK 159 B URL HTTP/2 js.s-hawaiianairlines.com/sitecoreresources/forms?sc_lang=en
IP 96.6.16.96:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c15929811eddf96bae342d050d4e4f56
0c6c56f48dcf1a0f419a4b9321d1251d31a91bb0
41e0736de2ce27d33cb46895c9d7da4db2e015947630f6cb163b7d552e4d92e5
GET /sitecoreresources/forms?sc_lang=en HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
pragma: no-cache
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 159
cache-control: max-age=2218
expires: Thu, 05 Jan 2023 12:35:45 GMT
date: Thu, 05 Jan 2023 11:58:47 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.hawaiianairlines.com/MyAccount/AccountShared/GetCountries?languagecode=en-US
96.6.16.96200 OK 6.4 kB URL HTTP/2 www.hawaiianairlines.com/MyAccount/AccountShared/GetCountries?languagecode=en-US
IP 96.6.16.96:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 7f85e4720a719ccf714d82388a47252a
3e3485a994f7761faa76c74f0a367d3f7e863af4
bc0219b152eafdbe18328a60a855242419a3f4c14ded364cad4e1ab8aa18f342
GET /MyAccount/AccountShared/GetCountries?languagecode=en-US HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
csrf: 84vvnY_J5gCAYZbTFIaW7KVha9xw0DlBN9-yKSwaQyFj9eQTbt2JWPk3pQVa1M3ajZLtSA2:JniuADG-QKoz522hXEt-bGIlVyomOgYDBni7uBZ5z6h0jbn521G4v-vv6_SWVLYaOARFnw2
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=16; AKA_A2=A; rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed; Sample1=true; Sample2=true; AMCV_5E29123F5245B2B70A490D45%40AdobeOrg=-1124106680%7CMCIDTS%7C19363%7CvVersion%7C5.2.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-security-policy: default-src 'self' hawaiianairlinesinc.marketing.adobe.com data: blob:; script-src * data: 'unsafe-inline' 'unsafe-eval'; style-src * data: 'unsafe-inline'; img-src * data:; connect-src * data:; font-src * data:; frame-src *; frame-ancestors 'self' hawaiianairlinesinc.marketing.adobe.com https://www.kayak.com/; media-src 'self' *.s-hawaiianairlines.com
content-encoding: gzip
content-length: 6379
expires: Thu, 05 Jan 2023 11:58:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 05 Jan 2023 11:58:47 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=MISS, edge; dur=1, origin; dur=150
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
html.s-hawaiianairlines.com/templates/ha-primary-nav-account-menu.html?ver=22.12.16.1997
96.6.16.96200 OK 298 B URL HTTP/2 html.s-hawaiianairlines.com/templates/ha-primary-nav-account-menu.html?ver=22.12.16.1997
IP 96.6.16.96:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 1a5cdfc89550eef43a0b56922f75ca9c
acdf5df13d9e1b963bfcf7c8f50a6145d2df483a
9bef0b25b672f660485fee21ace4aecd382140507d1a16c5a1869b95da2e86e9
GET /templates/ha-primary-nav-account-menu.html?ver=22.12.16.1997 HTTP/1.1
Host: html.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Fri, 16 Dec 2022 14:53:54 GMT
accept-ranges: bytes
etag: "0ed81375e11d91:0"
content-encoding: gzip
content-length: 298
cache-control: private, max-age=188177
expires: Sat, 07 Jan 2023 16:15:04 GMT
date: Thu, 05 Jan 2023 11:58:47 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/sitecoreresources/accessibility?sc_lang=en
96.6.16.96200 OK 156 B URL HTTP/2 js.s-hawaiianairlines.com/sitecoreresources/accessibility?sc_lang=en
IP 96.6.16.96:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f15fd4adae020734440d708a143f182b
bacd8a69265c130abf86e36620e1a633953dc484
d390328cfed8aba3d2968132be8d6089a3905a965804e71afd37bd1eebdb9d94
GET /sitecoreresources/accessibility?sc_lang=en HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
pragma: no-cache
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 156
cache-control: max-age=1841
expires: Thu, 05 Jan 2023 12:29:28 GMT
date: Thu, 05 Jan 2023 11:58:47 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.hawaiianairlines.com/Header/GetAlerts/
96.6.16.96200 OK 0 B URL HTTP/2 www.hawaiianairlines.com/Header/GetAlerts/
IP 96.6.16.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Header/GetAlerts/ HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
csrf: 84vvnY_J5gCAYZbTFIaW7KVha9xw0DlBN9-yKSwaQyFj9eQTbt2JWPk3pQVa1M3ajZLtSA2:JniuADG-QKoz522hXEt-bGIlVyomOgYDBni7uBZ5z6h0jbn521G4v-vv6_SWVLYaOARFnw2
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=16; AKA_A2=A; rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed; Sample1=true; Sample2=true; AMCV_5E29123F5245B2B70A490D45%40AdobeOrg=-1124106680%7CMCIDTS%7C19363%7CvVersion%7C5.2.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src 'self' hawaiianairlinesinc.marketing.adobe.com data: blob:; script-src * data: 'unsafe-inline' 'unsafe-eval'; style-src * data: 'unsafe-inline'; img-src * data:; connect-src * data:; font-src * data:; frame-src *; frame-ancestors 'self' hawaiianairlinesinc.marketing.adobe.com https://www.kayak.com/; media-src 'self' *.s-hawaiianairlines.com
content-length: 0
expires: Thu, 05 Jan 2023 11:58:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 05 Jan 2023 11:58:47 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=114, origin; dur=18
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
resources.usersnap.com/widget-assets/js/entries/setup/8e7e5307d7dc55583b33.js
143.204.55.117200 OK 140 kB URL HTTP/2 resources.usersnap.com/widget-assets/js/entries/setup/8e7e5307d7dc55583b33.js
IP 143.204.55.117:0
File type Unicode text, UTF-8 text, with very long lines (63901)
Size 140 kB (140305 bytes)
Hash c654a5fe3ff0fb330c1973c2e74d4ad6
a411e517e5f9d3f8940bfe97912c376780d43568
ef32d40dca8d2c42e14fb2777a8dfecb402a5bed892c201fe04d0f9ab4b90c4b
GET /widget-assets/js/entries/setup/8e7e5307d7dc55583b33.js HTTP/1.1
Host: resources.usersnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 04 Jan 2023 15:15:29 GMT
last-modified: Wed, 04 Jan 2023 15:01:34 GMT
etag: W/"29be180f1030e9ab21e29026e22f398d"
cache-control: public, max-age=2592000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n6mtQPP1PAzLVYGrZ1new-EWjHlKVbEczkSqpvc6B4s2tes5fbGxzg==
age: 74599
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-833799455
142.250.74.168200 OK 69 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-833799455
IP 142.250.74.168:0
File type ASCII text, with very long lines (2917)
Hash 75f75e66f4748f9fc9d37fbf1176f659
dfedfd44bc5050f6e10b3142663cda0036521df1
a6863f1ca85c9d3194d243e0ddc37b4790f2258ac7f3f7d176338c0289735a10
GET /gtag/js?id=AW-833799455 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 05 Jan 2023 11:58:47 GMT
expires: Thu, 05 Jan 2023 11:58:47 GMT
cache-control: private, max-age=900
last-modified: Thu, 05 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68655
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a430d46fb27196c8b03f382c1bafbb23
0b31940d1067eb87c24c6d356689d7f9f90231a6
3e9cd331b1c2c1eca94ff12ec1b685e1c1c1909e30e8b3cf4493dc6eac786df8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b815e7b1a5f00b7cff7f2a68bb723f77
c944dc7284f4758dfebbd1b8ab4b7b327259f651
f1701c75e48206c4405afcd5a60ae3141ff4db9f811ec9ab4cdd9090af666f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.usersnap.com/widget-assets/js/entries/buttonV2/0ae59d2b769986388e49.js
143.204.55.117200 OK 212 kB URL HTTP/2 resources.usersnap.com/widget-assets/js/entries/buttonV2/0ae59d2b769986388e49.js
IP 143.204.55.117:0
File type Unicode text, UTF-8 text, with very long lines (63901)
Size 212 kB (212156 bytes)
Hash 9d5c77580c3bafcbd016ecaf4e6ffbb9
2580c9c67a3f77599ff41c05c8d75221259ba47c
b71d3b1ca9ab3043182ea110590e41c5f2a3194c096de82dd990d8228fac2d01
GET /widget-assets/js/entries/buttonV2/0ae59d2b769986388e49.js HTTP/1.1
Host: resources.usersnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 15 Dec 2022 10:06:00 GMT
last-modified: Thu, 15 Dec 2022 09:50:43 GMT
etag: W/"8ca5d95b678eb5d0aa3758842bfd08bd"
cache-control: public, max-age=2592000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eZmh4HNEY83Fj3khoaV8mNq0u1bVIm6AbAreHO-nWd2GMxc416qh7Q==
age: 1821168
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 561e959ce9eff04b09da6f3def82f549
7866f989cdfb160709f4c93b767fd01e5553d75b
9076b4ae1a34ab02b362ffa44ecbf6d579f82042cfd7e7138977477ea5bd3e61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C9G9ESJC77U5QKC6OJRG&lib=ttq
95.101.10.128200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C9G9ESJC77U5QKC6OJRG&lib=ttq
IP 95.101.10.128:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2307)
Hash 5c9bb00f2cb800acd6987f5a2454af6f
5516bd9808f436196f87dbddffb6e18f1a36d2a1
6e402670209920ef45f8828644d2af97cddd426eb68de7ac3423eb86f5eabde5
GET /i18n/pixel/events.js?sdkid=C9G9ESJC77U5QKC6OJRG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023010511584863AB0F71178410ED758C
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb614aaf58061e7e31aca0a3667efd5b7b3cbf357bd8ce8fdd82af8d5db99ca3a74c451cd7bf2204b84047077cfafdb7cc8aa177504da4e80f11ea44baa0b5993f418b0c6ad7b38576eb815d12d478cd0e16645a395b560a3fc9813eb08116fe677
content-encoding: gzip
content-length: 1141
x-origin-response-time: 5,23.34.240.148
x-akamai-request-id: 8e937bb6.45a4269d
expires: Thu, 05 Jan 2023 11:58:48 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 05 Jan 2023 11:58:48 GMT
x-cache: TCP_MISS from a95-101-10-124.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2JuFBtx7yt0M250CNEBMaIW4ROg; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-34-240-148.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=5, inner; dur=2
x-parent-response-time: 100,95.101.10.124
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b815e7b1a5f00b7cff7f2a68bb723f77
c944dc7284f4758dfebbd1b8ab4b7b327259f651
f1701c75e48206c4405afcd5a60ae3141ff4db9f811ec9ab4cdd9090af666f26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/static/main.MWI1MTgwZGZmMA.js
95.101.10.128200 OK 68 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWI1MTgwZGZmMA.js
IP 95.101.10.128:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21716)
Hash 75ee2fd291156e2832622fded1792855
369d84faf87723b6ac465d97f7366e31aebd6aee
d2fc1eac0d1d0775fc5f8c4133de3cdc29b23bfbc90a73bf4ed884cbfe529d89
GET /i18n/pixel/static/main.MWI1MTgwZGZmMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Cookie: _ttp=2JuFBtx7yt0M250CNEBMaIW4ROg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212201657267608A5E9F4861511C102
x-tt-trace-host: 0174209eab6deed09fed7ba820602a8f9dd4ca3726d5bfc9d82fd15f04e810a3c95b268479802a0cb91b232a29acb572422da2c28a019f05c7837b0e8da627a582ae16726813a4baecb224f17356e1ff1319ff3d0d55eef644d8e3291100ab1b9c
content-encoding: gzip
content-length: 67875
date: Thu, 05 Jan 2023 11:58:48 GMT
x-cache: TCP_HIT from a95-101-10-124.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=11
x-akamai-request-id: 45a4270d
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 561e959ce9eff04b09da6f3def82f549
7866f989cdfb160709f4c93b767fd01e5553d75b
9076b4ae1a34ab02b362ffa44ecbf6d579f82042cfd7e7138977477ea5bd3e61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=3BE8CB4F66FD609E1A67D9DF67086179; domain=.bing.com; expires=Tue, 30-Jan-2024 11:58:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D9A0DAD913D7436A9D045381DB14B728 Ref B: OSL30EDGE0120 Ref C: 2023-01-05T11:58:48Z
date: Thu, 05 Jan 2023 11:58:48 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 974e444c7b66a760e0fdec04b8bebb82
23d1de086afcfbdedbd5c60fcef69c88b840b448
458cf84b0a13820b027dfeafe101e87d2cc692fc998dc0347268df5afd816aca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6cdf191deb0e291350d9d91d9ab97a7
fb82c911866268a7d33d2743dbe0328199c7121a
414acc6f6d050d52d88f9706e71d6a0e3eceb4dc41edcce74ec63eb63d8fb1cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8014ea74946aee77ef2f3b9a264be553
fda85fc27ac2f811e543c11436cf5623cbd46bb2
271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 05 Jan 2023 11:01:06 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9r7NXGfhmuh58HQKef9G0WPbDbel1-43lz3zM5V_m6XO5CMp2ttrgA==
Age: 3463
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 974e444c7b66a760e0fdec04b8bebb82
23d1de086afcfbdedbd5c60fcef69c88b840b448
458cf84b0a13820b027dfeafe101e87d2cc692fc998dc0347268df5afd816aca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/833799455/?random=1672919918025&cv=11&fst=1672916400000&bg=ffffff&guid=ON&async=1>m=2oa120&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&tiba=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2313958404&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_13839.js
95.101.10.128200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_13839.js
IP 95.101.10.128:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash bdbe45678ce11238207e20b501d7b7c4
2a061a285a8a0c205f334329b2e56ebac6cf8895
49f5403b6ec67d55d6825fe3b68bb6800d626624874bd6adb7559c7062687258
GET /i18n/pixel/static/identify_13839.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Cookie: _ttp=2JuFBtx7yt0M250CNEBMaIW4ROg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212201657267608A5E9F4861511C10A
x-tt-trace-host: 0174209eab6deed09fed7ba820602a8f9dd4ca3726d5bfc9d82fd15f04e810a3c95b268479802a0cb91b232a29acb572422da2c28a019f05c7837b0e8da627a5828908ac44ad85c1662c88a539afbc6cc508efccb60b9ffdce113a9e9e4acf0ab9
content-encoding: gzip
content-length: 30900
date: Thu, 05 Jan 2023 11:58:48 GMT
x-cache: TCP_MEM_HIT from a95-101-10-124.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 45a4278c
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1&z=916758662
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1&z=916758662
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1&z=916758662 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.go-mpulse.net/api/config.json?key=HD79Z-86RRK-D62SL-R5XLG-WLWAE&d=www.hawaiianairlines.com&t=5576400&v=1.737.0&if=&sl=0&si=3e19d62d-bcb4-4204-902e-786917531336-ro0h9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=160547
23.38.200.138200 OK 1.5 kB URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=HD79Z-86RRK-D62SL-R5XLG-WLWAE&d=www.hawaiianairlines.com&t=5576400&v=1.737.0&if=&sl=0&si=3e19d62d-bcb4-4204-902e-786917531336-ro0h9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=160547
IP 23.38.200.138:0
File type JSON data\012- , ASCII text, with very long lines (4935), with no line terminators
Hash db9fb8b21209d6811bb3272fc12835dd
16af4213a6ac2150f224f49cc0f33b23155e5e43
8f9d2043137ce5b3eca6870c7c9945f83ce6a8fdb0cea7a4bbeb400dc3d1bc13
GET /api/config.json?key=HD79Z-86RRK-D62SL-R5XLG-WLWAE&d=www.hawaiianairlines.com&t=5576400&v=1.737.0&if=&sl=0&si=3e19d62d-bcb4-4204-902e-786917531336-ro0h9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=160547 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=300, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 05 Jan 2023 11:58:48 GMT
Content-Length: 1456
Connection: keep-alive
Content-Type: application/json
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5dcd3e3f6440384500af24c809a3f175
3a5df7e2369c9d65865d73410b0cac87e1b5a54c
b7c5a41dbd443dcb04231372b9ac63a3853d57e43941af5b22073693291099df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5dcd3e3f6440384500af24c809a3f175
3a5df7e2369c9d65865d73410b0cac87e1b5a54c
b7c5a41dbd443dcb04231372b9ac63a3853d57e43941af5b22073693291099df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 974e444c7b66a760e0fdec04b8bebb82
23d1de086afcfbdedbd5c60fcef69c88b840b448
458cf84b0a13820b027dfeafe101e87d2cc692fc998dc0347268df5afd816aca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCfe09e279e2234e1d8033a084b06dc12a-source.min.js
23.38.200.237200 OK 414 B URL HTTP/2 assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCfe09e279e2234e1d8033a084b06dc12a-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (497)
Hash b329ba68beed47add566f115abb05274
e5bd7f9ffe49a0d575fd84cc9dc688d15459c076
17988874b452b24085bcd2953abcdfb2aa58dc189afaa569604059b615b26cb2
GET /e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCfe09e279e2234e1d8033a084b06dc12a-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "a7165b386bb96e24fc44b2ef223abffb:1672873254.166469"
last-modified: Wed, 04 Jan 2023 23:00:54 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 414
cache-control: max-age=3600
expires: Thu, 05 Jan 2023 12:58:48 GMT
date: Thu, 05 Jan 2023 11:58:48 GMT
access-control-allow-origin: https://www.hawaiianairlines.com
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7c8811382bcd40ec65e7a6e339e94904
38d741442c52bcdde863d1a2d593ce0c81c7efbd
ce5c1060c028784381224586783b9b0943fd14947bb15bb38e6d401a1a221c23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
142.250.74.35200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 01 Jan 2023 01:47:02 GMT
expires: Mon, 01 Jan 2024 01:47:02 GMT
cache-control: public, max-age=31536000
age: 382306
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5dcd3e3f6440384500af24c809a3f175
3a5df7e2369c9d65865d73410b0cac87e1b5a54c
b7c5a41dbd443dcb04231372b9ac63a3853d57e43941af5b22073693291099df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure-ds.serving-sys.com/SemiCachedScripts/ebOneTag.js?id=4554
95.101.10.24200 OK 76 kB URL HTTP/2 secure-ds.serving-sys.com/SemiCachedScripts/ebOneTag.js?id=4554
IP 95.101.10.24:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash f1a4e674158b6b0ef75f5ba312c64b88
35bd40e91b1ff719e57be5b13f7f7a9007bbd799
e7473c9f2a9669a45104b31ad19fc9c8570a8c0b710112402275fd686fda81c3
GET /SemiCachedScripts/ebOneTag.js?id=4554 HTTP/1.1
Host: secure-ds.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 76452
vary: Accept-Encoding
x-amz-id-2: IJNHFrG7Pn0xxTOOMJNT6is3Dbj5p8whPYdJhdkTD7QwovQrVhsi83ntwJjvms14VDl5sk4uEPE=
x-amz-request-id: 8D3CH7SDW7180ESV
last-modified: Sun, 18 Dec 2022 11:30:40 GMT
etag: "f1a4e674158b6b0ef75f5ba312c64b88"
server: AmazonS3
x-amz-cf-pop: EWR52-C1
x-amz-cf-id: lrEJvxTqCmI0PX0HPxWWBKg7wk01Cj-cb_aQOjfMXrMgmWIY5KL9ug==
date: Thu, 05 Jan 2023 11:58:48 GMT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&kw=Keywords&p=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&r=<=3209&evt=pageLoad&sv=1&rn=28763
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&kw=Keywords&p=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&r=<=3209&evt=pageLoad&sv=1&rn=28763
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&kw=Keywords&p=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&r=<=3209&evt=pageLoad&sv=1&rn=28763 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0D60C9562BD961D229F8DBC62A2C60CA; domain=.bing.com; expires=Tue, 30-Jan-2024 11:58:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1A2483FFE05E4411834385871C66FE08 Ref B: OSL30EDGE0120 Ref C: 2023-01-05T11:58:48Z
date: Thu, 05 Jan 2023 11:58:48 GMT
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
95.101.10.128200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 95.101.10.128:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 776
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Cookie: _ttp=2JuFBtx7yt0M250CNEBMaIW4ROg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202301051158485BB9A732759028726227
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb614aaf58061e7e31aca0a3667efd5b7b3689bf07d08aaa9141171cba9c56e1a18bf45026e39294680ad9453ddff7860ca4507498f0857f3b02285abba0c73100a6a00b53e49cdd6422065a2161115593d5b35f2d2bec197e5683b9cc8c5209e5b
x-origin-response-time: 125,23.34.240.157
x-akamai-request-id: 2196177a.45a42795
expires: Thu, 05 Jan 2023 11:58:48 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 05 Jan 2023 11:58:48 GMT
x-cache: TCP_MISS from a95-101-10-124.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-34-240-157.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=125, inner; dur=121
x-parent-response-time: 216,95.101.10.124
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=224287958426268&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918338&sw=1280&sh=1024&v=2.9.90&r=stable&a=adobe_launch&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=224287958426268&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918338&sw=1280&sh=1024&v=2.9.90&r=stable&a=adobe_launch&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=224287958426268&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918338&sw=1280&sh=1024&v=2.9.90&r=stable&a=adobe_launch&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 05 Jan 2023 11:58:48 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=709027196823229&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918341&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=709027196823229&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918341&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=709027196823229&ev=PageView&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&rl=&if=false&ts=1672919918341&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1672919918338.655571797&it=1672919917285&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 05 Jan 2023 11:58:48 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/5857748.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5857748.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5857748.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=16C53AE978496FA22E4C287979BC6E88; domain=.bing.com; expires=Tue, 30-Jan-2024 11:58:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3934BF1436CD4A829B10A617EA099BA4 Ref B: OSL30EDGE0120 Ref C: 2023-01-05T11:58:48Z
date: Thu, 05 Jan 2023 11:58:48 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
2.18.172.195200 OK 1.1 kB IP 2.18.172.195:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 8d9d0550c915347e312e24f00d311e50
cb44712b22cb011b759da4e741b543238839c735
57d73d188a6162bec272876156addbd7b02a2c6941c45653b8d3453e998e0b5b
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "8d9d0550c915347e312e24f00d311e50"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
sqvqql5w.micpn.com/p/cp/-1/track.gif?t=1672919918521&mi_u=anon-1672919918520-8540378867&mi_cid=7075&page_title=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&event_type=pageview&cdate=1672919918520&ck=false&anon=true
143.204.55.33200 OK 42 B URL HTTP/2 sqvqql5w.micpn.com/p/cp/-1/track.gif?t=1672919918521&mi_u=anon-1672919918520-8540378867&mi_cid=7075&page_title=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&event_type=pageview&cdate=1672919918520&ck=false&anon=true
IP 143.204.55.33:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /p/cp/-1/track.gif?t=1672919918521&mi_u=anon-1672919918520-8540378867&mi_cid=7075&page_title=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&event_type=pageview&cdate=1672919918520&ck=false&anon=true HTTP/1.1
Host: sqvqql5w.micpn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 42
x-uuid: d6eaefab-4186-474b-9b71-ec0b9f02f973
pragma: no-cache
access-control-expose-headers: X-Error
access-control-allow-origin: https://app.movableink.com
cache-control: no-store, no-cache, must-revalidate, max-age=0,post-check=0, pre-check=0
set-cookie: _mibhv=anon-1672919918520-8540378867_7075; Expires=Fri, 05 Jan 2024 11:58:48 GMT; Path=/; HttpOnly; Secure; SameSite=None;
_midat=; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Path=/; HttpOnly; Secure; SameSite=None;
date: Thu, 05 Jan 2023 11:58:48 GMT
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0bCrZzJ8kJEobw2rLBvL7vjf9dvFQ-6OUehYboq9ucijrDlEQ4dqYQ==
X-Firefox-Spdy: h2
secure-ds.serving-sys.com/adServingData/PROD/TMClient/4/4554
95.101.10.24200 OK 881 B URL HTTP/2 secure-ds.serving-sys.com/adServingData/PROD/TMClient/4/4554
IP 95.101.10.24:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (4842), with no line terminators
Hash 16173b2d54a650f6ef8bfafa72976e94
a4fb712101d9475a2263d5788a8f56eb54f7f75a
80017e3d5a6c94ccfab058e6faf687ecd2fd4e80aadbc9de9404f1c745e15efc
GET /adServingData/PROD/TMClient/4/4554 HTTP/1.1
Host: secure-ds.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 23 Nov 2022 21:12:15 GMT
etag: "563f52e5760fceefd7d07385fbc9c381"
x-amz-version-id: wvXAyoB1N.6Zh_Ck.DBMtr30r5SIj4H8
server: AmazonS3
x-amz-cf-pop: EWR52-C1
x-amz-cf-id: CRenh_3sBKOTBhznrlCIAYHFClOn_eoLbuM36jpOOSYUiyi5sXWydw==
vary: Accept-Encoding
content-encoding: gzip
content-length: 881
cache-control: max-age=164
date: Thu, 05 Jan 2023 11:58:48 GMT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.9a94ee76.js
2.18.172.195200 OK 21 kB URL HTTP/2 s.pinimg.com/ct/lib/main.9a94ee76.js
IP 2.18.172.195:0
File type Unicode text, UTF-8 text, with very long lines (59858), with no line terminators
Hash e43867aadc515024dd460d8611098a12
c4fd1b2ace2f8a96a38e4b4996be8d7c46fdfd3f
76d528cb411bf6ff7fd77619aa507bec3bdf7f02063add1d9fe9009088f78d98
GET /ct/lib/main.9a94ee76.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e43867aadc515024dd460d8611098a12"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 20728
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-99R6ZJ9CBT>m=2oebu0&_p=2094050515&_gaz=1&cid=872285212.1672919918&ul=en-us&sr=1280x1024&_s=1&sid=1672919918&sct=1&seg=0&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&dt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-99R6ZJ9CBT>m=2oebu0&_p=2094050515&_gaz=1&cid=872285212.1672919918&ul=en-us&sr=1280x1024&_s=1&sid=1672919918&sct=1&seg=0&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&dt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-99R6ZJ9CBT>m=2oebu0&_p=2094050515&_gaz=1&cid=872285212.1672919918&ul=en-us&sr=1280x1024&_s=1&sid=1672919918&sct=1&seg=0&dl=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&dt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.hawaiianairlines.com
date: Thu, 05 Jan 2023 11:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1
173.194.222.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1
IP 173.194.222.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-99R6ZJ9CBT&cid=872285212.1672919918>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.hawaiianairlines.com
date: Thu, 05 Jan 2023 11:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCe8c972fec6ff47858160c4d791635592-source.min.js
23.38.200.237200 OK 490 B URL HTTP/2 assets.adobedtm.com/e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCe8c972fec6ff47858160c4d791635592-source.min.js
IP 23.38.200.237:0
File type HTML document, ASCII text, with very long lines (659)
Hash f103f3a013f41b6b429773eee85ff065
6dfa747bbe37d171f06c39c6ef37fa74d64e28d5
84de6e78aa86a4ba485ec723d8447d30f7133c43e3abc3add81aa97148ef98e2
GET /e272d7f0f44e/c03cc471b6a8/7063e5d987cb/RCe8c972fec6ff47858160c4d791635592-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "a7165b386bb96e24fc44b2ef223abffb:1672873254.166469"
last-modified: Wed, 04 Jan 2023 23:00:54 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 490
cache-control: max-age=3600
expires: Thu, 05 Jan 2023 12:58:49 GMT
date: Thu, 05 Jan 2023 11:58:49 GMT
access-control-allow-origin: https://www.hawaiianairlines.com
timing-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Styles/css/dist/print-ha.22.12.16.131997-pr.min.css
96.6.16.96200 OK 2.3 kB URL HTTP/2 css.s-hawaiianairlines.com/Styles/css/dist/print-ha.22.12.16.131997-pr.min.css
IP 96.6.16.96:0
File type ASCII text, with very long lines (13279), with no line terminators
Hash 04e523f6582f79a1dd40f47e0ce140cc
2e94e02cd727bb9fdd879ab24787cba19bf9dbdb
a261832ac43f1ecc4248eec94506e5da0d12a53d15b2b2425f27c6f94fcde966
GET /Styles/css/dist/print-ha.22.12.16.131997-pr.min.css HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 19 Dec 2022 06:27:34 GMT
accept-ranges: bytes
etag: "91cb4dfb7213d91:0"
content-encoding: gzip
content-length: 2275
cache-control: private, max-age=86
expires: Thu, 05 Jan 2023 12:00:15 GMT
date: Thu, 05 Jan 2023 11:58:49 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/bundles/1.2/metrics
96.6.16.96200 OK 19 kB URL HTTP/2 js.s-hawaiianairlines.com/bundles/1.2/metrics
IP 96.6.16.96:0
File type ASCII text, with very long lines (58936), with no line terminators
Hash ca199558f7d29ce1a1af59395371882c
9425e55e3d7d7550d27937c60294308aa707b909
6cd72c8e49282fb60eb7a610abdbd6e259dd647c11cb4ceefa3d8908b1f931c9
GET /bundles/1.2/metrics HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Sun, 01 Jan 2023 09:47:09 GMT
content-encoding: gzip
content-length: 18688
cache-control: public, max-age=251340
expires: Sun, 08 Jan 2023 09:47:49 GMT
date: Thu, 05 Jan 2023 11:58:49 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918848&dep=5%2CEVENT_TAGS_ABSENT
151.101.0.84200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918848&dep=5%2CEVENT_TAGS_ABSENT
IP 151.101.0.84:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918848&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVkyVmtNMkprTXpNdFpXTmxPQzAwT1RneExXSmhPVFl0TjJJMU1EZzFNV05sTlRndw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.hawaiianairlines.com
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 7427637275562395
date: Thu, 05 Jan 2023 11:58:49 GMT
x-cdn: fastly
content-length: 375
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918842&dep=2%2CPAGE_LOAD
151.101.0.84200 OK 375 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918842&dep=2%2CPAGE_LOAD
IP 151.101.0.84:0
File type JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Hash f23754c0cabb23c00d00ec7cd0708b27
8b2826c766d44ba22ab77c66ba8b3389e3c1d482
1a26de1b3b0d3dbc8d54d94feeeb6ac92d05fbbe3132e2a2167caec156ac7796
GET /user/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919918842&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqSmxZMlZoTWpJdFlUUTFZeTAwWm1KaUxUaGtPRGN0Tnprd1pUUXpOamM1TVdZeQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.hawaiianairlines.com
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1151031449308092
date: Thu, 05 Jan 2023 11:58:49 GMT
x-cdn: fastly
content-length: 375
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb0c58022889f57d33555e520bfba419
9b34e16d1c1b4513218f207fe9ed1c436faf0317
8fcabcc2f4922e0d67bf857824d18c7b649675a0a97221d1663e0c07604a9a1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5539
Cache-Control: max-age=132744
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Etag: "63b6095e-138"
Expires: Sat, 07 Jan 2023 00:51:13 GMT
Last-Modified: Wed, 04 Jan 2023 23:18:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 185898133560aed59c0d5684e307e839
12fe0c30c1192766421ea94874fb732bee015d80
4fbc5aefaccc28bee060ce0b87ce516f361dff15d9afeee3fbaf3022e180109a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2648
Cache-Control: max-age=109348
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Etag: "63b5b945-1d7"
Expires: Fri, 06 Jan 2023 18:21:17 GMT
Last-Modified: Wed, 04 Jan 2023 17:37:09 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
hawaiianairlines.sc.omtrdc.net/id?d_visid_ver=5.2.0&d_fieldgroup=A&mcorgid=5E29123F5245B2B70A490D45%40AdobeOrg&mid=16779723376320019711625366484296595481&ts=1672919918866
15.236.176.210200 OK 2 B URL HTTP/2 hawaiianairlines.sc.omtrdc.net/id?d_visid_ver=5.2.0&d_fieldgroup=A&mcorgid=5E29123F5245B2B70A490D45%40AdobeOrg&mid=16779723376320019711625366484296595481&ts=1672919918866
IP 15.236.176.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /id?d_visid_ver=5.2.0&d_fieldgroup=A&mcorgid=5E29123F5245B2B70A490D45%40AdobeOrg&mid=16779723376320019711625366484296595481&ts=1672919918866 HTTP/1.1
Host: hawaiianairlines.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.hawaiianairlines.com
access-control-allow-credentials: true
date: Thu, 05 Jan 2023 11:58:49 GMT
p3p: CP="This is not a P3P policy"
server: jag
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 2
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
js.s-hawaiianairlines.com/sitecoreresources/header?sc_lang=en
96.6.16.96200 OK 1.8 kB URL HTTP/2 js.s-hawaiianairlines.com/sitecoreresources/header?sc_lang=en
IP 96.6.16.96:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (4017), with no line terminators
Hash b653459544648cf3968cc1850cdceb95
df6fbbc9678e13ee8b7e046f771ebf065c5a9029
363027672a9f3e52d6b69ff5c3707b9f599dc3c212bf6d29b0fccfb9e8556b57
GET /sitecoreresources/header?sc_lang=en HTTP/1.1
Host: js.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
pragma: no-cache
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 1813
cache-control: max-age=1770
expires: Thu, 05 Jan 2023 12:28:19 GMT
date: Thu, 05 Jan 2023 11:58:49 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.s-hawaiianairlines.com/Styles/css/dist/~/media/Images/Logos/HA/hawaiian-miles.svg
96.6.16.96200 OK 3.3 kB URL HTTP/2 css.s-hawaiianairlines.com/Styles/css/dist/~/media/Images/Logos/HA/hawaiian-miles.svg
IP 96.6.16.96:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1638)
Hash 3329244b54e89632e0bb1906b74ccb9f
7b4fc4ae04ab35d19af01e1ee5f4d3cec791c057
f4335b59333bf3d387074b39cf57c9f8ff988a32be986472a7c2c1d9bdbd31cf
GET /Styles/css/dist/~/media/Images/Logos/HA/hawaiian-miles.svg HTTP/1.1
Host: css.s-hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.s-hawaiianairlines.com/Styles/css/dist/global.22.12.16.131997-pr.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 21 Oct 2021 19:17:40 GMT
etag: a17274a09091416b86b8a88351060088
content-encoding: gzip
content-length: 3330
cache-control: public, max-age=465706
expires: Tue, 10 Jan 2023 21:20:35 GMT
date: Thu, 05 Jan 2023 11:58:49 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
hawaiianairlinesinc.demdex.net/dest5.html?d_nsid=0
34.247.240.197200 OK 2.8 kB URL HTTP/1.1 hawaiianairlinesinc.demdex.net/dest5.html?d_nsid=0
IP 34.247.240.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: hawaiianairlinesinc.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 5 Jan 2023 11:58:49 GMT
DCS: dcs-prod-irl1-1-v045-0d492e21d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:02:57 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: IIBrkhuBTes=
Content-Length: 2791
Connection: keep-alive
hawaiianairlines.tt.omtrdc.net/rest/v1/delivery?client=hawaiianairlines&sessionId=d4f716d26a7048fa825f772d2d0b0949&version=2.2.0
176.34.231.147200 OK 16 kB URL HTTP/2 hawaiianairlines.tt.omtrdc.net/rest/v1/delivery?client=hawaiianairlines&sessionId=d4f716d26a7048fa825f772d2d0b0949&version=2.2.0
IP 176.34.231.147:0
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (36786)
Hash cadd26a617a34b9fa338f241b2bd1f52
fb47c8fb986eed1d822fda02f4023375a4792adb
1913c3cbc0ce75ce4769b1175e3cd1975060e8e968c867f2ad94539037f955b4
POST /rest/v1/delivery?client=hawaiianairlines&sessionId=d4f716d26a7048fa825f772d2d0b0949&version=2.2.0 HTTP/1.1
Host: hawaiianairlines.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1265
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:49 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.hawaiianairlines.com
access-control-allow-credentials: true
x-request-id: 964b4b1a2a754e1357937bbeb5eda44d
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
151.101.0.84200 OK 323 B IP 151.101.0.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 8170663289802445
date: Thu, 05 Jan 2023 11:58:49 GMT
x-cdn: fastly
content-length: 323
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919919198&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPVlqSmxZMlZoTWpJdFlUUTFZeTAwWm1KaUxUaGtPRGN0Tnprd1pUUXpOamM1TVdZeQ%22%2C%22aem_eligible_list%22%3A%5B%22ph%22%2C%22country%22%5D%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
151.101.0.84200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919919198&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPVlqSmxZMlZoTWpJdFlUUTFZeTAwWm1KaUxUaGtPRGN0Tnprd1pUUXpOamM1TVdZeQ%22%2C%22aem_eligible_list%22%3A%5B%22ph%22%2C%22country%22%5D%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 151.101.0.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22currency%22%3A%22USD%22%7D&tid=2614302966321&cb=1672919919198&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPVlqSmxZMlZoTWpJdFlUUTFZeTAwWm1KaUxUaGtPRGN0Tnprd1pUUXpOamM1TVdZeQ%22%2C%22aem_eligible_list%22%3A%5B%22ph%22%2C%22country%22%5D%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
set-cookie: _pinterest_ct_ua="TWc9PSZBeVZQSnI3cGNUV3EvZi83MFRrdnpiWWR0SmJSYWMydEpwbzByUFFrYk1KeStyZzFCalBkSThQT0swcnM1MkliZWFmSzQyTloxc0duN3NIVGMxbnF0SnJkeFQxb1BvMlR4cW91aGtZNDdGcz0mdTVoRklTR1hHOE1YWmJ5eUJ3TE5KL0trMWFjPQ=="; Expires=Fri, 05 Jan 2024 11:58:49 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1247060417775794
date: Thu, 05 Jan 2023 11:58:49 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash ce28c785540dbf988635dcc6caf03651
2f619e54c3fb5856d9cbe35477926818bcef3b36
9b1610d2db825e3c008b23f297749463607452da9c946cccafdab48470a37548
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.pdst.fm/ping.min.js
35.244.142.80200 OK 5.8 kB IP 35.244.142.80:0
File type ASCII text, with very long lines (26948), with no line terminators
Hash d001d1c9f5a942fa5524eeacb047e819
6ebc303d4e3fe71192400673808f37ce1c6a1d25
63882c75983a011c7ae5041061a95babb9e67fa508b0628e1c00f455ccd40b0a
GET /ping.min.js HTTP/1.1
Host: cdn.pdst.fm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvWfvYzcY0QvZ0vfw0ai3vGTF1G2ToteVC3yBhJPTBlmTz0MIu0KNYhs7Cto8h37tdM3NXjSEmotz88HZLT8zr9
x-goog-generation: 1622234043862937
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5774
content-encoding: gzip
x-goog-hash: crc32c=oKoi/w==, md5=0AHRyfWpQvpVJO6ssEfoGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 5774
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 05 Jan 2023 11:49:09 GMT
expires: Thu, 05 Jan 2023 12:49:09 GMT
cache-control: public, max-age=3600
age: 580
last-modified: Fri, 28 May 2021 20:34:03 GMT
etag: "d001d1c9f5a942fa5524eeacb047e819"
content-type: application/javascript;
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash ce28c785540dbf988635dcc6caf03651
2f619e54c3fb5856d9cbe35477926818bcef3b36
9b1610d2db825e3c008b23f297749463607452da9c946cccafdab48470a37548
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 621adc7ad4c9b1aa36c5cc6da3c0d20a
6e41b9be1c67b65b7e8fd68be4026c0133357077
62d1aaec201003c562274189e71206d4e53df7bdd4ccfbd8a9e0f3059fd498ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5786
Cache-Control: max-age=130123
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Etag: "63b5fe2a-1d7"
Expires: Sat, 07 Jan 2023 00:07:32 GMT
Last-Modified: Wed, 04 Jan 2023 22:31:06 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
hawaiianairlines.sc.omtrdc.net/b/ss/haglobalprod,hausprod/10/JS-1.8.0-LCXS/s95066067428838?AQB=1&ndh=1&pf=1&callback=s_c_il[4].doPostbacks&et=1&t=5%2F0%2F2023%2011%3A58%3A39%204%200&d.&nsid=0&jsonv=1&.d&sdid=5893C73218381909-72346DD45B55103F&mid=16779723376320019711625366484296595481&aamlh=6&ce=UTF-8&ns=hawaiianairlines.sc.omtrdc.net&pageName=ha%3Aus%3Acovid-test-options%3A&g=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&cc=USD&server=902530-CDS20&events=undefined%2Cevent121&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=ha%3Aus%3Acovid-test-options%3A&v1=ha%3Aus%3Acovid-test-options%3A&c2=New&v2=New&c3=First%20page%20view%20or%20cookies%20not%20supported&v3=First%20page%20view%20or%20cookies%20not%20supported&c37=HA_US_PROD&v180=initialPercentViewed%20%3D23&v200=Launch%20Build&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210200 OK 3.0 kB URL HTTP/2 hawaiianairlines.sc.omtrdc.net/b/ss/haglobalprod,hausprod/10/JS-1.8.0-LCXS/s95066067428838?AQB=1&ndh=1&pf=1&callback=s_c_il[4].doPostbacks&et=1&t=5%2F0%2F2023%2011%3A58%3A39%204%200&d.&nsid=0&jsonv=1&.d&sdid=5893C73218381909-72346DD45B55103F&mid=16779723376320019711625366484296595481&aamlh=6&ce=UTF-8&ns=hawaiianairlines.sc.omtrdc.net&pageName=ha%3Aus%3Acovid-test-options%3A&g=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&cc=USD&server=902530-CDS20&events=undefined%2Cevent121&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=ha%3Aus%3Acovid-test-options%3A&v1=ha%3Aus%3Acovid-test-options%3A&c2=New&v2=New&c3=First%20page%20view%20or%20cookies%20not%20supported&v3=First%20page%20view%20or%20cookies%20not%20supported&c37=HA_US_PROD&v180=initialPercentViewed%20%3D23&v200=Launch%20Build&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
File type ASCII text, with very long lines (2957)
Hash 7d820405165c58e891d9edec8ff7d2b5
bf7737dd3acb46de2459a7f5a7da476dba1c6985
f65445ccc549f5206a33578b2c768c3a179541c4a1a5f6b0ab71d16ef785f879
GET /b/ss/haglobalprod,hausprod/10/JS-1.8.0-LCXS/s95066067428838?AQB=1&ndh=1&pf=1&callback=s_c_il[4].doPostbacks&et=1&t=5%2F0%2F2023%2011%3A58%3A39%204%200&d.&nsid=0&jsonv=1&.d&sdid=5893C73218381909-72346DD45B55103F&mid=16779723376320019711625366484296595481&aamlh=6&ce=UTF-8&ns=hawaiianairlines.sc.omtrdc.net&pageName=ha%3Aus%3Acovid-test-options%3A&g=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&cc=USD&server=902530-CDS20&events=undefined%2Cevent121&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=ha%3Aus%3Acovid-test-options%3A&v1=ha%3Aus%3Acovid-test-options%3A&c2=New&v2=New&c3=First%20page%20view%20or%20cookies%20not%20supported&v3=First%20page%20view%20or%20cookies%20not%20supported&c37=HA_US_PROD&v180=initialPercentViewed%20%3D23&v200=Launch%20Build&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: hawaiianairlines.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 05 Jan 2023 11:58:49 GMT
expires: Wed, 04 Jan 2023 11:58:49 GMT
last-modified: Fri, 06 Jan 2023 11:58:49 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3592568193472462848-4619665470689447915
vary: *
dcs: dcs-prod-irl1-2-v045-0ebeee8d5.edge-irl1.demdex.com 4 ms
x-aam-tid: d8glaQcqROQ=
content-type: application/x-javascript;charset=utf-8
content-length: 2958
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 9e7a873bab219c26e7c1996b7b6a2bd4
d6bbaf9f2885c491d4dd37bba2de42fcf423ff50
d6eaf63c5e1abbc355bd243a9409d3939b4b97b7ee59237fb1431d2fe6ba9053
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100105
Date: Thu, 05 Jan 2023 11:58:49 GMT
Etag: "63b5869e-1d7"
Expires: Fri, 06 Jan 2023 15:47:14 GMT
Last-Modified: Wed, 04 Jan 2023 14:01:02 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r9saWZc36YQmyJS5d1C8Zyb8JONCoEx5UmzCdjZpKwzV1vEKXd89zA==
Age: 6372
cm.everesttech.net/cm/dd?d_uuid=20330729008358535162157718794676798310
46.137.71.247302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=20330729008358535162157718794676798310
IP 46.137.71.247:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=20330729008358535162157718794676798310 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 05 Jan 2023 11:58:49 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y7a7eQAAAOJokwOY; Domain=.everesttech.net; Expires=Fri, 05-Jan-2024 11:58:49 GMT; Path=/
everest_session_v2=Y7a7eQAAAOJolAOY; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
Server: AMO-cookiemap/1.1
dpm.demdex.net/ibs:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
54.75.234.63302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
IP 54.75.234.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y7a7eQAAAOJokwOY HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0ba8f5f7e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=59970985107457514141330978024799278939; Max-Age=15552000; Expires=Tue, 04 Jul 2023 11:58:49 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: WbZDYTFpRoA=
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 7f3094d6d935bdcf905ceccc37f94e95
36436590283df82515d1dd18cc9c0a4a5928a9f9
f5012247e34aea9f10393aefe41ac82f06f07e16d7e8182e13cfc3dfa7d46d5c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 05 Jan 2023 11:58:49 GMT
Last-Modified: Thu, 05 Jan 2023 11:38:55 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uH89_Oj-lH_udeLC3le3AlhDfVs68FvosVo_SXAcDtdIGSPD-ctAvw==
Age: 1194
bs.serving-sys.com/Serving?cn=ot&onetagid=4554&dispType=js&sync=0&sessionid=5436016191418119271&pageurl=$$https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F$$&activityValues=$$Session%3D2513044482588831915$$&ns=0&rnd=9057255713153486&uinadv=%7B%7D&ccpastatus=1
35.158.167.198200 OK 2.5 kB URL HTTP/2 bs.serving-sys.com/Serving?cn=ot&onetagid=4554&dispType=js&sync=0&sessionid=5436016191418119271&pageurl=$$https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F$$&activityValues=$$Session%3D2513044482588831915$$&ns=0&rnd=9057255713153486&uinadv=%7B%7D&ccpastatus=1
IP 35.158.167.198:0
File type ASCII text, with very long lines (9067), with no line terminators
Hash b6fac4746c25be862c3513b71bbd5ddc
e95c0941510e23c12f87f63813f5b130486aa278
d19a4acf8354242c4ea94c0ce8040b58f806da19c90da9e3aa90e0d61c47b4c1
GET /Serving?cn=ot&onetagid=4554&dispType=js&sync=0&sessionid=5436016191418119271&pageurl=$$https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F$$&activityValues=$$Session%3D2513044482588831915$$&ns=0&rnd=9057255713153486&uinadv=%7B%7D&ccpastatus=1 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:49 GMT
content-type: text/html; charset=UTF-8
content-length: 2489
cache-control: no-cache, no-store
pragma: no-cache
content-encoding: gzip
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: OT_4554=1; SameSite=None; Secure
ActivityInfo2=004Ye8CNd0_004Ye9CNd0_004YeaCNd0_003h7uCNd0_; expires=Wed, 05-Apr-2023 11:58:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
G4=1waGsF00JK_; expires=Wed, 05-Apr-2023 11:58:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
OT2=00017a1rSb; expires=Wed, 05-Apr-2023 11:58:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
eyeblaster=; expires=Mon, 01-Jan-2000 00:00:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
u2=5c346518-d76f-4a2e-969f-ee7573160f364Ky060; expires=Wed, 05-Apr-2023 11:58:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-origin: *
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
54.75.234.63200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y7a7eQAAAOJokwOY
IP 54.75.234.63:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y7a7eQAAAOJokwOY HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0cfa310b8.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 58hfafCpRNU=
Content-Length: 59
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7c355a5c55c000699f713eea41660b3e
d15f8730b71760e4cfe16fa9bbc83a6744a00002
b1f7709177dda965bf265830d9688fb07ac6bf8f89a46106506912afc760b0ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e81be3ac73ee94017abeb37daa1efe1f
d01deb21155cf0714e051db8d4510a7d8214fb98
7d207f7d016423a35859d1c23d879674db36fece437f8f3c6a535a6f43d61ae3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 04 Jan 2023 03:43:24 GMT
Expires: Wed, 11 Jan 2023 03:43:23 GMT
Etag: "d01deb21155cf0714e051db8d4510a7d8214fb98"
Cache-Control: max-age=488073,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b590e63b527-OSL
insight.adsrvr.org/track/up?adv=ghgp48d&ref=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&upid=ekq4gvm&upv=1.1.0
52.223.40.198200 OK 42 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ghgp48d&ref=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&upid=ekq4gvm&upv=1.1.0
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /track/up?adv=ghgp48d&ref=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&upid=ekq4gvm&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:49 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion.js
172.217.21.162200 OK 20 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 172.217.21.162:0
File type ASCII text, with very long lines (2780)
Hash a1d4bbc5e452a3e84aeccaa53c7b0dc8
8d9965091a91476cbbbcb1e16d9570b7ee3b702d
21b95705b7ced13ede1d49bc4da2e33ee2697ad9ab509022ea789ee6e9eb35af
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 05 Jan 2023 11:58:49 GMT
expires: Thu, 05 Jan 2023 11:58:49 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16198759793823257061
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 19505
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bam.nr-data.net/1/24f99e0f02?a=36090226,36090227,36090228&v=1216.487a282&to=Y1VSNkJSWRUEAk1eX1offTRzHGQPEQRaWEJRc18MREFYCgkESxh5WlRVGg%3D%3D&rst=5362&ck=1&ref=https://www.hawaiianairlines.com/covid-test-options/&ap=217&be=1023&fe=4896&dc=2817&perf=%7B%22timing%22:%7B%22of%22:1672919913957,%22n%22:0,%22f%22:431,%22dn%22:455,%22dne%22:457,%22c%22:457,%22s%22:462,%22ce%22:506,%22rq%22:506,%22rp%22:967,%22rpe%22:969,%22dl%22:1007,%22di%22:2526,%22ds%22:2817,%22de%22:3209,%22dc%22:4895,%22l%22:4895,%22le%22:4903%7D,%22navigation%22:%7B%7D%7D&fcp=2813&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/24f99e0f02?a=36090226,36090227,36090228&v=1216.487a282&to=Y1VSNkJSWRUEAk1eX1offTRzHGQPEQRaWEJRc18MREFYCgkESxh5WlRVGg%3D%3D&rst=5362&ck=1&ref=https://www.hawaiianairlines.com/covid-test-options/&ap=217&be=1023&fe=4896&dc=2817&perf=%7B%22timing%22:%7B%22of%22:1672919913957,%22n%22:0,%22f%22:431,%22dn%22:455,%22dne%22:457,%22c%22:457,%22s%22:462,%22ce%22:506,%22rq%22:506,%22rp%22:967,%22rpe%22:969,%22dl%22:1007,%22di%22:2526,%22ds%22:2817,%22de%22:3209,%22dc%22:4895,%22l%22:4895,%22le%22:4903%7D,%22navigation%22:%7B%7D%7D&fcp=2813&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/24f99e0f02?a=36090226,36090227,36090228&v=1216.487a282&to=Y1VSNkJSWRUEAk1eX1offTRzHGQPEQRaWEJRc18MREFYCgkESxh5WlRVGg%3D%3D&rst=5362&ck=1&ref=https://www.hawaiianairlines.com/covid-test-options/&ap=217&be=1023&fe=4896&dc=2817&perf=%7B%22timing%22:%7B%22of%22:1672919913957,%22n%22:0,%22f%22:431,%22dn%22:455,%22dne%22:457,%22c%22:457,%22s%22:462,%22ce%22:506,%22rq%22:506,%22rp%22:967,%22rpe%22:969,%22dl%22:1007,%22di%22:2526,%22ds%22:2817,%22de%22:3209,%22dc%22:4895,%22l%22:4895,%22le%22:4903%7D,%22navigation%22:%7B%7D%7D&fcp=2813&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:49 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 784c0b57aeb51c0a-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=88a5ab36391fd414; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
lptag.liveperson.net/tag/tag.js?site=21214375
178.249.97.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=21214375
IP 178.249.97.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=21214375 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:49 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 80038cda4dda6d268659b35982f9bb6c
18ac7d847488c7c40f17adecacba3da6a7d72b2c
a77f47ffd7b29deb0e9487196752f145da6d9eafcf4b23878300fafdeae0eec7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 229b5d490cc831bc64606e58940d3c7e
28d120b40eeaca79d98bd619756b11c349b6f0bc
f2f2c2c36d50d54d6aed0bda750cd98711686333eaef793d16d0e7f354eba219
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3995d9cb3793be05b3bcaba9d1c4fcc0
aae0d5e1928cbf941b6de1ad3cbf2edae9216b17
4f308b96d99409b407ea18ff6c962b87e551d9bdcb1974d2e002612a43674382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3726
Cache-Control: max-age=167991
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Etag: "63b69a23-1d7"
Expires: Sat, 07 Jan 2023 10:38:41 GMT
Last-Modified: Thu, 05 Jan 2023 09:36:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ad.doubleclick.net/ddm/activity/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID]?
216.58.207.230302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID]?
IP 216.58.207.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID]? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 05-Jan-2023 12:13:50 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.sojern.com/pixel/img/32656?p_v=1&f_v=v3_image&vid=air
107.178.244.119307 Temporary Redirect 0 B URL HTTP/2 pixel.sojern.com/pixel/img/32656?p_v=1&f_v=v3_image&vid=air
IP 107.178.244.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/img/32656?p_v=1&f_v=v3_image&vid=air HTTP/1.1
Host: pixel.sojern.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: image/gif
location: https://cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925
p3p: policyref="/w3c/p3p.xml", CP="ADMa OUR IND DSP NON LAW"
set-cookie: cid=980c5f8a-1b41-bbaa-c089-8458137e0180#1673481600000; Path=/; Domain=sojern.com; Max-Age=31536000; Secure; SameSite=None
vary: Accept-Encoding
date: Thu, 05 Jan 2023 11:58:50 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
02179918.akstat.io/
184.24.44.135204 No Content 0 B IP 184.24.44.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 02179918.akstat.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 17146
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.hawaiianairlines.com
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Content-Type: image/gif
Expires: Thu, 05 Jan 2023 11:58:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 05 Jan 2023 11:58:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 229b5d490cc831bc64606e58940d3c7e
28d120b40eeaca79d98bd619756b11c349b6f0bc
f2f2c2c36d50d54d6aed0bda750cd98711686333eaef793d16d0e7f354eba219
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tag.simpli.fi/sifitag/95b95090-78b5-0137-6089-067f653fa718
34.90.223.176200 OK 3.1 kB URL HTTP/2 tag.simpli.fi/sifitag/95b95090-78b5-0137-6089-067f653fa718
IP 34.90.223.176:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3100)
Hash 43093172d68dc226134748587ef6d2cf
416a0dd9a8bda650fd4de8d2defb49e8df257852
e6a356f46c25d5413ad9e38bfdbe89361e75da10bde7e5189b1752599ea1bd6c
GET /sifitag/95b95090-78b5-0137-6089-067f653fa718 HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=C9668B3086C94CDCBBF181DD5106D670; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:50 GMT; SameSite=none; Secure;
suid_legacy=C9668B3086C94CDCBBF181DD5106D670; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:50 GMT; Secure;
x-request-id: Fzdn0DiucoystJt50XaB
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7c8811382bcd40ec65e7a6e339e94904
38d741442c52bcdde863d1a2d593ce0c81c7efbd
ce5c1060c028784381224586783b9b0943fd14947bb15bb38e6d401a1a221c23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3995d9cb3793be05b3bcaba9d1c4fcc0
aae0d5e1928cbf941b6de1ad3cbf2edae9216b17
4f308b96d99409b407ea18ff6c962b87e551d9bdcb1974d2e002612a43674382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3726
Cache-Control: max-age=167991
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:50 GMT
Etag: "63b69a23-1d7"
Expires: Sat, 07 Jan 2023 10:38:41 GMT
Last-Modified: Thu, 05 Jan 2023 09:36:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
adservice.google.com/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
142.250.74.34302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pyfo1i0ya
95.101.10.35302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pyfo1i0ya
IP 95.101.10.35:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pyfo1i0ya HTTP/1.1
Host: trial-eum-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://lnncvgs7mufcgy5wxn5a-pyfo1i-03c520e8b-clientnsv4-s.akamaihd.net/eum/results.txt
Date: Thu, 05 Jan 2023 11:58:50 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925
216.58.207.194302 Found 510 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (333), with CRLF, LF line terminators
Hash bfdc24ca04907b08c691d42f5418a4d0
4e00d8ed8f076439dc02c998378bf31ae5a85854
ca8f1262c72614676efeca2d03095322e52bff3715f059fbf8ddc401484b8217
GET /pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925&google_tc=
date: Thu, 05 Jan 2023 11:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 510
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 05-Jan-2023 12:13:50 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925&google_tc=
216.58.207.194302 Found 438 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925&google_tc=
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 30ce6250358cefca8150a8d8fac503d4
b1908035b25dd16c358deb2f797aa2af212ddffa
fc2ad44e7a74307ff3dd3e58943b61f2b30cd5bde81b19ad0f05a6e6f64354bf
GET /pixel?google_cm=true&google_hm=mAxfihtBu6rAiYRYE34BgA&google_nid=sojern__adx_open_bidder_seat&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://pixel.sojern.com/idSync/AdX?exchangeProfileId=&sjrn_id=I2D_vtmMm34wrm_YBSjWFPlFgAX7LZ_IsXwfWWoa1cbH0Y_XY_uBNoJUHZf-rfNC&sjrn_r=aHR0cHM6Ly9zZWN1cmUuYWRueHMuY29tL3B4P2lkPTE0MDk1MTgmdD0x&sjrn_ula=404916925&google_error=3
date: Thu, 05 Jan 2023 11:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 438
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d7866978d6246af633388ecd1d2e35ee
cb6d09dd08ce761c02c94ba82af189589fd7727e
975fe98a61de66c7a8f374d17f5dbc4337ad874de16983addbe2f23386be39aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 04:31:53 GMT
Expires: Tue, 10 Jan 2023 04:31:52 GMT
Etag: "cb6d09dd08ce761c02c94ba82af189589fd7727e"
Cache-Control: max-age=404581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b5eebbeb4f9-OSL
trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pyfo1i0ya
95.101.11.112302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pyfo1i0ya
IP 95.101.11.112:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pyfo1i0ya HTTP/1.1
Host: trial-eum-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://91-90-42-154_s-95-101-11-112_ts-1672919930-clienttons-s.akamaihd.net/eum/results.txt
Date: Thu, 05 Jan 2023 11:58:50 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
adservice.google.no/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
142.250.74.162200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=10124792;type=invmedia;cat=ha_us006;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=[SessionID];~oref=https://www.hawaiianairlines.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 05 Jan 2023 11:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.yimg.com/wi/config/416633.json
87.248.119.252200 OK 2 B URL HTTP/2 s.yimg.com/wi/config/416633.json
IP 87.248.119.252:0
ASN #203220 Yahoo! UK Services Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/416633.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: WY649J96DJJ0AR7F
x-amz-id-2: TWRFLPFWXCAdrvTOGWy2Pyv6m5qvgKk0P4QGakp4oqIVwcGB33x+LbBjgtBb69G2TDOzNqNx96I=
content-type: application/json
date: Thu, 05 Jan 2023 11:42:57 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 953
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/21214375/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.97.99200 OK 8.4 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/21214375/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.97.99:0
File type ASCII text, with very long lines (7855)
Hash ac8475fceffd5c809805c91a58136cb7
55d60d76dc615e8d496fc18c973c01771de9085d
287d191ba9e97022106ef5e46035c5be68da0f2b0a30579e3df90d6336f401c0
GET /api/account/21214375/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:97bc4d9a-184c-44ca-8455-64c8f9fbadf6; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BTa=R:33|g:97bc4d9a-184c-44ca-8455-64c8f9fbadf6|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:4; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
vary: Accept
expires: Thu, 05 Jan 2023 11:59:50 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d7866978d6246af633388ecd1d2e35ee
cb6d09dd08ce761c02c94ba82af189589fd7727e
975fe98a61de66c7a8f374d17f5dbc4337ad874de16983addbe2f23386be39aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 04:31:53 GMT
Expires: Tue, 10 Jan 2023 04:31:52 GMT
Etag: "cb6d09dd08ce761c02c94ba82af189589fd7727e"
Cache-Control: max-age=404581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b5ebd70b527-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d7866978d6246af633388ecd1d2e35ee
cb6d09dd08ce761c02c94ba82af189589fd7727e
975fe98a61de66c7a8f374d17f5dbc4337ad874de16983addbe2f23386be39aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 04:31:53 GMT
Expires: Tue, 10 Jan 2023 04:31:52 GMT
Etag: "cb6d09dd08ce761c02c94ba82af189589fd7727e"
Cache-Control: max-age=404581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b5ed994b505-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d7866978d6246af633388ecd1d2e35ee
cb6d09dd08ce761c02c94ba82af189589fd7727e
975fe98a61de66c7a8f374d17f5dbc4337ad874de16983addbe2f23386be39aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 04:31:53 GMT
Expires: Tue, 10 Jan 2023 04:31:52 GMT
Etag: "cb6d09dd08ce761c02c94ba82af189589fd7727e"
Cache-Control: max-age=404581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b5edaafb512-OSL
secure.adnxs.com/px?id=1409518&t=1
37.252.171.149307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/px?id=1409518&t=1
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px?id=1409518&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fpx%3Fid%3D1409518%26t%3D1
AN-X-Request-Uuid: 596e9263-24a0-491a-ba05-57ba265db8f3
Set-Cookie: uuid2=4710449997284809608; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 05-Apr-2023 11:58:50 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d7866978d6246af633388ecd1d2e35ee
cb6d09dd08ce761c02c94ba82af189589fd7727e
975fe98a61de66c7a8f374d17f5dbc4337ad874de16983addbe2f23386be39aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 04:31:53 GMT
Expires: Tue, 10 Jan 2023 04:31:52 GMT
Etag: "cb6d09dd08ce761c02c94ba82af189589fd7727e"
Cache-Control: max-age=404581,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b5eec73b4f1-OSL
secure.adnxs.com/bounce?%2Fpx%3Fid%3D1409518%26t%3D1
37.252.171.149200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fpx%3Fid%3D1409518%26t%3D1
IP 37.252.171.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fpx%3Fid%3D1409518%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 05 Jan 2023 11:58:50 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 044b6865-0177-4f05-9837-0624f785274e
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
lnncvgs7mufcgy5wxn5a-pyfo1i-03c520e8b-clientnsv4-s.akamaihd.net/eum/results.txt
95.101.10.35200 OK 8 B URL HTTP/1.1 lnncvgs7mufcgy5wxn5a-pyfo1i-03c520e8b-clientnsv4-s.akamaihd.net/eum/results.txt
IP 95.101.10.35:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: lnncvgs7mufcgy5wxn5a-pyfo1i-03c520e8b-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Thu, 05 Jan 2023 11:58:51 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2005%20Jan%202023%2011%3A58%3A40%20GMT&n=0&.yp=416633&f=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&enc=UTF-8&yv=1.13.0&isIframe=1
212.82.100.181200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Thu%2C%2005%20Jan%202023%2011%3A58%3A40%20GMT&n=0&.yp=416633&f=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&enc=UTF-8&yv=1.13.0&isIframe=1
IP 212.82.100.181:0
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Thu%2C%2005%20Jan%202023%2011%3A58%3A40%20GMT&n=0&.yp=416633&f=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&enc=UTF-8&yv=1.13.0&isIframe=1 HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
expires: Thu, 05 Jan 2023 11:58:51 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBHu7tmMCEPUKtglDp9YkAqvZUD0KbZ0FEgEBAQEMuGPAYwAAAAAA_eMAAA&S=AQAAAlPjPSUJOgGaWCu7_dtTC4U; Expires=Fri, 5 Jan 2024 17:58:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
um.simpli.fi/pubmatic
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=B7E8FCB9E6964A5785B8AEAD23ADDCE2; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=B7E8FCB9E6964A5785B8AEAD23ADDCE2; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
87.248.119.252200 OK 6.0 kB IP 87.248.119.252:0
ASN #203220 Yahoo! UK Services Limited
Hash ceda3a6ad18e5b4248edcaff57694b63
7b5d7bb5295241aac1856abb06c9784342a5b2ae
2c473fb27efad34d909bc5f310d2dba029f116a64a4c03d17a2821dee13c81dc
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FxysY7zPsgpHFMhjaxbu8+SxCW+uxfgrSeAqTCB+VRL6eneeaYArSvYx8xvF2yS7Eb17P1vsETM=
x-amz-request-id: X60S3QRPPEEG3KND
date: Thu, 05 Jan 2023 11:58:37 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 14
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
um.simpli.fi/dtnx
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;
set-cookie: suid=493C56FF585C41168588AB976C03C525; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=493C56FF585C41168588AB976C03C525; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/exelatem
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=8DBF7D919E8F4856B9C4F69D6B94A9D8&j=0
set-cookie: suid=8DBF7D919E8F4856B9C4F69D6B94A9D8; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=8DBF7D919E8F4856B9C4F69D6B94A9D8; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/yahoo
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /yahoo HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=11AF65175BE646B59E74EB732BE17EDE; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=11AF65175BE646B59E74EB732BE17EDE; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/beachfront
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=BEF58B5E0D4341C4B39AD5ABB68B2A4A
set-cookie: suid=BEF58B5E0D4341C4B39AD5ABB68B2A4A; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=BEF58B5E0D4341C4B39AD5ABB68B2A4A; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/bluekai
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /bluekai HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://stags.bluekai.com/site/29931?id=1B1270E3E84F484B81F7854F1B8BCD8E
set-cookie: suid=1B1270E3E84F484B81F7854F1B8BCD8E; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=1B1270E3E84F484B81F7854F1B8BCD8E; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/crwdcntrl
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=3634CC0B9DAF4BF5A20D0EE2E58C48F3
set-cookie: suid=3634CC0B9DAF4BF5A20D0EE2E58C48F3; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=3634CC0B9DAF4BF5A20D0EE2E58C48F3; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/lj_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=7762BB1FA14E4640AD1D6731B907CC45
set-cookie: suid=7762BB1FA14E4640AD1D6731B907CC45; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=7762BB1FA14E4640AD1D6731B907CC45; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/liveramp_match
34.91.62.186302 Found 142 B URL HTTP/2 um.simpli.fi/liveramp_match
IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=00DCBDB8AFFB42078353049C5631CC5E
set-cookie: suid=00DCBDB8AFFB42078353049C5631CC5E; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=00DCBDB8AFFB42078353049C5631CC5E; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/spotx_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031
set-cookie: suid=106B473BC593423989D87B6DAB8A7031; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=106B473BC593423989D87B6DAB8A7031; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/an
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=84D2BCAB1D38421AB1883137B17D6EFC
set-cookie: suid=84D2BCAB1D38421AB1883137B17D6EFC; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=84D2BCAB1D38421AB1883137B17D6EFC; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/rb_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rb_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=41D3E2E739384A9D823AFA66CE2DE191&expires=365
set-cookie: suid=41D3E2E739384A9D823AFA66CE2DE191; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=41D3E2E739384A9D823AFA66CE2DE191; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ox_match
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=DC745E410CAA47D5A6B00D94271C5C41
set-cookie: suid=DC745E410CAA47D5A6B00D94271C5C41; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=DC745E410CAA47D5A6B00D94271C5C41; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/g_match?id=&google_error=3
34.91.62.186204 No Content 0 B URL HTTP/2 um.simpli.fi/g_match?id=&google_error=3
IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 05 Jan 2023 11:58:51 GMT
set-cookie: suid=8860E679A5B74BD1B19FCD9CA2762965; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=8860E679A5B74BD1B19FCD9CA2762965; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
i.simpli.fi/p?cid=212720&cb=sifi_att_42656._hp
34.90.223.176200 OK 892 B URL HTTP/2 i.simpli.fi/p?cid=212720&cb=sifi_att_42656._hp
IP 34.90.223.176:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (756), with CRLF line terminators
Hash 201b2d39141944bd386adaaa31329ab1
aa865bdec8c58fc037e5f446f4e7aee03a336de1
4c75b94091d80525b85c72d276fed1ca6dfd62ce0fc5f2be8e64b6696ff6b7ba
GET /p?cid=212720&cb=sifi_att_42656._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=D0B850CFE15C428283AD02B00124316F; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:50 GMT; SameSite=none; Secure;
suid_legacy=D0B850CFE15C428283AD02B00124316F; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:50 GMT; Secure;
uid_syncd=true; path=/; expires=Thu, 12 Jan 2023 11:58:50 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Thu, 12 Jan 2023 11:58:50 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
um.simpli.fi/telaria_p
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /telaria_p HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://simplifi.partners.tremorhub.com/sync?UISF=EB04741441544F91A77F61D53AC13634
set-cookie: suid=EB04741441544F91A77F61D53AC13634; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=EB04741441544F91A77F61D53AC13634; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/tapad
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
set-cookie: suid=7AC5C7A9B44C42288CB2E81191F65BE7; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=7AC5C7A9B44C42288CB2E81191F65BE7; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/ad_advisor
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=249BF8B3FC1B4D98A7B06746EB496875
set-cookie: suid=249BF8B3FC1B4D98A7B06746EB496875; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=249BF8B3FC1B4D98A7B06746EB496875; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/intentiq
34.91.62.186302 Found 142 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /intentiq HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
location: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=7E2907E9CC134D48B63AF96152E6245A
set-cookie: suid=7E2907E9CC134D48B63AF96152E6245A; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=7E2907E9CC134D48B63AF96152E6245A; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
expires: Wed, 04 Jan 2023 11:58:51 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
91-90-42-154_s-95-101-11-112_ts-1672919930-clienttons-s.akamaihd.net/eum/results.txt
23.33.119.11200 OK 8 B URL HTTP/1.1 91-90-42-154_s-95-101-11-112_ts-1672919930-clienttons-s.akamaihd.net/eum/results.txt
IP 23.33.119.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: 91-90-42-154_s-95-101-11-112_ts-1672919930-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Thu, 05 Jan 2023 11:58:51 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4e23abe92dbc8f502a25507e4d141325
b34d0f103e2065fcc13501e4b71646d41ceeb28a
1bb059b847639d9ec7cba8c3f3a5e788163865160712635cb65bd00530320ee4
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 04 Jan 2023 10:10:15 GMT
Expires: Wed, 11 Jan 2023 10:10:14 GMT
Etag: "b34d0f103e2065fcc13501e4b71646d41ceeb28a"
Cache-Control: max-age=603758,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1671
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 784c0b62f9ebfac0-OSL
ib.adnxs.com/setuid?entity=66&code=84D2BCAB1D38421AB1883137B17D6EFC
37.252.171.84307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=66&code=84D2BCAB1D38421AB1883137B17D6EFC
IP 37.252.171.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=66&code=84D2BCAB1D38421AB1883137B17D6EFC HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D84D2BCAB1D38421AB1883137B17D6EFC
AN-X-Request-Uuid: 57d05d0b-ce63-4d5a-b870-328dd45a75ff
Set-Cookie: uuid2=45161233536825406; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 05-Apr-2023 11:58:51 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 53b3a133b4690e68b6fa1e1d26a87947
63dc143f931d20402984e9d022db7afb23863f43
9ebe0f18724c57504af17e63de3867239ad9f61f242f73950489c80d97a2a325
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2535
Cache-Control: max-age=99490
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b59336-1d7"
Expires: Fri, 06 Jan 2023 15:37:01 GMT
Last-Modified: Wed, 04 Jan 2023 14:54:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;
107.178.240.89302 Found 0 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;
IP 107.178.240.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(ro0ha3)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Thu, 05 Jan 2023 11:58:51 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c6e86d739fa95cebd0e4216451470177
49239179c0f5e0c14de757e2336ce9f1b88b4c8b
547f7de58c26926f0b07fb55c8b97c10f0bd7e79d9726dca1d2bd0aa555de19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5601
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Last-Modified: Thu, 05 Jan 2023 10:25:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 87713983e4ddab5908b394b13e738c33
0272fc0944a45436a634f1a173b03fc9c18f11c2
68f72350d1a07de9439755b506916961376a148350397bcd0bd2d170a354723d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92565
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b5789e-1d7"
Expires: Fri, 06 Jan 2023 13:41:36 GMT
Last-Modified: Wed, 04 Jan 2023 13:01:18 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BQ4ijoF7wDq_ztOF9YpVf6YXyP45lAk1BrE9rji9zhF1rQ3St9rbng==
Age: 2418
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D84D2BCAB1D38421AB1883137B17D6EFC
37.252.171.84200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3D84D2BCAB1D38421AB1883137B17D6EFC
IP 37.252.171.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3D84D2BCAB1D38421AB1883137B17D6EFC HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 45a8b3af-e140-40c4-aaf7-42744d1d9421
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2In?rJP+Y!]tbPl1N!7On*M$=BWOeeU93WiI3gWk^^WN(FQ+`3O*fKK??#!3qvN^*EVovjr*-BP(hw9P-HC_#tx@3*$Eto; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 05-Apr-2023 11:58:51 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
us-u.openx.net/w/1.0/sd?id=537072966&val=DC745E410CAA47D5A6B00D94271C5C41
35.244.159.8200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537072966&val=DC745E410CAA47D5A6B00D94271C5C41
IP 35.244.159.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537072966&val=DC745E410CAA47D5A6B00D94271C5C41 HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4f3ee704a5cd7a6e69c7fb5fbd7283a2
be50ef0da7999d632fc3d2218dfe612faa29dddc
8208ba6850f11d559d8616492481eafd0f05c39ebb4eb4379d2932ea27e49d43
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 04 Jan 2023 13:42:55 GMT
Expires: Wed, 11 Jan 2023 13:42:54 GMT
Etag: "be50ef0da7999d632fc3d2218dfe612faa29dddc"
Cache-Control: max-age=524042,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b634babb527-OSL
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash f084c311118324821f60cca53d9b6c1b
18154ba4cf0fcb954b3300c63af1dc7bff1b7640
d0ffb79e976be78035d1bfaea92e55a31a60fe4583ab8cc69fc1f0aec6e600a6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 04 Jan 2023 23:53:11 GMT
Expires: Thu, 05 Jan 2023 23:53:11 GMT
ETag: "18154ba4cf0fcb954b3300c63af1dc7bff1b7640"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;sr
107.178.240.89200 OK 43 B URL HTTP/2 fei.pro-market.net/engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;sr
IP 107.178.240.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a
GET /engine?du=24;csync=493C56FF585C41168588AB976C03C525;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-4.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(ro0ha3)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Thu, 05 Jan 2023 11:58:51 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=7969&xuid=9F09EF6D9B56458DAA2B98E8843DBE83&dongle=yf3
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=7969&xuid=9F09EF6D9B56458DAA2B98E8843DBE83&dongle=yf3
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=7969&xuid=9F09EF6D9B56458DAA2B98E8843DBE83&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 0f2614c84f311d0257a0bf846ce18cf6
d55e198afbb3a17be39398e6fbefd08b3bb4048d
3106add81be1eab4823531187c8174ff6f61d4e67d88220ba7619c212f64ef71
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 04 Jan 2023 22:41:20 GMT
Expires: Thu, 05 Jan 2023 22:41:20 GMT
ETag: "d55e198afbb3a17be39398e6fbefd08b3bb4048d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 05 Jan 2023 11:58:51 GMT
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1672919931482;Expires=Mon, 06 Mar 2023 11:58:51 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=f2494fff-d4a9-44c7-9ec0-81c3074b2fc5;Expires=Mon, 06 Mar 2023 11:58:51 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 203170122fc3ed9c79afab7d34d68562
cec01f10950ce208750c636b3d2bfed2d6bfc96f
cc5ab9ce8f5c7a9bfc28223b192a2138dea24bd956535c19dc501d14f6af0a32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1875
Cache-Control: max-age=154992
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b66e98-2d7"
Expires: Sat, 07 Jan 2023 07:02:03 GMT
Last-Modified: Thu, 05 Jan 2023 06:30:48 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 727
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=7E2907E9CC134D48B63AF96152E6245A
143.204.55.102403 Forbidden 986 B URL HTTP/2 sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=7E2907E9CC134D48B63AF96152E6245A
IP 143.204.55.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8f021a60610e6769564bb0abad2f60be
5869032956b93ea83f61d9a4300b08a2e4199c22
4f929e384c35c6488e2cdc455401196aa8ecc869a978127dfa8f56a4beaf83fd
GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=7E2907E9CC134D48B63AF96152E6245A HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IExXdamiDg-BdjUitg83NXkqkFa7psBV66fAWuWxdgyJXkc4MLd2Fg==
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b923acc2a98699852680d004ec4eebb5
1164322271dbd92e60e622b2e402e4ccc5b1651a
ee9d77eceabdaf3635d7c9a68177ca90039565c8a3b1ce049fdeb228d47f6fdc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4726
Cache-Control: max-age=135179
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b61610-1d7"
Expires: Sat, 07 Jan 2023 01:31:50 GMT
Last-Modified: Thu, 05 Jan 2023 00:13:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1cce358ba0efd85510bbd379b4ff1072
23057ad251707498e21bb147aad22f4265b9a5a1
176422a996820923f589954d466c7aba65606a09b8ea8b091307f1ec692e940d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5981
Cache-Control: max-age=102949
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b59343-1d7"
Expires: Fri, 06 Jan 2023 16:34:40 GMT
Last-Modified: Wed, 04 Jan 2023 14:54:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
idsync.rlcdn.com/419566.gif?partner_uid=00DCBDB8AFFB42078353049C5631CC5E
35.244.174.68451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/419566.gif?partner_uid=00DCBDB8AFFB42078353049C5631CC5E
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /419566.gif?partner_uid=00DCBDB8AFFB42078353049C5631CC5E HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 05 Jan 2023 11:58:51 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 309 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
Size 309 kB (308991 bytes)
Hash f8c4a892334d1451daf45928f209324b
4c7ed6c12ef0ec0c86f5af7e8d1568d6a165b60a
5a156f6b7c91371d942cc1b074d5eb473c005a0f8ea8d471b04ef5a992a8234a
GET /le_unified_window/10.23.0.0-release_5549/surveylogicinstance.min.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 05 Jan 2024 11:58:50 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f047ad5e9977f1451389be6e49fef36
eb3442301ea251443998397ed9d0360ec118cd67
d1753eccf30984e974875e43223f382fbddebacaff454562b648170a61a2d71f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6111
Cache-Control: max-age=139800
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b622b4-1d7"
Expires: Sat, 07 Jan 2023 02:48:51 GMT
Last-Modified: Thu, 05 Jan 2023 01:07:00 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=3634CC0B9DAF4BF5A20D0EE2E58C48F3
54.216.26.107404 Not Found 49 B URL HTTP/2 bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=3634CC0B9DAF4BF5A20D0EE2E58C48F3
IP 54.216.26.107:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /map/c=7625/tp=SIMP/tpid=3634CC0B9DAF4BF5A20D0EE2E58C48F3 HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.29.211
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=2&3pid=7762BB1FA14E4640AD1D6731B907CC45
216.52.2.19204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=2&3pid=7762BB1FA14E4640AD1D6731B907CC45
IP 216.52.2.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=2&3pid=7762BB1FA14E4640AD1D6731B907CC45 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 05 Jan 2023 11:58:51 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap4ams1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c6e86d739fa95cebd0e4216451470177
49239179c0f5e0c14de757e2336ce9f1b88b4c8b
547f7de58c26926f0b07fb55c8b97c10f0bd7e79d9726dca1d2bd0aa555de19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5601
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 11:58:51 GMT
Last-Modified: Thu, 05 Jan 2023 10:25:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
35.227.248.159200 OK 95 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7
IP 35.227.248.159:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=7AC5C7A9B44C42288CB2E81191F65BE7 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1672919931537;Expires=Mon, 06 Mar 2023 11:58:51 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=b5bb28bc-2e26-47c3-869a-ced946f3db6c;Expires=Mon, 06 Mar 2023 11:58:51 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Mon, 06 Mar 2023 11:58:51 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031
185.94.180.125302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=52142fd1-8cf0-11ed-97a0-1ebee0f60206; expires=Thu, 02-Feb-2023 11:58:51 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031&__user_check__=1&sync_id=52143040-8cf0-11ed-97a0-1ebee0f60206
X-fe: 92
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
loadm.exelator.com/load/?p=204&g=2191&simid=8DBF7D919E8F4856B9C4F69D6B94A9D8&j=0
54.78.254.47204 No Content 0 B URL HTTP/2 loadm.exelator.com/load/?p=204&g=2191&simid=8DBF7D919E8F4856B9C4F69D6B94A9D8&j=0
IP 54.78.254.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /load/?p=204&g=2191&simid=8DBF7D919E8F4856B9C4F69D6B94A9D8&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 05 Jan 2023 11:58:51 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=41D3E2E739384A9D823AFA66CE2DE191&expires=365
69.173.144.139204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=41D3E2E739384A9D823AFA66CE2DE191&expires=365
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6286&nid=2132&put=41D3E2E739384A9D823AFA66CE2DE191&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 37b22a0c36bd84993dd2cda4a5e04b1d
Content-Type: image/gif
sync.search.spotxchange.com/partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031&__user_check__=1&sync_id=52143040-8cf0-11ed-97a0-1ebee0f60206
185.94.180.125200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031&__user_check__=1&sync_id=52143040-8cf0-11ed-97a0-1ebee0f60206
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7797&uid=106B473BC593423989D87B6DAB8A7031&__user_check__=1&sync_id=52143040-8cf0-11ed-97a0-1ebee0f60206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=521b04ec-8cf0-11ed-9979-19da87bf0506; expires=Thu, 02-Feb-2023 11:58:51 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 136
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash c2c9f9ff69355350d718a05d521ec48c
671cdf3e74b8e501be38c129cedbc7e0130bfa6f
c0b1a1f1192d49d025b6e1b17a19c2dae306bff864c14d27b87f16e3f1c0b613
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111736
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b5b4f9-1d7"
Expires: Fri, 06 Jan 2023 19:01:07 GMT
Last-Modified: Wed, 04 Jan 2023 17:18:49 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dn2MM_ZpawrMBFy7VaN97oYF2bY4O0n-Px_DmLFJkWWhACizexIFOQ==
Age: 6138
stags.bluekai.com/site/29931?id=1B1270E3E84F484B81F7854F1B8BCD8E
23.38.201.22200 OK 62 B URL HTTP/2 stags.bluekai.com/site/29931?id=1B1270E3E84F484B81F7854F1B8BCD8E
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80
GET /site/29931?id=1B1270E3E84F484B81F7854F1B8BCD8E HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Thu, 05 Jan 2023 11:58:51 GMT
set-cookie: bku=blx99crf+Zm/gA/Y; Path=/; Domain=.bluekai.com; Expires=Wed, 05 Jul 2023 11:58:51 GMT; Secure; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwEaY1E/l1WDpHEQ6HMxTBW/T1DRlmeD6HMaYmWJeHeCa9y9ZoQrh; Path=/; Domain=.bluekai.com; Expires=Wed, 05 Jul 2023 11:58:51 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
sync.bfmio.com/sync?pid=141&uid=BEF58B5E0D4341C4B39AD5ABB68B2A4A
18.214.242.20204 0 B URL HTTP/1.1 sync.bfmio.com/sync?pid=141&uid=BEF58B5E0D4341C4B39AD5ABB68B2A4A
IP 18.214.242.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=141&uid=BEF58B5E0D4341C4B39AD5ABB68B2A4A HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204
Date: Thu, 05 Jan 2023 11:58:51 GMT
Set-Cookie: __141_cid=BEF58B5E0D4341C4B39AD5ABB68B2A4A; Domain=.bfmio.com; Expires=Fri, 05-Jan-2024 11:58:51 GMT; Path=/
__io_cid=26eaa28944f5257bc93e0ab952a3a68599d04cc7; Domain=.bfmio.com; Expires=Fri, 05-Jan-2024 11:58:51 GMT; Path=/
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash ab360e03a03419a906046b9298154f3f
586eefe217fa8d9b470f6b32cfea4ceff9936260
90012a8ddf19bf9b41d51b124d7920fbfa56bbb7fc949ea90652c0c598b3f87d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107804
Date: Thu, 05 Jan 2023 11:58:51 GMT
Etag: "63b5b3a9-1d7"
Expires: Fri, 06 Jan 2023 17:55:35 GMT
Last-Modified: Wed, 04 Jan 2023 17:13:13 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: orK8peAKm9MBjTDBQqIdrjXT-BDHwR3a7-oAWplsyOUzyG7Hu-SOhA==
Age: 2542
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4f3ee704a5cd7a6e69c7fb5fbd7283a2
be50ef0da7999d632fc3d2218dfe612faa29dddc
8208ba6850f11d559d8616492481eafd0f05c39ebb4eb4379d2932ea27e49d43
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 04 Jan 2023 13:42:55 GMT
Expires: Wed, 11 Jan 2023 13:42:54 GMT
Etag: "be50ef0da7999d632fc3d2218dfe612faa29dddc"
Cache-Control: max-age=524042,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b644d4ab527-OSL
d.agkn.com/pixel/10751/?che=1672919931784&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219693204387001753227
52.30.24.242302 Found 0 B URL HTTP/1.1 d.agkn.com/pixel/10751/?che=1672919931784&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219693204387001753227
IP 52.30.24.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/10751/?che=1672919931784&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219693204387001753227 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache, must-revalidate
Date: Thu, 05 Jan 2023 11:58:50 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=219693204387001753227
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Server: Apache-Coyote/1.1
Set-Cookie: ab=0001%3AwAR3MDRb2dWkjvi%2B6GoxdCZdxoHBT7I7;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArSXf7K0l3-wAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b9ae6da9574a86cc01b05c6ecfa51577
8b9d1acdee512721621b45560b5a3d26f8778b5d
f6e9df8497481a002bb519d0755ed07967dafcb39e1fa65cfb663af7192584dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 05 Jan 2023 11:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 02 Jan 2023 23:37:41 GMT
Expires: Mon, 09 Jan 2023 23:37:40 GMT
Etag: "8b9d1acdee512721621b45560b5a3d26f8778b5d"
Cache-Control: max-age=386928,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 784c0b65df4cb527-OSL
um.simpli.fi/aa_px?sk=219693204387001753227
34.91.62.186302 Found 142 B URL HTTP/2 um.simpli.fi/aa_px?sk=219693204387001753227
IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /aa_px?sk=219693204387001753227 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: text/html
content-length: 142
set-cookie: suid=96118FA603424D9EA3B8AB4CC69DFD35; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=96118FA603424D9EA3B8AB4CC69DFD35; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
location: /empty.gif
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
um.simpli.fi/empty.gif
34.91.62.186200 OK 43 B IP 34.91.62.186:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=0E8E59A6CE0A47AFA8B6E07EEF27162C; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; SameSite=none; Secure;
suid_legacy=0E8E59A6CE0A47AFA8B6E07EEF27162C; Path=/; domain=simpli.fi; Expires=Sat, 06-Jan-24 11:58:51 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2
02179918.akstat.io/
184.24.44.135204 No Content 0 B IP 184.24.44.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 02179918.akstat.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1871
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: https://www.hawaiianairlines.com
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Content-Type: image/gif
Expires: Thu, 05 Jan 2023 11:58:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 05 Jan 2023 11:58:53 GMT
Connection: keep-alive
va.v.liveperson.net/api/js/21214375?sid=XLSk71k3Tr6JZLTb2t6Q5w&cb=lpCb52350x49813&t=pl&ts=1672919921070&pid=2951456876&tid=9065845769&vid=VjOTZhNTBiNzk2YWYzMjNi
208.89.12.87200 OK 124 B URL HTTP/2 va.v.liveperson.net/api/js/21214375?sid=XLSk71k3Tr6JZLTb2t6Q5w&cb=lpCb52350x49813&t=pl&ts=1672919921070&pid=2951456876&tid=9065845769&vid=VjOTZhNTBiNzk2YWYzMjNi
IP 208.89.12.87:0
File type ASCII text, with no line terminators
Hash 83d717b91aa49fe3d8106b4c228f9996
eff6f48542cd7f0e921adc0596447a265ca9e83a
7f7b142dfe831896ebf90a095f4525118621e5c8df8bfa9f539e6e8a3d01e428
GET /api/js/21214375?sid=XLSk71k3Tr6JZLTb2t6Q5w&cb=lpCb52350x49813&t=pl&ts=1672919921070&pid=2951456876&tid=9065845769&vid=VjOTZhNTBiNzk2YWYzMjNi HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:52 GMT
content-type: application/javascript
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cecd6a1a228ac55f193a180229d3a33
9e5fd5a101828d5491305deb539dc5836c5b3065
7bbd9e261625c2d2a700a817c2f10b779c8463baacda02f9f34161c08487ca31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8721
x-amzn-requestid: 1c24289e-6169-4088-a2b8-311e3640e4bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eAA7IGTdIAMFzCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afe1e0-561d5981260c41511219c673;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:16:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: qoxCvnR2nVjlCdQJ6Wyq_Ot0p1SVdhl71LEKAm0-tkPMxWHGdIl42w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 07:08:44 GMT
age: 17409
etag: "9e5fd5a101828d5491305deb539dc5836c5b3065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hawaiianairlines.com/TeaLeaf/TeaLeafTarget.aspx
96.6.16.96200 OK 20 B URL HTTP/2 www.hawaiianairlines.com/TeaLeaf/TeaLeafTarget.aspx
IP 96.6.16.96:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
POST /TeaLeaf/TeaLeafTarget.aspx HTTP/1.1
Host: www.hawaiianairlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Tealeaf: device (UIC) Lib/3.0.2.Unversioned directory
X-TealeafType: GUI
X-TeaLeaf-Page-Url: /covid-test-options/
X-TeaLeaf-Page-Objects: 0
X-TeaLeaf-Page-Render: 3926
X-TeaLeaf-Page-Dwell: 4125
X-TeaLeaf-Page-Cui-Exceptions: 0
X-TeaLeaf-Visit-Order:
X-TeaLeaf-Page-Last-Field:
X-Requested-With: XMLHttpRequest
Content-Length: 2199
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/covid-test-options/
Cookie: ASP.NET_SessionId=w3dzzhcttbovellwipbopnco; SC_ANALYTICS_GLOBAL_COOKIE=84fff4b1c0bb4f7aaddcc9b109b39127|False; __RequestVerificationToken=VnCX8fi5MLXjiwOTnaM3qRXY7OOnT4JlfXlZQCS6snaj81r2JcyC5Gu8O--F28njvHhhzw2; www_Cookie=!7+m+qpl+qW+Mn40vm+BKRdL9mSd3gHlQ/tSe1iwCgY4j8Tw3W5fgGaLKjqc1zqiHI4b196bayxgN5w==; SampleGroup=16; AKA_A2=A; rFhjYTiu=Ay1AzIGFAQAAQi4SyUb8_0LDJ42VXm-7ot90Yo3u6I0ioc-EhaeaAttLdgU6AVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|54f1bca032a368f8bb815ef6b55465656a8ed4ed; Sample1=true; Sample2=true; AMCV_5E29123F5245B2B70A490D45%40AdobeOrg=-1124106680%7CMCIDTS%7C19363%7CMCMID%7C16779723376320019711625366484296595481%7CMCAAMLH-1673524718%7C6%7CMCAAMB-1673524718%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1672927119s%7CNONE%7CMCAID%7CNONE%7CMCSYNCSOP%7C411-19370%7CvVersion%7C5.2.0; _gcl_au=1.1.1890387722.1672919918; mbox=session#d4f716d26a7048fa825f772d2d0b0949#1672921779|PC#d4f716d26a7048fa825f772d2d0b0949.37_0#1736164720; check=true; _ga_99R6ZJ9CBT=GS1.1.1672919918.1.0.1672919918.60.0.0; _ga=GA1.1.872285212.1672919918; _tt_enable_cookie=1; _ttp=hpHQK2XJ-AHER43vrWbojDduKSg; _uetsid=4a337b808cf011ed96c3b5df235581fb; _uetvid=4a3399a08cf011edacc0857eda9eaf0b; _fbp=fb.1.1672919918338.655571797; _mibhv=anon-1672919918520-8540378867_7075; AMCVS_5E29123F5245B2B70A490D45%40AdobeOrg=1; RT="z=1&dm=hawaiianairlines.com&si=f03145a1-6f97-4958-9ae2-c434556aa2a3&ss=lcj1bmxx&sl=1&tt=3s7&bcn=%2F%2F02179918.akstat.io%2F&ld=4se&ul=7d7"; _pin_unauth=dWlkPVlqSmxZMlZoTWpJdFlUUTFZeTAwWm1KaUxUaGtPRGN0Tnprd1pUUXpOamM1TVdZeQ; gpv=ha%3Aus%3Acovid-test-options%3A; s_nr=1672919919217-New; aa_lastvisit=1672919919217; s_ppv=ha%253Aus%253Acovid-test-options%253A%2C23%2C23%2C939; s_tp=4111; s_cc=true; __pdst=66c822896c7440848206f118a44e0514; aam_uuid=20330729008358535162157718794676798310; __ts_xfdF3__=820062798; rFhjYTiu_dc=%7B%22_fr%22%3A20000%2C%22fr%22%3A%22dVi0oeCicEAWWyQHB7UA1A%3D%3D2NA7u_FKItMky7Ss6GAJS6-Bp6EnSXVPYCq0nsjOB7tje97Fv8LBr5z5c5H06v30DjVEwJnqseBeQYCRZSLh_bNfSbFcqZ7ORNw8pPeblwQc5l9ErBorUWGQFwtltNF0Ffx9pfh-IsnsfPaRI42_6JRxefN9pVh2X3PWTelXadYmXmJoyB6jsg%3D%3D%22%2C%22ct%22%3A%22N0xqfP9dvTHN%2FDf8tmCks8VRCv%2BQ5Byu13gG800%3D%22%7D; LPVID=VjOTZhNTBiNzk2YWYzMjNi; LPSID-21214375=XLSk71k3Tr6JZLTb2t6Q5w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
pragma: no-cache
content-type: text/html
x-akamai-transformed: 9 0 0 pmb=mRUM,3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Thu, 05 Jan 2023 12:58:53 GMT
date: Thu, 05 Jan 2023 11:58:53 GMT
content-length: 20
server-timing: cdn-cache; desc=MISS, edge; dur=122, origin; dur=76
strict-transport-security: max-age=31536000 ; includeSubDomains
timing-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/actionp/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&evt=pageHide
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/actionp/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&evt=pageHide
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /actionp/0?ti=5857748&Ver=2&mid=a7d2bb13-bd99-42c8-95eb-5f2b9266b812&sid=4a337b808cf011ed96c3b5df235581fb&vid=4a3399a08cf011edacc0857eda9eaf0b&vids=1&msclkid=N&evt=pageHide HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hawaiianairlines.com
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2D6E573CC96A6A681B2245ACC89F6B26; domain=.bing.com; expires=Tue, 30-Jan-2024 11:58:54 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 167CA25603E04F4196D986CB6640FF92 Ref B: OSL30EDGE0120 Ref C: 2023-01-05T11:58:54Z
date: Thu, 05 Jan 2023 11:58:53 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap
IP 216.58.207.202:0
GET /css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 05 Jan 2023 11:58:48 GMT
date: Thu, 05 Jan 2023 11:58:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.js?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&force=1&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.js?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&force=1&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.19.0.0-release_5079/storage.secure.min.js?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:00:32 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 05 Jan 2024 11:58:51 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
widget.usersnap.com/load/65c3ab3f-63f5-4b65-9317-11a297340ffe?onload=onUsersnapCXLoad
3.122.46.194200 OK 0 B URL HTTP/2 widget.usersnap.com/load/65c3ab3f-63f5-4b65-9317-11a297340ffe?onload=onUsersnapCXLoad
IP 3.122.46.194:0
GET /load/65c3ab3f-63f5-4b65-9317-11a297340ffe?onload=onUsersnapCXLoad HTTP/1.1
Host: widget.usersnap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
access-control-allow-methods: GET
cross-origin-resource-policy: cross-origin
cache-control: max-age=10
content-encoding: gzip
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=249BF8B3FC1B4D98A7B06746EB496875
18.200.78.128302 Found 0 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=249BF8B3FC1B4D98A7B06746EB496875
IP 18.200.78.128:0
GET /adscores/g.pixel?sid=9201915418&sifi_uid=249BF8B3FC1B4D98A7B06746EB496875 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 05 Jan 2023 11:58:51 GMT
location: https://d.agkn.com/pixel/10751/?che=1672919931784&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D219693204387001753227
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AEU0Ybw1f%2BicC8VmcDni%2FX65CXemYK70I; Path=/; Domain=.agkn.com; Expires=Fri, 05-Jan-2024 11:58:51 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/21214375/configuration/setting/accountproperties/?cb=accountSettingsCB
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/21214375/configuration/setting/accountproperties/?cb=accountSettingsCB
IP 178.249.97.99:0
GET /api/account/21214375/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:dd671272-7da0-4fe8-9d20-6945bb53bd15; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BTa=R:33|g:dd671272-7da0-4fe8-9d20-6945bb53bd15|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:3; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
vary: Accept
expires: Thu, 05 Jan 2023 11:59:50 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/lpChatV3.min.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 05 Jan 2024 11:58:50 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549
IP 178.249.97.98:0
GET /le_unified_window/10.23.0.0-release_5549/ui-framework.js?version=10.23.0.0-release_5549 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:03:25 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 05 Jan 2024 11:58:50 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
simplifi.partners.tremorhub.com/sync?UISF=EB04741441544F91A77F61D53AC13634
52.73.141.213200 OK 0 B URL HTTP/2 simplifi.partners.tremorhub.com/sync?UISF=EB04741441544F91A77F61D53AC13634
IP 52.73.141.213:0
GET /sync?UISF=EB04741441544F91A77F61D53AC13634 HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hawaiianairlines.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
sqvqql5w.micpn.com/p/js/1.js
143.204.55.33200 OK 0 B URL HTTP/2 sqvqql5w.micpn.com/p/js/1.js
IP 143.204.55.33:0
GET /p/js/1.js HTTP/1.1
Host: sqvqql5w.micpn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
x-uuid: 331ffc0c-7419-4621-b119-803f1e84cc07
cache-control: no-cache max-age=0
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
p3p: policyref="https://movableink.com/w3c/p3p.xml", CP="DEVa PSAa PSDa IVAa IVDa OUR IND DSP NON COR NAV UNI"
timing-allow-origin: https://www.hawaiianairlines.com
date: Thu, 05 Jan 2023 11:49:34 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZU_w9tgN5CEEJey7vnbxQUgKMPRBqtOFkvvkj3xnQNNLh9ljSRS2PQ==
age: 554
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/21214375/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.97.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/21214375/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.97.23:0
GET /lptag/api/account/21214375/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: application/x-javascript
set-cookie: ADRUM_BTa=R:33|g:7992cb04-afd6-4df8-8f41-a1820f6bb219; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BTa=R:33|g:7992cb04-afd6-4df8-8f41-a1820f6bb219|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:1758181; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BT1=R:33|i:1758181|e:1; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
ADRUM_BT1=R:33|i:1758181|e:1|d:1; Max-Age=30; Expires=Thu, 05-Jan-2023 11:59:20 GMT; Path=/
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
insight.adsrvr.org/track/pxl/?adv=o35uw70&ct=0:hrk50i3&fmt=3
52.223.40.198200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/pxl/?adv=o35uw70&ct=0:hrk50i3&fmt=3
IP 52.223.40.198:0
GET /track/pxl/?adv=o35uw70&ct=0:hrk50i3&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/21214375?&cb=lpCb6726x73471&t=sp&ts=1672919920098&pid=2951456876&tid=9065845769&pt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&u=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22ctype%22%3A%22logged%20out%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/21214375?&cb=lpCb6726x73471&t=sp&ts=1672919920098&pid=2951456876&tid=9065845769&pt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&u=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22ctype%22%3A%22logged%20out%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
GET /api/js/21214375?&cb=lpCb6726x73471&t=sp&ts=1672919920098&pid=2951456876&tid=9065845769&pt=Hawaii%20COVID-19%20Travel%20Center%20%7C%20Hawaiian%20Airlines&u=https%3A%2F%2Fwww.hawaiianairlines.com%2Fcovid-test-options%2F&df=0&os=0&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22ctype%22%3A%22logged%20out%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:51 GMT
content-type: application/javascript
set-cookie: LPVisitorID=VjOTZhNTBiNzk2YWYzMjNi; Expires=Fri, 05-Jan-2024 11:58:51 GMT; Path=/; HttpOnly
LPSessionID=XLSk71k3Tr6JZLTb2t6Q5w; Path=/api/js/21214375; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.19.0.0-release_5079/storage.secure.min.html?loc=https%3A%2F%2Fwww.hawaiianairlines.com&site=21214375&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hawaiianairlines.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 05 Jan 2023 11:58:50 GMT
content-type: text/html
last-modified: Thu, 03 Nov 2022 22:00:32 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 05 Jan 2024 11:58:50 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2