Windows Analysis Report
http://booking.extnnehotteir.com/admin/o2shi1bka89

Overview

General Information

Sample URL:	http://booking.extnnehotteir.com/admin/o2shi1bka89
Analysis ID:	1467018
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected phishing page

Stores files to the Windows start menu directory

Classification

Signatures

Phishing

AI detected phishing page

Source: https://booking.extnnehotteir.com

LLM: Score: 8 brands: Booking.com Reasons: The URL 'https://booking.extnnehotteir.com' is highly suspicious. The legitimate domain for Booking.com is 'booking.com', and the use of 'extnnehotteir.com' is not associated with the legitimate brand. The page contains a prominent login form, which is a common tactic used in phishing sites to harvest user credentials. Additionally, the presence of social engineering techniques such as mimicking the legitimate Booking.com website layout and design further indicates that this is likely a phishing site. There are also suspicious links that could potentially lead to harmful pages. DOM: 0.0.pages.csv

Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49731 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /admin/o2shi1bka89 HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2Hv HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /static/booking/styles/main_jlksgegksel32232v5.css HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /static/stylesheets/banner.css HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.6.4.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io-3.0.1.min.js HTTP/1.1Host: cdn.socket.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: pXqYyw4mS9ESGZj2g0RUIg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /static/booking/favicon.ico HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /backend_static/common/flags/new/48-squared/us.png HTTP/1.1Host: q-xx.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/booking/favicon.ico HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /backend_static/common/flags/new/48-squared/us.png HTTP/1.1Host: q-xx.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: KWjPsfWT2RucoeRaJ6mpTA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: NtVYQHreSaHMtPAauRnTLA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /en-us?utm_source=extranet_login_page HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/fonts/icons/icons.woff?v=1.3.3 HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: /c6nvTLVbGLVpmnbmsfSpg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/OtAutoBlock.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /optimize.js?id=GTM-MVTHSWF HTTP/1.1Host: www.googleoptimize.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon/bookingdotcomb2b/booking_prod/scripts/evergage.min.js HTTP/1.1Host: cdn.evgnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libs/bui/9.5.6/bui.min.js HTTP/1.1Host: bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/1px.gif HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/initiator.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/main.ce2869c62d2ccb514c50.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/me.7d4a349527f92fc578d9.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/1px.gif HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/initiator.js HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-us.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.svg HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kindly-chat.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.ico HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/site.webmanifest HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rc/19174/scripts/s.js HTTP/1.1Host: cdn.spinnaker-js.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-us.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.svg HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/huge_slider_teaser/public/2024-06/ukb5394_asset_bank_shot_10_0719.jpg.webp?h=a0c51cab&itok=O6kEyqHx HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /KindlyChat-4b664f93b8bd8ce36493.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2024-03/join-booking-hero.jpg.webp?h=56d0ca2e&itok=3dorJ9nt HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-05/cybersecurity2.png.webp?h=cf1ccd34&itok=ztBNqW6y HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.ico HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-10/travel_predictions_2024_1_1.jpg.webp?h=db5e2b43&itok=jW2sd4Zb HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657 HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/huge_slider_teaser/public/2024-06/ukb5394_asset_bank_shot_10_0719.jpg.webp?h=a0c51cab&itok=O6kEyqHx HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2024-03/join-booking-hero.jpg.webp?h=56d0ca2e&itok=3dorJ9nt HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-05/cybersecurity2.png.webp?h=cf1ccd34&itok=ztBNqW6y HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /shared/commons.9b20dd57c6f12e1beb80.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: F+Mzs9PoDApv/6Os10TP/g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-10/travel_predictions_2024_1_1.jpg.webp?h=db5e2b43&itok=jW2sd4Zb HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22}; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Medium.c4877bdfa15aef22d9255288b16899c5.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/main_cloudfront_sd.iq_ltr/59a2fade3d36f2f4f9ecd750c27be976b0ac7dee.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/main_exps_cloudfront_sd.iq_ltr/de150bdd2c4f503788221a11564ca289cdbe20e5.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92ce308fc.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main_cloudfront_sd/9d3571bfcfd220f5be846047e043c221bcc1cc2e.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/searchbox_cloudfront_sd/f7aa20a8e47580b2d09d2b0785ba3ed32ced4021.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/css/client.112a5244.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ua-parser HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/geoip?weather=false HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/css/256aa323.b7ebf6c0.chunk.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb10712.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/analytics.79f8498ff26e4bffe258.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ua-parser HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/geoip?weather=false HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX1VTIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLXVzP3V0bV9zb3VyY2U9ZXh0cmFuZXRfbG9naW5fcGFnZSIsInVybFJlZmVycmVyIjoiIiwiY2hhbm5lbCI6IldlYiIsImJlYWNvblZlcnNpb24iOjE2LCJjb25maWdWZXJzaW9uIjoiMTI2IiwiY29udGVudFpvbmVzIjpbInNpZGViYXJfYmFubmVyIiwicG9wdXBfc3VydmV5IiwiYm9va2luZ19tY3BfZ2EiLCJob21lcGFnZV9jYXJvdXNlbCIsImhvbWVwYWdlX21pbmlfaGVyb19iYW5uZXIiLCJob21lcGFnZV9yZWNvbW1lbmRlZF9yZWFkcyIsImhvbWVwYWdlX3JlY29tbWVuZGVkX3JlYWRzXzFzdF90ZWFzZXIiLCJob21lcGFnZV9jdGEiXX0sInVzZXIiOnsiYW5vbnltb3VzSWQiOiIxZTU3YzhmOTg1OGU2NDQ4In0sImludGVyYWN0aW9uIjp7Im5hbWUiOiJWaWV3ZWQgSG9tZXBhZ2UifSwicGFnZVZpZXciOnRydWUsImNvbnNlbnRzIjpbXSwiYWNjb3VudCI6e30sIl90b29sc0V2ZW50TGlua0lkIjoiNTU1OTIxOTIxMjQ0NjAxNiIsImV4cGxhaW4iOnRydWV9 HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/1230916.1524893.json?3ac2b93dcc3f353c12ffcd1847a1baa3 HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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 HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=Kkzi0HKKDW1BhDZqxD6Y+ByfXXk03WFKEjVQ4EYCUfD9JgYWQP4XKfAhxxXMjpSQNSjnBu2+zi3Ufg5NptW+ZrxATJQZJX3le1vZ0vVip3NmX5GD6Ua8cumyfDwpjuM1aFqY7I3zrceQEFFIJtmeFV1JHZXW2r7pQgD2cXazWbvnEjjPbX8=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/1230916.1524893.json?3ac2b93dcc3f353c12ffcd1847a1baa3 HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/content_cloudfront_sd/ece690fd13c824529e3870e0e662c417931b8461.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e7446001225f2b.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff HTTP/1.1Host: t-cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff HTTP/1.1Host: t-cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logo?ver=1&sid=43724e98906336bfa0cdee9a49c43a97&t=17200170051 HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmdWb5Xjjp4oE%2FZB6TDYhAIwwjcEhC4hr3F5TkPmVdseXN8pWARAUkK%2BMpX%2FajW4LNza7JLVJ%2B1RId%2BUjrMFj0XMBJNEkBF5A8My9e7570imH2qkh5MEILk5516bR8CKYcaHhuC5vBBUy1Lhmaj%2FwB50%3D; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/client.aef18f37.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/034e4287.d0fe97f0.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/a72063b1.7c807fb7.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/256aa323.a3f07c1f.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logo?ver=1&sid=43724e98906336bfa0cdee9a49c43a97&t=17200170051 HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmdWb5Xjjp4oE%2FZB6TDYhAIwwjcEhC4hr3F5TkPmVdseXN8pWARAUkK%2BMpX%2FajW4LNza7JLVJ%2B1RId%2BUjrMFj0XMBJNEkBF5A8My9e7570imH2qkh5MEILk5516bR8CKYcaHhuC5vBBUy1Lhmaj%2FwB50%3D; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-gb.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c360/v1/track HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-gb.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js_tracking?ref_action=content&ver=2&stype=1&lang=en-gb&pid=8fce65f64498001f&ete=&etg=&etcg=eWfCDMeICKFNcfEEHFRT\|4&ets=&etgwv= HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"X-Booking-ET-Serialized-State: EzjSDHH-jwSonZfrsB6BZy2_XjFMImDud7C83xD16WjB0IDZNg6wyll1FVx4vN4TuX-Booking-Language-Code: en-gbX-Booking-Client-Info: sec-ch-ua-mobile: ?0X-Booking-AID: 304142User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-Booking-Pageview-Id: 8fce65f64498001fX-Booking-Info: X-Booking-SiteType-Id: 1X-Booking-Session-Id: bd8594232a35d0b0aa19987e3b97a73dsec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D
Source: global traffic	HTTP traffic detected: GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: zKkk532iVwRD6VHt3INHlg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy-consents/implicit HTTP/1.1Host: account.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D; _gat=1; lastSeen=0; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImQxNzA3YWJjLTViNzMtNDc1YS1hMjJhLTE2YTIwNjU0NDJlYyJ9fQ; bkng_sso_session=e30; bkng_sso_ses=e30
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&gjid=1336240905&_gid=1950907471.1720017009&_u=aGBAgAIJAAAAAGgMI~&z=106604052 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&_u=aGBAgAIJAAAAAGgMI~&z=921114110 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/challenge.js HTTP/1.1Host: d8c14d4960ca.edge.sdk.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js_tracking?ref_action=content&ver=2&stype=1&lang=en-gb&pid=8fce65f64498001f&ete=&etg=&etcg=eWfCDMeICKFNcfEEHFRT\|4&ets=&etgwv= HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D; _gat=1; lastSeen=0; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=nonGDPR&implicitConsentDate=1720017010321&isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=e49875b7-6e18-40b5-a28d-a6771aa14937&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Fcontent%2Fprivacy.en-gb.html%3Flabel%3Dgen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%2520sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ%26sid%2520%3D930746e7f78d5b33410375991db31657&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&_u=aGBAgAIJAAAAAGgMI~&z=921114110 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/challenge.js HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c360/v1/track HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=nonGDPR&implicitConsentDate=1720017010321&isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=e49875b7-6e18-40b5-a28d-a6771aa14937&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Fcontent%2Fprivacy.en-gb.html%3Flabel%3Dgen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%2520sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ%26sid%2520%3D930746e7f78d5b33410375991db31657&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; lastSeen=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/verify HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: iYJG5BMy1UvO1D2N/OHUuQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en-us?utm_source=extranet_login_page HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; lastSeen=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJIf-None-Match: "1720016997"
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304If-None-Match: "605f0374-750"If-Modified-Since: Sat, 27 Mar 2021 10:05:40 GMT
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304If-None-Match: "605f0374-1ed1"If-Modified-Since: Sat, 27 Mar 2021 10:05:40 GMT
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /signals/config/137657823624702?v=2.9.160&r=stable&domain=partner.booking.com&hme=733c3732ec767f7a62e7787aff967e6d19b1e13e533937876f2e15efe07bf678&ex_m=67%2C113%2C100%2C104%2C58%2C3%2C93%2C66%2C15%2C91%2C84%2C49%2C51%2C160%2C163%2C175%2C171%2C172%2C174%2C28%2C94%2C50%2C73%2C173%2C155%2C158%2C168%2C169%2C176%2C122%2C39%2C33%2C134%2C14%2C48%2C181%2C180%2C124%2C17%2C38%2C1%2C41%2C62%2C63%2C64%2C68%2C88%2C16%2C13%2C90%2C87%2C86%2C101%2C103%2C37%2C102%2C29%2C25%2C156%2C159%2C131%2C27%2C10%2C11%2C12%2C5%2C6%2C24%2C21%2C22%2C54%2C59%2C61%2C71%2C95%2C26%2C72%2C8%2C7%2C76%2C46%2C20%2C97%2C96%2C98%2C9%2C19%2C18%2C81%2C53%2C79%2C32%2C70%2C0%2C89%2C31%2C78%2C83%2C45%2C44%2C82%2C36%2C4%2C85%2C77%2C42%2C34%2C80%2C2%2C35%2C60%2C40%2C99%2C43%2C75%2C65%2C105%2C57%2C56%2C30%2C92%2C55%2C52%2C47%2C74%2C69%2C23%2C106 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX1VTIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLXVzP3V0bV9zb3VyY2U9ZXh0cmFuZXRfbG9naW5fcGFnZSNtYWluLWNvbnRlbnQiLCJ1cmxSZWZlcnJlciI6IiIsImNoYW5uZWwiOiJXZWIiLCJiZWFjb25WZXJzaW9uIjoxNiwiY29uZmlnVmVyc2lvbiI6IjEyNiIsImNvbnRlbnRab25lcyI6WyJzaWRlYmFyX2Jhbm5lciIsInBvcHVwX3N1cnZleSIsImJvb2tpbmdfbWNwX2dhIiwiaG9tZXBhZ2VfY2Fyb3VzZWwiLCJob21lcGFnZV9taW5pX2hlcm9fYmFubmVyIiwiaG9tZXBhZ2VfcmVjb21tZW5kZWRfcmVhZHMiLCJob21lcGFnZV9yZWNvbW1lbmRlZF9yZWFkc18xc3RfdGVhc2VyIiwiaG9tZXBhZ2VfY3RhIl19LCJ1c2VyIjp7ImFub255bW91c0lkIjoiMWU1N2M4Zjk4NThlNjQ0OCIsImlkZW50aXRpZXMiOnsiZ2FDbGllbnRJZCI6IjIwOTUxNzExMTIuMTcyMDAxNzAwOSJ9fSwiaW50ZXJhY3Rpb24iOnsibmFtZSI6IlZpZXdlZCBIb21lcGFnZSJ9LCJwYWdlVmlldyI6dHJ1ZSwiY29uc2VudHMiOltdLCJhY2NvdW50Ijp7fSwiX3Rvb2xzRXZlbnRMaW5rSWQiOiIzNjE0ODk0MjM1MjQ3ODkyIiwiZXhwbGFpbiI6dHJ1ZX0%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=fzXpBkEoLM+0CDtPWvLyBSmdHZ0IWxb2X8jCTOhBq69PH67VHvly1CNGTtH2C2Hy0jZant24hzvTL/gtiYVdtbyOgE+i+rdIXBftdHm1kgnJcmhjS9AtShwXUhgRcU7646EzK2tSoMR4FxaG9P/hVwJ5QcQV8FL6NWupMrWPusqx4O7gRvA=
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-LVHK6H547B&gacid=2095171112.1720017009&gtm=45je4710v889588973z8811498483za200zb811498483&dma=0&gcs=G111&gcd=13r3r3r3r5&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&z=1164317894 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4890&pxr=1&gdpr=0&pst=1720017025277 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendors-react-chat_node_modules_react-hook-form_dist_index_esm_mjs-aeac223be9413b14fbb3.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /react-chat_src_components_Carousel_Carousel_js-react-chat_src_components_MessageButton_Messag-020420-e1a675876deb028268b2.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Chat-d91fd68a244be422d61e.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&_u=QACAAEAAAAAAACAAI~&z=531817729 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: fS29FFUuKyBH3/pmOMty/w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 1NJbvkRphCkPOAjlZvrcqA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&gjid=1577760482&_gid=1950907471.1720017009&_u=QACAAEAAAAAAACAAI~&z=1098597650 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=fzXpBkEoLM+0CDtPWvLyBSmdHZ0IWxb2X8jCTOhBq69PH67VHvly1CNGTtH2C2Hy0jZant24hzvTL/gtiYVdtbyOgE+i+rdIXBftdHm1kgnJcmhjS9AtShwXUhgRcU7646EzK2tSoMR4FxaG9P/hVwJ5QcQV8FL6NWupMrWPusqx4O7gRvA=; AWSALBTGCORS=svghumMS8q2XFvjHwbZiLtsKXN3DSDOpyLI+dfOEZObn2GeRIXfOOmpu0aMak8if0rCGENKhfHpWtVMijhRnVKIHKKrup9RXLxeUm0Xkvhkuf+UGKxg0JedSJ8hQVSe0QE4ye/UqYqnFRw+kc8/OgEiXGFsbLBolEE9k0xZdqgBmPF/O/Do=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2069667428.1720017025277\|1720017025268\|\|0\|\|\|\|0\|18.07\|40.95803; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4890&pxr=1&gdpr=0&pst=1720017025277 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&_u=QACAAEAAAAAAACAAI~&z=531817729 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/stats/bot/5062/public/current_wait_time?sources%5B%5D=web HTTP/1.1Host: sage.kindly.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/stats/bot/5062/public/current_wait_time?sources%5B%5D=web HTTP/1.1Host: sage.kindly.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: lD/ASftr1S3ixyB29Ep1Vg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /data HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: wk4mmxzPzqBkM92tBSaeSQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=175100-175100If-Range: "d2ac4d984b36b772a3b08736889192a7"
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=175100-180439If-Range: "d2ac4d984b36b772a3b08736889192a7"
Source: global traffic	HTTP traffic detected: GET /en-us HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fp
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: VmP3JKziue6owsUcNVrKPA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 9qFATANX9Uk0t89Dsafq5w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: bQW2B89JJFyKLRi0Vdq93w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-4
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-4
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, triggerReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.1.2095171112.1720017009; _ga_LVHK6H547B=GS1.1.
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.1.2095171112.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017033
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=849&pxr=1&gdpr=0&pst=1720017033441 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX1VTIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLXVzIiwidXJsUmVmZXJyZXIiOiIiLCJjaGFubmVsIjoiV2ViIiwiYmVhY29uVmVyc2lvbiI6MTYsImNvbmZpZ1ZlcnNpb24iOiIxMjYiLCJjb250ZW50Wm9uZXMiOlsic2lkZWJhcl9iYW5uZXIiLCJwb3B1cF9zdXJ2ZXkiLCJib29raW5nX21jcF9nYSIsImhvbWVwYWdlX2Nhcm91c2VsIiwiaG9tZXBhZ2VfbWluaV9oZXJvX2Jhbm5lciIsImhvbWVwYWdlX3JlY29tbWVuZGVkX3JlYWRzIiwiaG9tZXBhZ2VfcmVjb21tZW5kZWRfcmVhZHNfMXN0X3RlYXNlciIsImhvbWVwYWdlX2N0YSJdfSwidXNlciI6eyJhbm9ueW1vdXNJZCI6IjFlNTdjOGY5ODU4ZTY0NDgiLCJpZGVudGl0aWVzIjp7ImdhQ2xpZW50SWQiOiIyMDk1MTcxMTEyLjE3MjAwMTcwMDkifX0sImludGVyYWN0aW9uIjp7Im5hbWUiOiJWaWV3ZWQgSG9tZXBhZ2UifSwicGFnZVZpZXciOnRydWUsImNvbnNlbnRzIjpbXSwiYWNjb3VudCI6e30sIl90b29sc0V2ZW50TGlua0lkIjoiMjMxOTA3NzgzMjI2MTEwNzIiLCJleHBsYWluIjp0cnVlfQ%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=XU5tyIfq/lXaSF3733zIioTJlG5x74irCB8riPgCKIKj6zkU9u3AHLZ13B/GegkNup8PV4+WNOIXYfdX4oPdNlughmhLPrKualeZW9i9ogeLZqS1rdu2cuP62kV4QgN5HEjbggsYiQxaAubXtjATUgWeYmvvR+sSE27t7rp75VvU7aXBug8=
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=849&pxr=1&gdpr=0&pst=1720017033441 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2069667428.1720017025277$070333776ddae7c83e4bd79702bfa0d624d2de56.-2069667428.1720017033441\|1720017030064\|2071166924_-791013993\|0\|\|\|\|0\|18.07\|40.95803; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=XU5tyIfq/lXaSF3733zIioTJlG5x74irCB8riPgCKIKj6zkU9u3AHLZ13B/GegkNup8PV4+WNOIXYfdX4oPdNlughmhLPrKualeZW9i9ogeLZqS1rdu2cuP62kV4QgN5HEjbggsYiQxaAubXtjATUgWeYmvvR+sSE27t7rp75VvU7aXBug8=; AWSALBTGCORS=H2ns3/xroKocVCyzPYbZjgGynZV67oQM3Mg1WwVPWkKifRXqnFoMTFqo26GjBocXApGEw+tZ564emf7HMp7E6xnBavbwUBuzYatybTI9HQkoZFQA4ZdO5N/DEz2wvjnp6fZkt3DIKlSjR6O37rg2yYG2DtTvF+IZCEa8iPZPJg8OQsJTJUA=
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=1&li=0&lh=0&ls=0&d=AABMAcAAAAcCgAIxAAAAMgAFAAOLADMBAAAAfgSREgABBLcSAAIEuBIAAwS4EgAEBLgSAAUEyAYCgAIxAAANkw4AABAuDZgmAAEAAA2bJgACAAANqiYAAwAADbImAAQAAA2-JgAFAAAN5yYABgAADegmAAcAAA3tJgAIAAAN_SYACQAADg4mAAoAAA4_JgALAAAOSCYADAAADkgmAA0AAA_-JgAOAAAQ_CYADwAAEP8mABAAABEBJgARAAARGyYAEgAAERsmABMAABEhJgAUAAARKCYAFQAAETkmABYAABFBJgAXAAARQSYAGAAAEUkmABkAABFJJgAaAAARVCYAGwAAEVUmABwAABFcJgAdAAARXCYAHgAAEWkmAB8AABFqJgAgAAARciYAIQAAEXMmACIAABGAJgAjAAARgSYAJAAAEYomACUAABGMJgAmAAARjCYAJwAAEl4CAoYCNxJnKQXMp-EABhboBwKGAjcAABbpKBbpKgABAAD__wAc4CYAKAAAHOEmACkAABzkJgAqAAAkjyYAKwAAJJAmACwAACSRJgAtAAAodCYALgAAKHUmAC8AACiCJgAwAAAogiYAMQAAKIMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi11cw==,Mjp2RTdRcQ==,MzpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NDo3Y0hNRA==,NTpFeHBlcmllbmNlIDE=,NjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: oAwry0o++s8pWPAFLOoVfQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: tlGPz8WVoh2NZDoMcsB79Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=1&li=0&lh=0&ls=0&d=AABMAcAAAAcCgAIxAAAAMgAFAAOLADMBAAAAfgSREgABBLcSAAIEuBIAAwS4EgAEBLgSAAUEyAYCgAIxAAANkw4AABAuDZgmAAEAAA2bJgACAAANqiYAAwAADbImAAQAAA2-JgAFAAAN5yYABgAADegmAAcAAA3tJgAIAAAN_SYACQAADg4mAAoAAA4_JgALAAAOSCYADAAADkgmAA0AAA_-JgAOAAAQ_CYADwAAEP8mABAAABEBJgARAAARGyYAEgAAERsmABMAABEhJgAUAAARKCYAFQAAETkmABYAABFBJgAXAAARQSYAGAAAEUkmABkAABFJJgAaAAARVCYAGwAAEVUmABwAABFcJgAdAAARXCYAHgAAEWkmAB8AABFqJgAgAAARciYAIQAAEXMmACIAABGAJgAjAAARgSYAJAAAEYomACUAABGMJgAmAAARjCYAJwAAEl4CAoYCNxJnKQXMp-EABhboBwKGAjcAABbpKBbpKgABAAD__wAc4CYAKAAAHOEmACkAABzkJgAqAAAkjyYAKwAAJJAmACwAACSRJgAtAAAodCYALgAAKHUmAC8AACiCJgAwAAAogiYAMQAAKIMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi11cw==,Mjp2RTdRcQ==,MzpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NDo3Y0hNRA==,NTpFeHBlcmllbmNlIDE=,NjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en-gb HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017034.51.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fp
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: ydhWeM5vLSomfYS1QD0UVw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_OQFMChpj4TK2MwcEZQHui-t-iGCpTgvgxnaPbxulWTA.js?scope=footer&delta=0&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: nJecMmjLH2ysrynfZqIOCA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: g8kw9l6/nRB9Vyzm6IVY7Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 2qYZGy1iFwFcjTajiERWWA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger;navigation-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=fal
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-gb&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=1179&pxr=1&gdpr=0&pst=1720017039738 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=SxcVHKrUiZJZmplH3mGl+n/CeB5QzRdUGvhkgV2LS85RM2IVFJixLramuj+390g5F02CHNAgRsqua+ES2hH9KvgbU1sEmeE071EjdqPCIHH/3oB0IN+z5n9nQ1ONlwH+0WvIdKShjcZQ2C3b71hAQJubB/MpuAo15whchEjaG6myijYw888=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: l7WgoVTl/VDe6VRw9cK9Cg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=CDfOOv/zqzE2WWjKfT2StEQBaaqq5L3So2SugI6JnZe1Oep2fITuYbwKQywk3QVWV1lGyYdxNvuKE0elngjAWJiwiSWRglOKd2eGO8v8Bwo2mB1wAR11PqhzL+xJII3LAb4DUIEv/0YDv+8okIBkbXIZjqALRoNFbByf1u1Xd+9kdha0tm4=; AWSALBTGCORS=K9ZeF1LTP/Bmm3fJnhkvkwWDH8ptyQnYpgtaTrkFF7x/+H0fmK0m6xbykVzjdrdIeYEXBVQNgv17PBQ7as1C8L5S2LrreS0A9zHMY/MU08fC9+k+e+NWyQI7aOQWIYJNHBdgLZvImKgfz8TxncTIUnYgB73+TIBWLoYxGJa0hWkjN1Iw8SI=
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-gb&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=1179&pxr=1&gdpr=0&pst=1720017039738 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: YQjsimwKx3mEu6mCHDnaig==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Zoyw/nZuBxgWHrsYE3zEQA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bg HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpart
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: qA/x7QhWTvWJDL5fuLf0rg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=070333776ddae7c83e4bd79702bfa0d624d2de56&v=18.07&pst=1720017033441&q=1&li=0&lh=0&ls=0&d=AADfAoMAAAAFAAOLAAACAokBvAGjKQb_l-AAAALAEgABA6gHAokBvAACA7EoA7IqAAEAAP__AAUzEgADBTMSAAQFMxIABQU0EgAGBpIOAAAQLgb7JgABAAAHBCYAAgAABwUmAAMAAAcJJgAEAAAHQSYABQAAB0UmAAYAAAdKJgAHAAAHZyYACAAAB2wmAAkAAAdsJgAKAAAHbSYACgAACLYGAoYBuQACCOUCAoQBtwjlKQT_MSgABwjvJgALAAAJXQICgAGzCqomAAwAAAqxJgANAAAKtSYADgAACrgmAA4AAArlJgAPAAAK5SYAEAAACuUmABAAAArmKQNmLXIABwr5JgARAAAK_CYAEgAACwUmABMAAAsQJgAUAAALECYAFQAACxEmABUAAAsYJgAWAAALGCYAFwAACxkmABcAAAsxJgAYAAALMiYAGQAACzMmABkAAAtLJgAaAAALTCYAGwAAC0wmABsAAAtTJgAcAAALVCYAHQAAC1QmAB0AAAteJgAeAAALXiYAHwAAC14mAB8AAAtqJgAgAAALaiYAIQAAC2smACEAAAt1JgAiAAALdSYAIwAAC3YmACMAAAt-JgAkAAALfyYAJQAAC38mACUAAAuJJgAmAAALiyYAJwAAC4smACgAAAuSJgAoAAAN6AcCgAGzAAIN6SgN6SoAAAAA__8BF34mACkAABd_JgAqAAAXgSYAKwAAF4QmACwAAB4bJgAtAAAeHCYALgAAHiYmAC4AAB4tBgKAAbMAAh55BwKAAbMAAh55KB55KgAAAAD__wIfCiYALwAAIfsmADAAACH8JgAxAAAh_iYAMQAAIg4mADIAACIOJgAzAAAiDyYAMwAAJpET.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,MTplbi11cw==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: IxjWcQ1L0wgVeXJ8xg91IA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=070333776ddae7c83e4bd79702bfa0d624d2de56&v=18.07&pst=1720017033441&q=1&li=0&lh=0&ls=0&d=AADfAoMAAAAFAAOLAAACAokBvAGjKQb_l-AAAALAEgABA6gHAokBvAACA7EoA7IqAAEAAP__AAUzEgADBTMSAAQFMxIABQU0EgAGBpIOAAAQLgb7JgABAAAHBCYAAgAABwUmAAMAAAcJJgAEAAAHQSYABQAAB0UmAAYAAAdKJgAHAAAHZyYACAAAB2wmAAkAAAdsJgAKAAAHbSYACgAACLYGAoYBuQACCOUCAoQBtwjlKQT_MSgABwjvJgALAAAJXQICgAGzCqomAAwAAAqxJgANAAAKtSYADgAACrgmAA4AAArlJgAPAAAK5SYAEAAACuUmABAAAArmKQNmLXIABwr5JgARAAAK_CYAEgAACwUmABMAAAsQJgAUAAALECYAFQAACxEmABUAAAsYJgAWAAALGCYAFwAACxkmABcAAAsxJgAYAAALMiYAGQAACzMmABkAAAtLJgAaAAALTCYAGwAAC0wmABsAAAtTJgAcAAALVCYAHQAAC1QmAB0AAAteJgAeAAALXiYAHwAAC14mAB8AAAtqJgAgAAALaiYAIQAAC2smACEAAAt1JgAiAAALdSYAIwAAC3YmACMAAAt-JgAkAAALfyYAJQAAC38mACUAAAuJJgAmAAALiyYAJwAAC4smACgAAAuSJgAoAAAN6AcCgAGzAAIN6SgN6SoAAAAA__8BF34mACkAABd_JgAqAAAXgSYAKwAAF4QmACwAAB4bJgAtAAAeHCYALgAAHiYmAC4AAB4tBgKAAbMAAh55BwKAAbMAAh55KB55KgAAAAD__wIfCiYALwAAIfsmADAAACH8JgAxAAAh_iYAMQAAIg4mADIAACIOJgAzAAAiDyYAMwAAJpET.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,MTplbi11cw==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: Rt3uCTQS6jkjRtVZkG1gEQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: dp5VbW1DjJZEIUtx8QLYug==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=2&li=5940&lh=907&ls=126&d=ADgeACIAAAsABwABDAAHA_smADIAAAP8JgAzAAAD_iYANAAAGK8T.Nzoja2luZGx5LWNoYXQtYXBpID4gZGl2ID4gOmRvY3VtZW50LWZyYWdtZW50OiA+ICNjaGF0Q29udGFpbmVyID4gZGl2ID4gZGl2ID4gZGl2ID4gZGl2OlsyXSA+IGRpdiA+IGRpdjpbMl0gPiBidXR0b24=. HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_J-ns2p5_JxZ8i6--J9QPWWQZl2yX7MLYJFdUOLE4yxk.js?scope=footer&delta=0&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252F
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252F
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: jXwydd1bzVDE2A1bDK/HUw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/bg.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: geEIG5rd47xrN4wztauR1w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~172001703
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=2&li=5940&lh=907&ls=126&d=ADgeACIAAAsABwABDAAHA_smADIAAAP8JgAzAAAD_iYANAAAGK8T.Nzoja2luZGx5LWNoYXQtYXBpID4gZGl2ID4gOmRvY3VtZW50LWZyYWdtZW50OiA+ICNjaGF0Q29udGFpbmVyID4gZGl2ID4gZGl2ID4gZGl2ID4gZGl2OlsyXSA+IGRpdiA+IGRpdjpbMl0gPiBidXR0b24=. HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=1&li=0&lh=0&ls=0&d=AACsAfYAAQAFAAOLATMHAoABswAAAr4oAr4qAAEAAP__AAL6AgKAAbMDIhIAAQNpKQNmk5QAAgS1EgADBLUSAAQEthIABQS2EgAGBNUCAokBvAU7KQb_NcsABwb-DgAAEC4HhSYAAQAAB4UmAAIAAAeGJgADAAAHliYABAAAB5omAAUAAAelJgAGAAAH4iYABwAAB-ImAAgAAAkWBgKIAbsAAAlJAgKFAbgJSSkFZjIWAAcJXyYACQAACYICAoIBtgntAgKAAbMKHikDZi1yAAcK-CYACgAACwomAAsAAAueJgAMAAALoSYADQAAC6MmAA4AAAvOJgAPAAAL0CYAEAAAC9YmABEAAAvZJgASAAAL4CYAEwAAC-gmABQAAAvoJgAVAAAL9SYAFgAAC_UmABcAAAv_JgAYAAAL_yYAGQAADAkmABoAAAwKJgAbAAAMFyYAHAAADBgmAB0AAAwhJgAeAAAMIiYAHwAADDYmACAAAAw3JgAhAAAMRCYAIgAADEcmACMAAAxbJgAkAAAMWyYAJQAADGQmACYAAAxkJgAnAAAMdyYAKAAADHgmACkAAAyGJgAqAAAMhiYAKwAADJImACwAAAyTJgAtAAAMlCYALgAADfkHAoABswAADfooDfoqAAAAAP__ARfvJgAvAAAX8iYAMAAAJqMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi1nYg==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: jqwqILU8RRbFqnijDtrwww==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Y81hiQX+Ot67p9HCmvoMHw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 2ClhqQJYGiwTNz+wNlsunA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fbg&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4841&pxr=1&gdpr=0&pst=1720017051454 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=HJKuNUE0u6NwAFNNOsOr2FvqYebgtqjb5k2QyYWdoveQoLfzFR5cgpO4DrlMNQkRnv7iOz4/3lNFhcsldapNbAOwce2SbZbTN1rs9Wpnv6D84ZwwDf2Svcfqow4HMD/M+q1n6Mv5njW3i5WujjhSrOqI/+0CMM065Fj71OzEH91yjloV/C0=
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/bg.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-gb~1720017043040; _ga=GA1.2.2095171112.1720017009; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A51+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=5&pvis=5&th=1230916.1524893.5.5.1.1.1720017006852.1720017052241.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017052.33.0.0; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=1&li=0&lh=0&ls=0&d=AACsAfYAAQAFAAOLATMHAoABswAAAr4oAr4qAAEAAP__AAL6AgKAAbMDIhIAAQNpKQNmk5QAAgS1EgADBLUSAAQEthIABQS2EgAGBNUCAokBvAU7KQb_NcsABwb-DgAAEC4HhSYAAQAAB4UmAAIAAAeGJgADAAAHliYABAAAB5omAAUAAAelJgAGAAAH4iYABwAAB-ImAAgAAAkWBgKIAbsAAAlJAgKFAbgJSSkFZjIWAAcJXyYACQAACYICAoIBtgntAgKAAbMKHikDZi1yAAcK-CYACgAACwomAAsAAAueJgAMAAALoSYADQAAC6MmAA4AAAvOJgAPAAAL0CYAEAAAC9YmABEAAAvZJgASAAAL4CYAEwAAC-gmABQAAAvoJgAVAAAL9SYAFgAAC_UmABcAAAv_JgAYAAAL_yYAGQAADAkmABoAAAwKJgAbAAAMFyYAHAAADBgmAB0AAAwhJgAeAAAMIiYAHwAADDYmACAAAAw3JgAhAAAMRCYAIgAADEcmACMAAAxbJgAkAAAMWyYAJQAADGQmACYAAAxkJgAnAAAMdyYAKAAADHgmACkAAAyGJgAqAAAMhiYAKwAADJImACwAAAyTJgAtAAAMlCYALgAADfkHAoABswAADfooDfoqAAAAAP__ARfvJgAvAAAX8iYAMAAAJqMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi1nYg==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fbg&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4841&pxr=1&gdpr=0&pst=1720017051454 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: dCQvl1vDDUWPkkD0IMRuxA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=HJKuNUE0u6NwAFNNOsOr2FvqYebgtqjb5k2QyYWdoveQoLfzFR5cgpO4DrlMNQkRnv7iOz4/3lNFhcsldapNbAOwce2SbZbTN1rs9Wpnv6D84ZwwDf2Svcfqow4HMD/M+q1n6Mv5njW3i5WujjhSrOqI/+0CMM065Fj71OzEH91yjloV/C0=; AWSALBTGCORS=LuycQ91aWPbGz99HDnEtmyAwrWGuroKvSBHP46f7eyvWZ/Paf94cALLEIoqVuTQZWm4qzqc7hiELurUkXZKf6XSMCrbRbzsu5tOLFbwKPJGRSqO+hfVlQUaxak9z799lmd/Uv8mVUCAb2d51/ok37znbSJh302n8jmUzxzAI1UVJzafnLH4=
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: VuugWJxaqB3lL1H2LKUerA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: SZh7LvT/k2cbrPa96C9LGA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: /cS4Rwuz04ntMP/JuS7Y7A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: ffeMFHVsc329xdrVqjA64g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Jv30qiw0Nmaht2yUQXvHYA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: /velaq3bMwr5lE6kv+V4tg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: frYaBy8j50aL4DfUISeXOg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=2&li=3749&lh=907&ls=0&d=ACdrALEAACYAMQAAAAEmADIAAAAGJgAzAAADLAYCgAGzAAADfwcCgAGzAAADgCgDgCoAAAAA__8AA7kmADQAAAO6JgA1AAADuyYANgAAA8kmADcAAAPKJgA4AAADyiYAOQAADWAGAoABswAADbMHAoABswAADbQoDbQqAAAAAP__AQ3lJgA6AAAN5iYAOwAADeYmADwAABCjJgA9AAAQpSYAPgAAELwmAD8AABC9JgBAAAApoBM..bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /*Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_268.2.dr	String found in binary or memory: buttons work using pieces of code from the individual social media providers, allowing third party cookies to be placed on your device.</p><p>These cookies can be purely functional, but they can also be used to keep track of which websites you visit from their network, to build a profile of your online browsing behaviour and to show you personalised ads. This profile will be partly built using comparable information the providers receive from your visits to other websites in their network.</p><p>To read more about what social media providers do with your personal data, take a look at their cookie and/or privacy statements: <a href="https://www.facebook.com/policies/cookies/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> (includes Instagram, Messenger and Audience Network), <a href="https://www.snap.com/en-US/cookie-policy/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Snapchat</span></a>, <a href="https://policy.pinterest.com/en/cookies" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Pinterest</span></a> and <a href="https://twitter.com/en/privacy#chapter2.3" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Twitter</span></a>. Be aware that these statements may be updated from time to time.</p></li></ul><p>We work with trusted third parties to collect data. We may also sometimes share information with these third parties, such as your email address or phone number. These third parties might link your data to other information they collect to create custom audiences or deliver targeted ads. For information on how these third parties process your data, please take a look at the following links: <a href="http://www.google.com/policies/privacy/partners/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>How Google uses information</span></a>, <a href="https://www.facebook.com/policy.php" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook's data policy</span></a>.</p><h4 id="non-cookie-techniques" class="policy_font_display_one">Non-cookie techniques equals www.facebook.com (Facebook)
Source: chromecache_268.2.dr	String found in binary or memory: buttons work using pieces of code from the individual social media providers, allowing third party cookies to be placed on your device.</p><p>These cookies can be purely functional, but they can also be used to keep track of which websites you visit from their network, to build a profile of your online browsing behaviour and to show you personalised ads. This profile will be partly built using comparable information the providers receive from your visits to other websites in their network.</p><p>To read more about what social media providers do with your personal data, take a look at their cookie and/or privacy statements: <a href="https://www.facebook.com/policies/cookies/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> (includes Instagram, Messenger and Audience Network), <a href="https://www.snap.com/en-US/cookie-policy/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Snapchat</span></a>, <a href="https://policy.pinterest.com/en/cookies" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Pinterest</span></a> and <a href="https://twitter.com/en/privacy#chapter2.3" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Twitter</span></a>. Be aware that these statements may be updated from time to time.</p></li></ul><p>We work with trusted third parties to collect data. We may also sometimes share information with these third parties, such as your email address or phone number. These third parties might link your data to other information they collect to create custom audiences or deliver targeted ads. For information on how these third parties process your data, please take a look at the following links: <a href="http://www.google.com/policies/privacy/partners/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>How Google uses information</span></a>, <a href="https://www.facebook.com/policy.php" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook's data policy</span></a>.</p><h4 id="non-cookie-techniques" class="policy_font_display_one">Non-cookie techniques equals www.twitter.com (Twitter)
Source: chromecache_352.2.dr	String found in binary or memory: (function(a,b,c,d){var e={exports:{}};e.exports;(function(){var f=a.fbq;f.execStart=a.performance&&a.performance.now&&a.performance.now();if(!function(){var b=a.postMessage\|\|function(){};if(!f){b({action:"FB_LOG",logType:"Facebook Pixel Error",logMessage:"Pixel code is not installed correctly on this page"},"");"error"in console&&console.error("Facebook Pixel Error: Pixel code is not installed correctly on this page");return!1}return!0}())return;f.__fbeventsModules\|\|(f.__fbeventsModules={},f.__fbeventsResolvedModules={},f.getFbeventsModules=function(a){f.__fbeventsResolvedModules[a]\|\|(f.__fbeventsResolvedModules[a]=f.__fbeventsModules[a]());return f.__fbeventsResolvedModules[a]},f.fbIsModuleLoaded=function(a){return!!f.__fbeventsModules[a]},f.ensureModuleRegistered=function(b,a){f.fbIsModuleLoaded(b)\|\|(f.__fbeventsModules[b]=a)});f.ensureModuleRegistered("signalsFBEventsGetIwlUrl",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("signalsFBEventsGetTier",function(){return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("SignalsFBEvents.plugins.iwlbootstrapper",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var c=f.getFbeventsModules("SignalsFBEventsIWLBootStrapEvent"),d=f.getFbeventsModules("SignalsFBEventsLogging"),g=f.getFbeventsModules("SignalsFBEventsNetworkConfig"),h=f.getFbeventsModules("SignalsFBEventsPlugin"),i=f.getFbeventsModules("signalsFBEventsGetIwlUrl"),j=f.getFbeventsModules("signalsFBEventsGetTier"),k=d.logUserError,l=/^https:\/\/.\.facebook\.com$/i,m="FACEBOOK_IWL_CONFIG_STORAGE_KEY",n=null;e.exports=new h(function(d,e){try{n=a.sessionStorage?a.sessionStorage:{getItem:function(a){return null},removeItem:function(a){},setItem:function(a,b){}}}catch(a){return}function h(c,d){var e=b.createElement("script");e.async=!0;e.onload=function(){if(!a.FacebookIWL\|\|!a.FacebookIWL.init)return;var b=j(g.ENDPOINT);b!=null&&a.FacebookIWL.set&&a.FacebookIWL.set("tier",b);d()};a.FacebookIWLSessionEnd=func
Source: chromecache_353.2.dr	String found in binary or memory: L.getElementsByTagName("iframe"),oa=Q.length,ma=0;ma<oa;ma++)if(!u&&c(Q[ma],E.xe)){$I("https://www.youtube.com/iframe_api");u=!0;break}})}}else I(v.vtp_gtmOnSuccess)}var q=["www.youtube.com","www.youtube-nocookie.com"],r={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},t,u=!1;Z.__ytl=n;Z.__ytl.C="ytl";Z.__ytl.isVendorTemplate=!0;Z.__ytl.priorityOverride=0;Z.__ytl.isInfrastructure=!1; equals www.youtube.com (Youtube)
Source: chromecache_353.2.dr	String found in binary or memory: Math.round(p);v["gtm.videoCurrentTime"]=Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Tj:function(){e=Db()},pd:function(){d()}}};var jc=ka(["data-gtm-yt-inspected-"]),DC=["www.youtube.com","www.youtube-nocookie.com"],EC,FC=!1; equals www.youtube.com (Youtube)
Source: chromecache_241.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=nA(a,c,e);O(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return O(122),!0;if(d&&f){for(var m=Ob(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},qA=function(){var a=[],b=function(c){return tb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: return b}BC.J="internal.enableAutoEventOnTimer";var jc=ka(["data-gtm-yt-inspected-"]),DC=["www.youtube.com","www.youtube-nocookie.com"],EC,FC=!1; equals www.youtube.com (Youtube)
Source: chromecache_268.2.dr	String found in binary or memory: t use WhatsApp or similar third-party services to request booking or payment confirmations. If you receive, for example, a WhatsApp message asking you to follow a link to guarantee your booking or complete a related payment, do not reply to this message or follow that link. Instead, we ask that you report the message to our <a id="how-to-contact-us--read-more" aria-labelledby="how-to-contact-us--read-more how-to-contact-us" href="#how-to-contact-us" class="a83ed08757 f88a5204c2 b98133fb50"><span>Customer Service</span></a> team.</p><p>Your social media provider will be able to tell you more about how they use and process your data when you connect to Booking.com through them. This can include combining the personal data they collect when you use Booking.com through them with information they collect when you use other online platforms you have also linked to your social media account.</p><p>If you decide to connect using your Facebook or Google account, please review the following links for information about how these parties use data they receive: <a target="_blank" href="https://www.facebook.com/policy.php" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> and <a target="_blank" href="https://www.google.com/policies/privacy/partners/" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Google</span></a>.</p><hr class="privacy-divider"/><h3 id="personal-data-what-security-procedures" class="policy_font_display_two">What security and retention procedures does Booking.com put in place to safeguard your personal data?</h3><p>We have procedures in place to prevent unauthorised access to, and the misuse of, personal data.</p><p>We use appropriate business systems and procedures to protect and safeguard your personal data. We also use security procedures and technical and physical restrictions for accessing and using the personal data on our servers. Only authorised personnel are permitted to access personal data in the course of their work.</p><p>We equals www.facebook.com (Facebook)
Source: chromecache_241.2.dr	String found in binary or memory: var QB=function(a,b,c,d,e){var f=Lz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Lz("fsl","nv.ids",[]):Lz("fsl","ids",[]);if(!g.length)return!0;var k=Qz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);O(121);if(m==="https://www.facebook.com/tr/")return O(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!ty(k,uy(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: booking.extnnehotteir.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdn.socket.io
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: q-xx.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: partner.booking.com
Source: global traffic	DNS traffic detected: DNS query: bstatic.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: www.googleoptimize.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: rtp-static.marketo.com
Source: global traffic	DNS traffic detected: DNS query: lonrtp1.marketo.com
Source: global traffic	DNS traffic detected: DNS query: try.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: cdn.evgnet.com
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: chat.kindlycdn.com
Source: global traffic	DNS traffic detected: DNS query: cdn.spinnaker-js.com
Source: global traffic	DNS traffic detected: DNS query: www.booking.com
Source: global traffic	DNS traffic detected: DNS query: zn09tjwjvephllacp-partnersatbooking.siteintercept.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: apil1.spinnaker-js.com
Source: global traffic	DNS traffic detected: DNS query: shelves.booking.com
Source: global traffic	DNS traffic detected: DNS query: cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: siteintercept.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: dcinfos-cache.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: bookingdotcomb2b.germany-2.evergage.com
Source: global traffic	DNS traffic detected: DNS query: t-cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: ariane.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: account.booking.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.edge.sdk.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: accommodations.booking.com
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: cdn.mouseflow.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: o2.mouseflow.com
Source: global traffic	DNS traffic detected: DNS query: 261-nrz-371.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: sage.kindly.ai
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com

Source: unknown

HTTP traffic detected: POST /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveContent-Length: 9sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*Content-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_268.2.dr	String found in binary or memory: http://a9.com/-/spec/opensearch/1.1/
Source: chromecache_268.2.dr	String found in binary or memory: http://allaboutcookies.org/
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_362.2.dr	String found in binary or memory: http://benalman.com/about/license/
Source: chromecache_362.2.dr	String found in binary or memory: http://benalman.com/projects/jquery-hashchange-plugin/
Source: chromecache_268.2.dr	String found in binary or memory: http://cars.booking.com/Home.do?affiliateCode=booking-com&adplat=footer&preflang=en
Source: chromecache_282.2.dr	String found in binary or memory: http://github.com/jrburke/almond
Source: chromecache_362.2.dr	String found in binary or memory: http://josscrowcroft.github.com/accounting.js/
Source: chromecache_267.2.dr	String found in binary or memory: http://jquery.com/
Source: chromecache_267.2.dr, chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns#
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns/fb#
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns/fb/booking_com#
Source: chromecache_275.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_255.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLHow
Source: chromecache_271.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLIBM
Source: chromecache_255.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLsimple
Source: chromecache_267.2.dr	String found in binary or memory: http://sizzlejs.com/
Source: chromecache_192.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_271.2.dr	String found in binary or memory: http://www.boldmonday.comhttp://www.ibm.comThis
Source: chromecache_268.2.dr	String found in binary or memory: http://www.opentable.co.uk?ref=13850
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/auth/oauth2?dt=1720017005&aid=304142&redirect_uri=https%3A%2F%2F
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/oauth2/authorize?aid=304142;client_id=d1cDdLj40ACItEtxJLTo;redirect_uri=
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/sso/logout/v3
Source: chromecache_308.2.dr	String found in binary or memory: https://admin.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://admin.booking.com/?lang=en&utm_source=extranet_login_footer&utm_medium=frontend&utm_campaign
Source: chromecache_298.2.dr	String found in binary or memory: https://admin.booking.com/?utm_source=partner_hub&utm_medium=go_to_extranet_link&utm_campaig
Source: chromecache_268.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html
Source: chromecache_298.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=bg&utm_source=partner_hub&utm_m
Source: chromecache_281.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=en-gb&utm_source=phc&utm_medium
Source: chromecache_318.2.dr, chromecache_310.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=en-us&utm_source=phc&utm_medium
Source: chromecache_241.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_338.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_275.2.dr	String found in binary or memory: https://animate.style/
Source: chromecache_268.2.dr	String found in binary or memory: https://authorityportal.booking.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/articles.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/pxgo?token=UmFuZG9tSVYkc2RlIyh9YVyXrXnsfRBJrxVpE5kjB-gC5N-DVBPrZzRuymEwUigSVPl1U
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/pxgo?url=https%3A%2F%2Fbooking.kayak.com%2Fin%3Fp%3Dfooter_link%26mc%3DUSD%26sid
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://bstatic.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://bstatic.com/libs/bui/9.5.6/bui.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://business.booking.com/?aid=304142&lang=en-gb&label=gen173bo-122AEB2AIB
Source: chromecache_268.2.dr	String found in binary or memory: https://careers.booking.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://careers.booking.com/?utm_source=corporate&utm_medium=footer
Source: chromecache_268.2.dr	String found in binary or memory: https://carrier.booking.com/google/places/webautocompletesimple
Source: chromecache_268.2.dr	String found in binary or memory: https://cars.booking.com
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org/consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/OtAutoBlock.js
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_close.svg
Source: chromecache_196.2.dr, chromecache_345.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_external_link.svg
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_guard_logo.svg
Source: chromecache_345.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_persistent_cookie_icon.png
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
Source: chromecache_308.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/axios/dist/axios.min.js
Source: chromecache_353.2.dr	String found in binary or memory: https://cdn.mouseflow.com/projects/
Source: chromecache_308.2.dr	String found in binary or memory: https://cdn.socket.io/socket.io-3.0.1.min.js
Source: chromecache_308.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
Source: chromecache_308.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/images/
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/current-script-polyfill/1.0.0/current-script-polyfill.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/promise/7.0.4/promise-7.0.4.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/css/256aa323.b7ebf6c0.chunk.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/css/client.112a5244.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/034e4287.d0fe97f0.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/256aa323.a3f07c1f.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/a72063b1.7c807fb7.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/client.aef18f37.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/assistant_entrypoint_cloudfront_sd.iq_ltr/611b70b00745fa4412a01012
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/async_wpm_overlay_assets_cloudfront_sd.iq_ltr/abb304bf3600a5cf5f74
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/59a2fade3d36f2f4f9ecd750c27be976b0ac7dee
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/de150bdd2c4f503788221a11564ca289cdb
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/ski_lp_overview_panel_cloudfront_sd.iq_ltr/2b3350935410fe4e36d74ef
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb107
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/apple-touch-icon/5db9fd30d96b1796883ee94be7dddce50b73bb38.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/40749a316c45e239a7149b6711ea4c48d10f8d89.ico
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/fb/7/19dadf908acc5e43f190a0a901ec12c3dd36421d.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acaf
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/de/668350ee17050ec21845c27503ae960695f341a9.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/fr/c48bc65c9dc57035fa983df37e9732c0f0a2663f.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/in/20aa535a5d3c505dd02fea275ed1a36c0fb1fe08.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/mx/f3a3f562a0185d68fb04b2ec01db2062ca6bdb76.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/nl/65e3bcc466c4026a08bdb2671799ca26c3228d19.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/pt/715db1dc3acc79e1e109a9563fbf8a172e873ae5.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845e
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42f
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3d
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/twitter-image-else/566c7081f1deeaca39957e96365c3908f83b95af.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/assistant_entrypoint_cloudfront_sd/ef4280b820a27ed734dd50de76d082ea
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_atlas_v2_cn_cloudfront_sd/bd7e7adbf9731810a79badc567cd4846b1a
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_atlas_v2_non_cn_cloudfront_sd/880672823d34a6cc1366fd38f98c6b4
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_lists_cloudfront_sd/a2299c3f69cdf005cc73075218ac585d89528565.
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_wpm_overlay_assets_cloudfront_sd/c6cb9b63eea61102d4e96fe72b7c
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/atlas_places_async_cloudfront_sd/c94b60c4da2dae6b55fd9eabf168f146fc
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/content_cloudfront_sd/ece690fd13c824529e3870e0e662c417931b8461.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf0
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/main_cloudfront_sd/9d3571bfcfd220f5be846047e043c221bcc1cc2e.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e74460
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/searchbox_cloudfront_sd/f7aa20a8e47580b2d09d2b0785ba3ed32ced4021.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/ski_lp_overview_panel_cloudfront_sd/9d8e7cfd33a37ffb15285d98f697002
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.j
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/opensearch/en-gb/4e7571db3e3392305a9bed7c8dae0d335160dc74.xml
Source: chromecache_308.2.dr	String found in binary or memory: https://code.jquery.com/jquery-3.6.4.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://community.booking.com/?profile.language=en-gb
Source: chromecache_268.2.dr	String found in binary or memory: https://d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js
Source: chromecache_201.2.dr, chromecache_339.2.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_195.2.dr	String found in binary or memory: https://docs.aws.amazon.com/waf/latest/developerguide/waf-javascript-api.html
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://git.drupalcode.org/project/once/-/raw/v1.0.1/LICENSE.md
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://github.com/aFarkas/lazysizes#automatically-setting-the-sizes-attribute
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://github.com/aFarkas/lazysizes#broken-image-symbol
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://github.com/focus-trap/tabbable/blob/master/LICENSE
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://github.com/jquery-form/form
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://github.com/jquery-form/form#license
Source: chromecache_267.2.dr	String found in binary or memory: https://github.com/jquery/jquery-migrate
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr, chromecache_250.2.dr, chromecache_306.2.dr, chromecache_237.2.dr	String found in binary or memory: https://github.com/kenwheeler/slick/blob/master/LICENSE
Source: chromecache_353.2.dr	String found in binary or memory: https://google.com
Source: chromecache_353.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_342.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/css/256aa323.b7ebf6c0.chunk.css.map
Source: chromecache_297.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/css/client.112a5244.css.map
Source: chromecache_240.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/034e4287.d0fe97f0.chunk.js.map
Source: chromecache_277.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/256aa323.a3f07c1f.chunk.js.map
Source: chromecache_235.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/a72063b1.7c807fb7.chunk.js.map
Source: chromecache_299.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/client.aef18f37.js.map
Source: chromecache_268.2.dr	String found in binary or memory: https://join.booking.com/?lang=en-gb&aid=304142&utm_source=footer_menu&utm_medium=fronte
Source: chromecache_268.2.dr	String found in binary or memory: https://join.booking.com/?lang=en-gb&utm_source=topbar&utm_medium=frontend&amp;label=gen
Source: chromecache_268.2.dr	String found in binary or memory: https://lbs.baidu.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://lbs.baidu.com/index.php?title=openprivacy
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://lonrtp1.marketo.com
Source: chromecache_362.2.dr	String found in binary or memory: https://mths.be/cssescape
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://munchkin.marketo.net/
Source: chromecache_268.2.dr	String found in binary or memory: https://news.booking.com/en-us/
Source: chromecache_241.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ar
Source: chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/bg
Source: chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/bg/taxonomy/term/3693
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/cs
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/de
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/el
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-gb
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-gb/community
Source: chromecache_281.2.dr	String found in binary or memory: https://partner.booking.com/en-gb/taxonomy/term/3693
Source: chromecache_268.2.dr	String found in binary or memory: https://partner.booking.com/en-gb?utm_campaign=footer_list&utm_medium=frontend_footer&utm_so
Source: chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-us
Source: chromecache_310.2.dr	String found in binary or memory: https://partner.booking.com/en-us/taxonomy/term/3693
Source: chromecache_308.2.dr	String found in binary or memory: https://partner.booking.com/en-us?utm_source=extranet_login_page
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/es
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/es-ar
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/fr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/he
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/hr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/hu
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/id
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/it
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ja
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ko
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/nl
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pl
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pt
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pt-br
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ro
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ru
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/2023-01/Twowomeninlobby.png
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/avatar_default/public/2024-03/callum_1.png?it
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/medium_400_width/public/2024-06/ukb5394_asset
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/teaser_image_card/public/2023-01/Twowomeninlo
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sv
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/th
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/tr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/vi
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/zh-cn
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/zh-tw
Source: chromecache_268.2.dr	String found in binary or memory: https://plus.google.com/105443419075154950489
Source: chromecache_308.2.dr	String found in binary or memory: https://q-xx.bstatic.com/backend_static/common/flags/new/48-squared/us.png
Source: chromecache_333.2.dr	String found in binary or memory: https://q.bstatic.com/libs/bui/7.3.1/bui.min.css
Source: chromecache_333.2.dr	String found in binary or memory: https://r.bstatic.com/libs/calango/0.500/bui.css
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/focus-trap/tabbable/v6.2.0/LICENSE
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery-form/form/master/LICENSE
Source: chromecache_218.2.dr, chromecache_329.2.dr, chromecache_294.2.dr, chromecache_238.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery/jquery-ui/1.13.2/LICENSE.txt
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery/jquery/3.7.1/LICENSE.txt
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://raw.githubusercontent.com/muicss/loadjs/4.2.0/LICENSE.txt
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://rtp-static.marketo.com
Source: chromecache_242.2.dr	String found in binary or memory: https://s.qualtrics.com/spoke/all/jam
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/company/reservations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/company/search.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/content/complaints.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e9890633
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/content/cs.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/help.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/help.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/login.html?op=oauth_return
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/myreservations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/mysettings.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/reviewtimeline.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://shelves.booking.com/
Source: chromecache_242.2.dr	String found in binary or memory: https://siteintercept.qualtrics.com
Source: chromecache_242.2.dr	String found in binary or memory: https://siteintercept.qualtrics.com/dxjsmodule/
Source: chromecache_353.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_241.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_338.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_268.2.dr	String found in binary or memory: https://support.google.com/chrome/answer/95647?hl=en
Source: chromecache_268.2.dr	String found in binary or memory: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer?redirectloc
Source: chromecache_268.2.dr	String found in binary or memory: https://sustainability.booking.com/
Source: chromecache_338.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://taxi.booking.com
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://tcf.cookiepedia.co.uk
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_281.2.dr, chromecache_323.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://try.abtasty.com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/_frdtcr?aid=304142
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/accommodations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cd
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/affiliate-program/v2/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=4372
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/airport.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/apartments/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/bed-and-breakfast/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/booking-home/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bf
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/business.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/city.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c43a
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content-moderation-policy/overview-page.en-gb.html?label=gen173bo-122AEB2AIB
Source: chromecache_298.2.dr	String found in binary or memory: https://www.booking.com/content/about.bg.html?utm_source=partnerhub&utm_medium=about_booking_com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_281.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-gb.html?utm_source=phc&utm_medium=about_booking_com_lin
Source: chromecache_318.2.dr, chromecache_310.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-us.html?utm_source=phc&utm_medium=about_booking_com_lin
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/ccpa.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/contact-us.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bf
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/dsar.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAE
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/how_we_work.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336b
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ar.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.bg.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ca.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.cs.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.da.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.de.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.el.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-122AEB2AIB&tmpl=docs%2Fprivacy-pol
Source: chromecache_268.2.dr, chromecache_308.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEB
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es-ar.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es-mx.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.et.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.fi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.fr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.he.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hr.html
Source: chromecache_268.2.dr, chromecache_314.2.dr, chromecache_244.2.dr, chromecache_253.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hu.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.id.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.is.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.it.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ja.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ko.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.lt.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.lv.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ms.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.nl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.no.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pt-br.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pt-pt.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ro.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ru.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sk.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sv.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.th.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.tl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.tr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.uk.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.vi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.zh-cn.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.zh-tw.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/terms.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/terms?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/country.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/covid-19-booking-faqs.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/deals/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/destinationfinderdeals.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989063
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/district.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/extended-stays/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336
Source: chromecache_207.2.dr, chromecache_217.2.dr, chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://www.booking.com/general.html?tmpl=docs/privacy-policy
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/genius.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c4
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/guest-house/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/help?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiA
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/hostels/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/hotel/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c43
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/landmark.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/packages.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/region.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c4
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/resorts/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/reviews
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/traveller-awards/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989063
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/trust-and-safety.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/villas/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/about/compliance-and-ethics/human-rights/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/modern-slavery-statement/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.criteo.com/privacy/
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.drupal.org)
Source: chromecache_218.2.dr, chromecache_288.2.dr, chromecache_329.2.dr, chromecache_210.2.dr, chromecache_350.2.dr, chromecache_319.2.dr, chromecache_261.2.dr, chromecache_213.2.dr, chromecache_259.2.dr, chromecache_321.2.dr, chromecache_294.2.dr, chromecache_238.2.dr, chromecache_202.2.dr, chromecache_204.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.drupal.org/licensing/faq
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.google-analytics.com
Source: chromecache_353.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_241.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googleoptimize.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googleoptimize.com/optimize.js?id=GTM-MVTHSWF
Source: chromecache_241.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_353.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_338.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_268.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-5Q664QZ
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-TGMJRCB
Source: chromecache_241.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://www.onetrust.com/products/cookie-consent/
Source: chromecache_353.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443

Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49731 version: TLS 1.2

Source: classification engine

Classification label: mal48.phis.win@24/317@142/50

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1996,i,7617465802996181104,7982531139265237095,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://booking.extnnehotteir.com/admin/o2shi1bka89"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1996,i,7617465802996181104,7982531139265237095,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
173.194.76.157	unknown	United States	15169	GOOGLEUS	false
185.17.186.161	o2.mouseflow.com	Netherlands	60781	LEASEWEB-NL-AMS-01NetherlandsNL	false
18.66.112.15	d2df291ti5v5sq.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
151.101.130.137	code.jquery.com	United States	54113	FASTLYUS	false
18.239.50.127	partner.booking.com	United States	16509	AMAZON-02US	false
18.65.39.18	d8c14d4960ca.edge.sdk.awswaf.com	United States	3	MIT-GATEWAYSUS	false
66.102.1.157	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
13.227.219.47	d2vgu95hoyrpkh.cloudfront.net	United States	16509	AMAZON-02US	false
157.240.0.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
13.224.245.34	de2trjlt8e8rj.cloudfront.net	United States	16509	AMAZON-02US	false
172.64.155.119	geolocation.onetrust.com	United States	13335	CLOUDFLARENETUS	false
18.239.36.10	d2i5gg36g14bzn.cloudfront.net	United States	16509	AMAZON-02US	false
162.13.202.201	lonrtp1.marketo.com	United Kingdom	15395	RACKSPACE-LONGB	false
18.239.36.108	unknown	United States	16509	AMAZON-02US	false
18.238.243.97	unknown	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
188.114.97.3	unknown	European Union	13335	CLOUDFLARENETUS	false
18.245.60.2	d1of1hbywxxm65.cloudfront.net	United States	16509	AMAZON-02US	false
134.213.193.62	261-nrz-371.mktoresp.com	Ireland	15395	RACKSPACE-LONGB	false
108.157.194.44	try-cloudfront.abtasty.com	United States	16509	AMAZON-02US	false
157.240.253.35	unknown	United States	32934	FACEBOOKUS	false
3.165.239.30	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	United States	16509	AMAZON-02US	false
142.250.185.78	www.googleoptimize.com	United States	15169	GOOGLEUS	false
104.26.6.229	chat.kindlycdn.com	United States	13335	CLOUDFLARENETUS	false
104.19.177.52	unknown	United States	13335	CLOUDFLARENETUS	false
151.101.0.114	cdn.evgnet.com	United States	54113	FASTLYUS	false
216.239.38.181	analytics-alv.google.com	United States	15169	GOOGLEUS	false
99.86.4.32	unknown	United States	16509	AMAZON-02US	false
18.239.18.49	unknown	United States	16509	AMAZON-02US	false
216.58.206.36	www.google.com	United States	15169	GOOGLEUS	false
104.26.7.229	unknown	United States	13335	CLOUDFLARENETUS	false
99.86.4.128	du1b3vb35hc0o.cloudfront.net	United States	16509	AMAZON-02US	false
157.240.0.6	scontent.xx.fbcdn.net	United States	32934	FACEBOOKUS	false
142.250.186.132	unknown	United States	15169	GOOGLEUS	false
52.29.156.18	bookingdotcomb2b.germany-2.evergage.com	United States	16509	AMAZON-02US	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
13.32.99.94	unknown	United States	16509	AMAZON-02US	false
104.19.178.52	cdn.cookielaw.org	United States	13335	CLOUDFLARENETUS	false
142.250.186.162	td.doubleclick.net	United States	15169	GOOGLEUS	false
34.120.99.165	sage.kindly.ai	United States	15169	GOOGLEUS	false
52.212.92.193	pirateprod.9k9qh2pzbv.eu-west-1.elasticbeanstalk.com	United States	16509	AMAZON-02US	false
34.36.178.232	ariane.abtasty.com	United States	2686	ATGS-MMD-ASUS	false
13.33.187.125	d2uxzmvxe6bz7q.cloudfront.net	United States	16509	AMAZON-02US	false
188.114.96.3	booking.extnnehotteir.com	European Union	13335	CLOUDFLARENETUS	true
18.239.36.121	unknown	United States	16509	AMAZON-02US	false
142.250.186.164	unknown	United States	15169	GOOGLEUS	false
216.137.44.11	unknown	United States	8014	BATELNETBS	false

Private

IP
192.168.2.8
192.168.2.7

Contacted Domains

Name	IP	Active
d2i5gg36g14bzn.cloudfront.net	18.239.36.10	true
bstatic.com	18.239.36.10	true
cdn.evgnet.com	151.101.0.114	true
chat.kindlycdn.com	104.26.6.229	true
bookingdotcomb2b.germany-2.evergage.com	52.29.156.18	true
d2uxzmvxe6bz7q.cloudfront.net	13.33.187.125	true
booking.extnnehotteir.com	188.114.96.3	true
ariane.abtasty.com	34.36.178.232	true
sage.kindly.ai	34.120.99.165	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
d8c14d4960ca.edge.sdk.awswaf.com	18.65.39.18	true
stats.g.doubleclick.net	66.102.1.157	true
261-nrz-371.mktoresp.com	134.213.193.62	true
scontent.xx.fbcdn.net	157.240.0.6	true
code.jquery.com	151.101.130.137	true
d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	3.165.239.30	true
cdnjs.cloudflare.com	104.17.24.14	true
www.google.com	216.58.206.36	true
d2df291ti5v5sq.cloudfront.net	18.66.112.15	true
pirateprod.9k9qh2pzbv.eu-west-1.elasticbeanstalk.com	52.212.92.193	true
star-mini.c10r.facebook.com	157.240.0.35	true
a.nel.cloudflare.com	35.190.80.1	true
du1b3vb35hc0o.cloudfront.net	99.86.4.128	true
lonrtp1.marketo.com	162.13.202.201	true
d1of1hbywxxm65.cloudfront.net	18.245.60.2	true
partner.booking.com	18.239.50.127	true
www.googleoptimize.com	142.250.185.78	true
de2trjlt8e8rj.cloudfront.net	13.224.245.34	true
analytics-alv.google.com	216.239.38.181	true
d2vgu95hoyrpkh.cloudfront.net	13.227.219.47	true
o2.mouseflow.com	185.17.186.161	true
td.doubleclick.net	142.250.186.162	true
dcinfos-cache.abtasty.com	34.36.178.232	true
cdn.cookielaw.org	104.19.178.52	true
geolocation.onetrust.com	172.64.155.119	true
try-cloudfront.abtasty.com	108.157.194.44	true
cdn.jsdelivr.net	unknown	unknown
siteintercept.qualtrics.com	unknown	unknown
cdn.socket.io	unknown	unknown
try.abtasty.com	unknown	unknown
zn09tjwjvephllacp-partnersatbooking.siteintercept.qualtrics.com	unknown	unknown
accommodations.booking.com	unknown	unknown
cf.bstatic.com	unknown	unknown
apil1.spinnaker-js.com	unknown	unknown
cdn.spinnaker-js.com	unknown	unknown
www.facebook.com	unknown	unknown
cdn.mouseflow.com	unknown	unknown
rtp-static.marketo.com	unknown	unknown
t-cf.bstatic.com	unknown	unknown
www.linkedin.com	unknown	unknown
www.booking.com	unknown	unknown
connect.facebook.net	unknown	unknown
px.ads.linkedin.com	unknown	unknown
munchkin.marketo.net	unknown	unknown
snap.licdn.com	unknown	unknown
account.booking.com	unknown	unknown
q-xx.bstatic.com	unknown	unknown
analytics.google.com	unknown	unknown
shelves.booking.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://chat.kindlycdn.com/react-chat_src_components_Carousel_Carousel_js-react-chat_src_components_MessageButton_Messag-020420-e1a675876deb028268b2.js	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb10712.css	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otCommonStyles.css	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-us.json	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/themes/custom/booking/fonts/icons/icons.woff?v=1.3.3	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda.json	false	Avira URL Cloud: safe	unknown
https://t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/styles/menu_teaser_desktop/public/2024-03/join-booking-hero.jpg.webp?h=56d0ca2e&itok=3dorJ9nt	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://q-xx.bstatic.com/backend_static/common/flags/new/48-squared/us.png	false	Avira URL Cloud: safe	unknown
https://o2.mouseflow.com/html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&gz=1	false	Avira URL Cloud: safe	unknown
https://o2.mouseflow.com/data	false	Avira URL Cloud: safe	unknown
https://o2.mouseflow.com/html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&gz=1	false	Avira URL Cloud: safe	unknown
https://bstatic.com/libs/bui/9.5.6/bui.min.js	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json	false	Avira URL Cloud: safe	unknown
https://try.abtasty.com/71cd12cdf77ebcb750cff91a9bba6f04/manifest.json	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/core/modules/statistics/statistics.php	false	Avira URL Cloud: safe	unknown
https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&_u=QACAAEAAAAAAACAAI~&z=531817729	false	Avira URL Cloud: safe	unknown
https://chat.kindlycdn.com/kindly-chat.js	false	Avira URL Cloud: safe	unknown
https://ariane.abtasty.com/	false	Avira URL Cloud: safe	unknown
https://t-cf.bstatic.com/design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js	false	URL Reputation: safe	unknown
https://partner.booking.com/en-us?utm_source=extranet_login_page#main-content	false		unknown
https://partner.booking.com/sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://www.booking.com/js_tracking?stype=1&sid=43724e98906336bfa0cdee9a49c43a97&ref_action=content&ver=2&lang=en-gb&aid=304142&pid=8fce65f64498001f&m=UmFuZG9tSVYkc2RlIyh9YSpozE4PRLAoEndE-6X-acQ4oOEphYMeih81P7_0SSiSXyByg_c8hu0b6w08ICm-9_WBGq7EIsePmqu3_7Wo7jHBYO1pBWSYHFzFkoBbP0fu_it5nuuhsJRVF77a8SvmugG9Lp3HeurfvO2E4ogZ9wssR0eP_s7NWwZXYEhwcyGArjOFWvSJy-0lEmbcgie0fIlqTPTQv5r8nU-o3I-q9Fc&etgwv=js_onload_resource_transfer_size%7C2205&_=1720017010209	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW	false	Avira URL Cloud: safe	unknown
https://partner.booking.com/sites/default/files/styles/menu_teaser_desktop/public/2023-05/cybersecurity2.png.webp?h=cf1ccd34&itok=ztBNqW6y	false	Avira URL Cloud: safe	unknown
https://td.doubleclick.net/td/ga/rul?tid=G-LVHK6H547B&gacid=2095171112.1720017009&gtm=45je4710v889588973z8811498483za200zb811498483&dma=0&gcs=G111&gcd=13r3r3r3r5&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&z=1164317894	false		unknown
https://bookingdotcomb2b.germany-2.evergage.com/pr?.top=1136&action=Viewed%20Homepage&.tt=869&.dt=6087&.bv=16&_ak=bookingdotcomb2b&_ds=booking_prod&.scv=126&channel=Web&_r=605894&.anonId=1e57c8f9858e6448&_anon=true	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 3 13:29:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	E14DEC68FE5531C18DD672E5C44341DD	7E2C2264637AA6CF3BD08E90E5BA892CDEFE9378	3565542E5EB33A1B8B2DBFFCFE747D80B359779FA89C23C51B013DB3E7A99224
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 3 13:29:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	62C68A83F41CC436B5A6B4383E118810	F5ED129EBB0F6E78198CFC85733A7DF74CD55116	095164C9D386968B9E85ACBA56B608EB1389FCD36936FDDAED95E4D1A33FBD5B
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 5 07:00:51 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	AEDB24B72DB2E540CC407C7632A32475	EA786A888A2D310E280AA10C44F9D3F1E90C85B2	803998CB37E011F4A3E95066485CE463D061C456C234CF29DC152F5330838014
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 3 13:29:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	4655EB858AB4329F1933C631CA9975B8	CB0777F3CDBC70F3A99C98C9E3C590D6059495B5	B5272F1C94A204FED06781D57DA59536C782983DBDD07217C464E8B676F34FE9
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 3 13:29:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	4418B087C3A5C03A72CD14733072CC02	892B71184D9C62E4AA514F7F0EB8C4070DDF3C00	7FF876107F248137E65DE607FCB62523894A87D086BD4EBF3FBFCE4FFCA93EB5
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 3 13:29:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	05EF2D5241574128C6CD53D969CB5553	D599B4B551014214614618D68B1A80098C9462F8	1B6C61729C361D9AF8E55A128E201D6E7EA2C2F578BD85689606822BC0B2F322
Chrome Cache Entry: 189	PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced	27E71A5124018E16EAE0B8897618623D	D0D54D88B04EDFC71F338C19EAB9994632BC6CED	1D6E86E59AB7235A8343F494C8E8DA6CC02C5A98A75D682401340E6D06935F20
Chrome Cache Entry: 190	SVG Scalable Vector Graphics image	E8209D74AD093F151954A3820C12E5D8	12FBF39039F0182026ABAF8B0A22E75C9BB316F7	C80B9838465A2C5AA19E06C25631CD22D81DD8C76563875EBFB4D35304DFBA47
Chrome Cache Entry: 191	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	6018807017AFEAD14417566F975FFDB4	2EE7C3239E4046E9567C8100DECD9ABE6093B79F	99AF6690771B7B62A1325D0C0B38A9A0300C18921E4877DCF38A239B9C977502
Chrome Cache Entry: 192	ASCII text, with very long lines (53979), with CRLF line terminators	52754C5E798B9483082A5783823E8958	5317D62B3CBD02E1B8745B3B00556B23295289B3	52E55DDD8F43A092BA860A48FE1EC6D579366A6B1B852E96DFAB2AE63A0F7021
Chrome Cache Entry: 193	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 194	Web Open Font Format, TrueType, length 11392, version 1.0	8D5D8BFE30885B0CCBAEB7C4B90ED145	29972E4BC7A005AEACC4AD6590C50522414EBAC7	4D106C1974DEF1C1FFF3D3CD3ED3F6D42EAFA1888A036120F2EEFDA9197A5E22
Chrome Cache Entry: 195	ASCII text, with very long lines (65397)	63E3CA809FF4C42C94608F99212A9515	51501FCDBF84F682DFEE18413C391F027DC5850B	AD4E21BB5C0C1905D8EF026E22FDC8FBBE8EEB6CD19C71C2932115E2F9889394
Chrome Cache Entry: 196	JSON data	01BFAE208BA21F96B1AEA3E1DB5FF9AD	8E4913D562D14B22DA1258A960FDAF2E538F249F	3DC61B43BBD540E1DF282CEDA30CF25C3B71E6FF80C689C57496C3300FAFAA8B
Chrome Cache Entry: 197	ASCII text, with very long lines (18056), with no line terminators	2A3D897945ADE4CF51DACA348A3CB9C1	A50D477A6F22A8965A135C129FBE632E5E8C5A16	EFC424B0A8011230806828B932168F2416E64A900ACB171844EF9D4EE2DB51E9
Chrome Cache Entry: 198	ASCII text, with very long lines (26708), with no line terminators	A2B9BC5819AA624C49A0036B660AB72B	F1A035EBD4B7697E6169EA85951E7237A6AA1E0C	5D1B3D626EF2FE0A08F49F3EEE2C5A769C36DA469E7F8E7E557658EFFA3DC81A
Chrome Cache Entry: 199	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	5D4318F103EEACF6A291E2AFE68257E4	6544605AD29D5287EC04FE9C4411A824F7464E9B	385BD16B54F7F9BF7122348988E364EBF2721C5DEB28A450915B5C92BA3E976E
Chrome Cache Entry: 200	JSON data	B04CD3F8043EF04F417D4B0E4BCBBC03	88F259A4AE3045409B3657E7D7A791D321BA9DCE	59E58524340CD7AD353BE010374B124C242FDDE10A0ED41047FE2FD4BB9E5A2E
Chrome Cache Entry: 201	ASCII text, with very long lines (521)	CB731CC5C2BD9F31D6BFEB19F3C8B1FF	16ACA1C951A03EDD875B99BB8D04F01FA19104AF	5206536707C84BAA892D3C3231B351985EE828CB8B9C0BD8DB42CD3363995FC4
Chrome Cache Entry: 202	ASCII text, with very long lines (65362)	CF4A39587C9FC4C8C2A758AAD46423F1	C3F45CC9608D1F4AE2D4C3A3628BC3F7456E7901	AE800A41DE9BFD66087BD01312ACD11A8FA41406A202DAFED48C2ADCB061AE39
Chrome Cache Entry: 203	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	6535271F9636F6408B0C3BB15400085A	F815AC8D98C2C76B196564536697C2E6A01B5E73	9D6E7D6843C0B17B992FAFA510BAD5C7D2550BC329D3AA724809645FEC1DEE00
Chrome Cache Entry: 204	ASCII text, with very long lines (1210)	49D03D47BD15DDBEC4926A87821C3278	8D545B020E45D00A775DECA8BCB0A4BBE17C1F2D	D327ED4B7D3E5878F53B377E35DE67F9A2D9335BD85BE6028C36D3B6B05D4F72
Chrome Cache Entry: 205	Unicode text, UTF-8 text, with very long lines (65466)	83A5B4F8CB6E363AA1F641454539FC79	92076BDEDBA72ACB66F3AACC6173F070A18E434A	3B787EAB05A86942D6E06F548B76F67DEE0CC03182CCE1DEE39E031BD8036AF2
Chrome Cache Entry: 206	PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced	3E32EFD25AC0214B375FC8A6A32890F2	CD46A79DB7E53E19D5869B3CB3E7AA22EE523479	807C8A1B498E17D227CF48A640B778BDC4398A9852493CB2F40BF0F33651D0DD
Chrome Cache Entry: 207	JSON data	913F6A2B5A6515DD7909AA82B41A1BE5	88166E55E89EBF49398D21BB52303F594447B752	4FB11E42B2BBF1F0DCD4A7F4E44308E4588EB54D4335779400584096518A2886
Chrome Cache Entry: 208	RIFF (little-endian) data, Web/P image, VP8 encoding, 720x536, Scaling: [none]x[none], YUV color, decoders should clamp	5E477C52CEF8BCD69F92B5FA7368DBD3	B4F365F1235B9F0ED3640641BCE6A6EAAC08B5FD	EA0084E3B217B051BF03522DD4ACC8154B688ED67D2DE165A4DFAB57B232BED0
Chrome Cache Entry: 209	ASCII text, with very long lines (7116), with no line terminators	548D7D9D1B550712A6F28D80DDA76289	5F93B6B6EEC9663890E94F38B0689F0729F0DE14	61DB55073A2ED41BD86DF40FFFFE575A5E7A7A3D59496DD869808694BD12F445
Chrome Cache Entry: 210	ASCII text, with very long lines (19782)	49D6128CFB4D12FEAE4746B0C04B5635	FC8CD0C6E74928D2891AE08DA8C0F04294EA971E	4244F578D44BAFCEBB6F07F9A81D58569643D62284AB476DF2B17A5D8413BC2B
Chrome Cache Entry: 211	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 212	ASCII text, with very long lines (5036), with no line terminators	9478D8D20743C0422A70FDDF04DEB7FA	4D9B919969BCFF2E4E39E7D008A7A0C3F39ABDA1	F9824E5F4727F34DD4B3F268CC3A51970A763E2E54FBE9934C44B7FFC1159E8B
Chrome Cache Entry: 213	ASCII text, with very long lines (19782)	49D6128CFB4D12FEAE4746B0C04B5635	FC8CD0C6E74928D2891AE08DA8C0F04294EA971E	4244F578D44BAFCEBB6F07F9A81D58569643D62284AB476DF2B17A5D8413BC2B
Chrome Cache Entry: 214	ASCII text, with very long lines (1845)	371C665B076235D8F18A29151F062529	8D2D27B31718661633841E7DE104A652FD19EF45	AD7149C5B70072FE29A67F98EE24DDEA1A364DA90568D417A8B0B0128D7E19B5
Chrome Cache Entry: 215	ASCII text, with very long lines (65362)	6ECDCBFC2743150B907283C1861D19EE	81760F9CD668F1D6E7FA12F8FFB9AFC77F528B68	77C4DB8DDBD2F57F9DD1ACFCB74ED71C891FF39ADFBDD2902958B457A63FC9A3
Chrome Cache Entry: 216	ASCII text, with no line terminators	1AE6B27EBA211F4CFCD99B904DA88BB7	53CA38F083C4A21F2EDA633EC304CB4582EDEDA2	961635B4E9661208EC118D285B3AC1DBF9F3CC96CDDC97F30E55CD2C6566448C
Chrome Cache Entry: 217	JSON data	913F6A2B5A6515DD7909AA82B41A1BE5	88166E55E89EBF49398D21BB52303F594447B752	4FB11E42B2BBF1F0DCD4A7F4E44308E4588EB54D4335779400584096518A2886
Chrome Cache Entry: 218	troff or preprocessor input, ASCII text, with very long lines (14445)	C5407CF892E45285BE01847749C11B6C	56F7C38868DE6656D36B255FD3A6D0F88893065D	260551F7501A16977F98E55AEC11B1B66F47D0724F98CA376C447E1C74F7DF72
Chrome Cache Entry: 219	GIF image data, version 89a, 1 x 1	81144D75B3E69E9AA2FA3E9D83A64D03	F0FBC60B50EDF5B2A0B76E0AA0537B76BF346FFC	9B9265C69A5CC295D1AB0D04E0273B3677DB1A6216CE2CCF4EFC8C277ED84B39
Chrome Cache Entry: 220	JSON data	B3303EF6EC7973777164CA0271845EB2	E82457E23C3A9E0A20BFBAD1D1B411AB647AAA8C	7BF6616322BFBE7F3C17BF4D16B950462AE7036AE5CD57EE8ACC90AD01F0412C
Chrome Cache Entry: 221	JSON data	7D1DBBD1D76EB7C445482824B38461DB	E1E762334193103DBB8F769B502DE5A6B2DB6361	BDACA36312500A5E930637A84A6B58159AFC776DDAFF09BAFC479FCE63BF13A8
Chrome Cache Entry: 222	ASCII text, with no line terminators	FF2BCAB57C72503FCD305DC09E98910A	6C47ACEA4C98F49B777369D074CA2EFB6F5437B8	425A8FE4C2F9EA7F5C14FA762F4889C613C913249DDBBA03B0AC6C1036CA49AE
Chrome Cache Entry: 223	Unicode text, UTF-8 text, with very long lines (65528), with no line terminators	B7952BEBCC57369D868E874DBA358820	6CEEABD11BE69CFA744B234D0CD292D1BA92FE47	4DA21B5910717A2A0F8206DF4AB201DEBDC1F4EE66AA8D61029008EB2B323CCF
Chrome Cache Entry: 224	MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel	6535271F9636F6408B0C3BB15400085A	F815AC8D98C2C76B196564536697C2E6A01B5E73	9D6E7D6843C0B17B992FAFA510BAD5C7D2550BC329D3AA724809645FEC1DEE00
Chrome Cache Entry: 225	ASCII text, with very long lines (65536), with no line terminators	97B1D8052FE675AC2CB9BB916F827EE7	094A91CC7C59E74776837D1E5CC34099CAC82CCE	7CF08F20F196DBB72AD8DD5F3F66BB21FCDF5D4840F73EB9ED73364C8A064FC1
Chrome Cache Entry: 226	ASCII text, with very long lines (52208)	99714D221DF650B50DA3B7BF97E2987D	493B74178A63429FFF2AAB081B3A1CA73D362085	8AD11C4CB079BBA93156727270F510292EEDCC0716C6F21725074A59EC8B9B96
Chrome Cache Entry: 227	PNG image data, 48 x 48, 8-bit colormap, non-interlaced	925EE33071EF712BDA608EF3BF50EF13	C7D8844E68D5C9BC0294DC5A69F8550C6D6D39D5	996B0E99FCC7A553EAC6F51569BE5429B1BF8C071A708289FAB808D7660CF74C
Chrome Cache Entry: 228	ASCII text, with no line terminators	335BE8900580E9C3875DBA57334294AE	A86597D2DDFA410DF13BCECA86FDF9A2291FE798	8A882FD19A15567E53A5C3C08D22CDAB714FA87734ED92D854C4E8FDF3940B1F
Chrome Cache Entry: 229	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	C653A46326F12936183D50C5EA87AA49	4358E6950AEBFF8CC18075C222604ACF09C775B1	1E7E3E106AA39279085F1561401AF99F4DA0073EAF5C6EF9A2E04B600DDDF532
Chrome Cache Entry: 230	JSON data	2CA62553DC3FDE3551E592A47A6371E9	ADB612AAF8EDBA6A1B3ED1FE807C620D0B2B67FD	B9391F1017214481EBCD66649D521E043516C53119B2A7A4FA0E7690199AE5A2
Chrome Cache Entry: 231	ASCII text, with very long lines (65451)	FA5C95D8306A66B4EB13EEF3A634F8E1	534157A808DC08F7CABFBD36967566F03DBABF3D	7E90EFFE2C4B60DF553E50C5E65BCF113AD7A2DDF3D5E7A594F2B8A9CCFD4523
Chrome Cache Entry: 232	ASCII text, with no line terminators	5CF21BD62675531654DBFB9970028FAD	51AA1BD0A2CAB0D0D138996E4AB6960348F3035A	91C9F018C96C1B541B717286CCBE032663014A1C1477ABAEDFFF2931DE765927
Chrome Cache Entry: 233	Web Open Font Format, TrueType, length 40120, version 2.0	F2953AF89807609F49B87237180BB450	BCEF01E9E586A9A6C567602272C1A7955B77B0CA	B02A3F6DFEB4EBF05D30EAECC8473664F1720190639CBFE43B2A7F9A00246E56
Chrome Cache Entry: 234	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 235	ASCII text, with very long lines (1372)	E7BB0034B1114E2E6B738279F274C9D7	612AEBEDF25753152C56872FFC055D53AC00BD5B	C9277AA045F38A6F071D8AEE5425AEAF40EB26B8B2FAB89FE056000FA404513D
Chrome Cache Entry: 236	GIF image data, version 89a, 1 x 1	81144D75B3E69E9AA2FA3E9D83A64D03	F0FBC60B50EDF5B2A0B76E0AA0537B76BF346FFC	9B9265C69A5CC295D1AB0D04E0273B3677DB1A6216CE2CCF4EFC8C277ED84B39
Chrome Cache Entry: 237	ASCII text, with very long lines (1350)	E444A03D38821936DD4A531F6D05AFB1	9CC1CC74317C6D327C69B9AC28A70C754CD1EF81	E6F0D5A59B1EF3CBB25F39CC859ADEB0020369B03384B00D86D98EBB7BE39092
Chrome Cache Entry: 238	troff or preprocessor input, ASCII text, with very long lines (14445)	C5407CF892E45285BE01847749C11B6C	56F7C38868DE6656D36B255FD3A6D0F88893065D	260551F7501A16977F98E55AEC11B1B66F47D0724F98CA376C447E1C74F7DF72
Chrome Cache Entry: 239	SVG Scalable Vector Graphics image	D5F05DB5BC49F3BF280F4540914BA76F	9383B048E654A536F07F29EE5635700570BE83A4	ED492DB618738A5EAE18115863E97FC8C63945846ED8DB4074DFC6F7CCB90467
Chrome Cache Entry: 240	ASCII text	774199271C102AE8B705476863DEBB43	DD259CC6B4EA650EB613A2BAB86C3540C48A8AF3	4D9E8E40A8981164BF057D36D06196FCDAEFF8EA31EE7A647F9D08C6F77B4129
Chrome Cache Entry: 241	ASCII text, with very long lines (8641)	B7F12CDAB2DB41E32BDC4E60FFB51E57	7ADE7D241E040E3786CF9C2DF806C213EEEF61F0	9D59DD1BD1B8C4BD3434B63F45E13D908E8DB273165D5E18E1CD432BA150EB5B
Chrome Cache Entry: 242	ASCII text, with very long lines (8061)	10A2AF9ECF76BBE518619C426A7E9880	9C550B84C7644466C49B1699C657A8FA565650DD	9E4CDD3FF16E68AD67D6E604E05B547471346B37FDFD33EF73BA2CE3686DBCFC
Chrome Cache Entry: 243	ASCII text, with very long lines (65487)	CAD5FE4C499F7568E14E7AB6FF9B3361	7CF66966B26C499B535EFD53C77F65DF7DA14338	83F4228D1D92171186E8B8CCCE6E69B32AD6B322DB4AF7E4B6F54CE50E299587
Chrome Cache Entry: 244	JSON data	48D245EC8385771C75FCC3EAB92B5967	A5A557EA6BBA77E98ADD0828DF963E7ED7DB0105	471DA81FBD408B6352D17FDEC0E7D4940A82CA210F12DB00FB80504881623887
Chrome Cache Entry: 245	SVG Scalable Vector Graphics image	E8209D74AD093F151954A3820C12E5D8	12FBF39039F0182026ABAF8B0A22E75C9BB316F7	C80B9838465A2C5AA19E06C25631CD22D81DD8C76563875EBFB4D35304DFBA47
Chrome Cache Entry: 246	PNG image data, 91 x 26, 8-bit/color RGBA, non-interlaced	3E32EFD25AC0214B375FC8A6A32890F2	CD46A79DB7E53E19D5869B3CB3E7AA22EE523479	807C8A1B498E17D227CF48A640B778BDC4398A9852493CB2F40BF0F33651D0DD
Chrome Cache Entry: 247	JSON data	C810E9B7CB48D30FDDD3F3B81476941F	7CB3B733AC2ACB1347F4A27E0C4CF5A3BDD9BF83	F3603464E821014EB8C95D21A982CB1DA0D902F2D0F023AEF34A77A1B9CE25BA
Chrome Cache Entry: 248	PNG image data, 48 x 48, 8-bit colormap, non-interlaced	41A0E840AA47C87E19D2BFE0B1231C3F	B5F588CA91FC9E67B5EA658C5FF943B0639E57B9	A333D02EEDDE7A4DD8643D58B0EA7947268A1762F35F517EB6000EC9E7FCFAE8
Chrome Cache Entry: 249	PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced	6384185CBE9A4F106857A3CB85CAEA98	0E31A4FE2CE98A8B4FDA60687AA71079B4D3A95B	5839F0330821CF08029BEDDD6D248170DA1AF16CD7AFF253E7BD075D591F5D42
Chrome Cache Entry: 250	ASCII text, with very long lines (1350)	E444A03D38821936DD4A531F6D05AFB1	9CC1CC74317C6D327C69B9AC28A70C754CD1EF81	E6F0D5A59B1EF3CBB25F39CC859ADEB0020369B03384B00D86D98EBB7BE39092
Chrome Cache Entry: 251	ASCII text, with very long lines (1266)	4412BF8023109EE9EB1F1F226D391329	C273960AA874A87DD022B5E597887142F1B8E34F	D40EFCAC911D8964F3728EAA767DE281306FF55BA9377435A3364D4D1E1613F6
Chrome Cache Entry: 252	GIF image data, version 89a, 1 x 1	81144D75B3E69E9AA2FA3E9D83A64D03	F0FBC60B50EDF5B2A0B76E0AA0537B76BF346FFC	9B9265C69A5CC295D1AB0D04E0273B3677DB1A6216CE2CCF4EFC8C277ED84B39
Chrome Cache Entry: 253	JSON data	A534FD02F639AF5099285F31331E16D6	C48AC04722D957F7D2382C05E7512A0B455688D8	E19CFEC0969D8613B7733FEF7AB339F7A6F437B7303C12F6F2DA92696CF8F060
Chrome Cache Entry: 254	Web Open Font Format (Version 2), TrueType, length 21252, version 1.0	54AF8D9DC08B40DB6365118037329120	8883C4D93F31BC4178DF3A2399F0BA9A70B48A4E	197F29A9D43E95D57C1AEE32CA7B618DAA3D46938C0677BC5A4C3A0B3E188BC0
Chrome Cache Entry: 255	TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 39 names, Macintosh, Copyright 2018 IBM Corp. All rights reserved.IBM Plex SansRegular3.3;IBM ;IBMPlexSansVersion 3.3	D2AC4D984B36B772A3B08736889192A7	60EF66E01C47FC659548FB13A9A64D4AA8036545	24DD81D879C0899B48322F9E8434FC924B972948C7A258032C5A92A4B49B4725
Chrome Cache Entry: 256	PNG image data, 91 x 26, 8-bit colormap, non-interlaced	B6D0B31340D7A113F63B936E23D06F78	268E3856DA737F7E56E679258949EF70DDDE47F4	18C62988860A8FFD90BAB6376B4FE36A723BD39403C420D3943AA3EB5A0029C5
Chrome Cache Entry: 257	ASCII text, with very long lines (21719), with no line terminators	F108DCC22C0176DF80C5C63FC11900BB	71B72B2932DF4850DEA8DEFB90835A144DB6166A	38E3429F12FFCC37A1E9668377F9A724E346FB4F417DAEFC93B971FA9C51846A
Chrome Cache Entry: 258	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 259	ASCII text, with very long lines (1210)	49D03D47BD15DDBEC4926A87821C3278	8D545B020E45D00A775DECA8BCB0A4BBE17C1F2D	D327ED4B7D3E5878F53B377E35DE67F9A2D9335BD85BE6028C36D3B6B05D4F72
Chrome Cache Entry: 260	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 261	ASCII text, with very long lines (65508)	7BA11A08E48BA9F76CE05CACEC640727	6B697F983F25B6528544C767277E9A1E2322C7B5	8E6C1E164372165A4B31001BC9D28614200EAF665A5827BE856AC11D5262946D
Chrome Cache Entry: 262	JSON data	EDCBD17FA67E798075463E47A076687A	31A4A083488CF6F65811E68D2914BF2B5AFF3E9A	AB87EEFE7EA9193D98E0B23FC5A3E76EAE51F91A4A62C56D0AAF662AF21DE704
Chrome Cache Entry: 263	HTML document, ASCII text, with no line terminators	C83301425B2AD1D496473A5FF3D9ECCA	941EFB7368E46B27B937D34B07FC4D41DA01B002	B633A587C652D02386C4F16F8C6F6AAB7352D97F16367C3C40576214372DD628
Chrome Cache Entry: 264	ASCII text, with very long lines (9744), with no line terminators	7195F60DED6400C64A12E871395B6B82	94AAEF127480B92F7D561540725E54D8034E1A4C	C8CB0003D4454CA85232FBC283A3BEEDEC1253BF70EB1540284E238D8838785B
Chrome Cache Entry: 265	ASCII text, with very long lines (64780)	50332699EADC9096FD2CA1B96E1142D7	E7444CBD970C9A294D1169CDBBD8E719786357D5	1BE0EFD5A2F263566CEAC2C3C5EE951E0360CFB28CD8A03D78006F9D901B6F5D
Chrome Cache Entry: 266	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 267	ASCII text, with very long lines (60582)	1A16F971ED98C047C8FA288987383922	04200A6F3B25CDFA04551F635D025FC64743B4FF	5AD7526D50B7586DDFAEE62B3FC95E71207136DC08F6A2B7FFD671DED73FAB83
Chrome Cache Entry: 268	HTML document, Unicode text, UTF-8 text, with very long lines (13763)	7704ECDBE527ED286FD358FA257DE09A	40E055165EADF67121971759DD6D429E8B4042E0	8E63C684C22A6427ED1738DC9B8754CF056F43D3DF3248BDCD64ABA34EA91AC9
Chrome Cache Entry: 269	SVG Scalable Vector Graphics image	D5F05DB5BC49F3BF280F4540914BA76F	9383B048E654A536F07F29EE5635700570BE83A4	ED492DB618738A5EAE18115863E97FC8C63945846ED8DB4074DFC6F7CCB90467
Chrome Cache Entry: 270	ASCII text, with very long lines (5775)	FCDB4B9DB352ABC6BABF89B7B0E64FCD	92E13C84E92A43A3A1AA11DC559710566BDE91FB	5DD0E2CAF5FD7EA6EB8AEE38A1E4DE62390D8BBE2A6660843A7EB10DC2D2198A
Chrome Cache Entry: 271	TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 43 names, Macintosh, Copyright 2018 IBM Corp. All rights reserved.IBM Plex Sans MedmRegular3.3;IBM ;IBMPlexSans-MedmV	1F6630030155F00353EF75912C7E8064	4679D04C51C6074E47E770580EFADC1DEE188123	A182F92FA53E7B155741697393C8E1FDA7E19AD4D0F1F92366D6D8225C41ED3D
Chrome Cache Entry: 272	ASCII text, with very long lines (6500), with no line terminators	1380A7C59A37F8FFA2FFEC08FAA2E0BB	75BC57A9785C8CD20F4E203F509F872B5444C218	B98B1CB8764D4E22551BAED140F483E98027D2F3E64C2F1FBC45088980C55223
Chrome Cache Entry: 273	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	34A232B49CADC1F1B6614E061AA830AD	B0639151AD6F9EDFA41BA9D4D1B98F6F928D6C34	E533A9A1F5C6BC0D91E6FD23DF80F706D3A4CC8BE539EAD4EB5D00072927A476
Chrome Cache Entry: 274	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	5D4318F103EEACF6A291E2AFE68257E4	6544605AD29D5287EC04FE9C4411A824F7464E9B	385BD16B54F7F9BF7122348988E364EBF2721C5DEB28A450915B5C92BA3E976E
Chrome Cache Entry: 275	ASCII text, with very long lines (65348)	C0BE8E53226AC34833FD9B5DBC01EBC5	B81EF1B22DE26AF8A7A4656F565FBC91A69D7518	5FBAEB9F8E25D7E0143BAE61D4B1802C16CE7390B96CEB2D498B0D96FF4C853F
Chrome Cache Entry: 276	ASCII text, with very long lines (65451)	C44006ABC4B9CBEABC46ECE8C79AA638	53FE22FC5F03229E51F46324AB7CFAE18A6C71F5	49CFBB9C8B20FBAAB3A11BCECB48FB8448E617A746FA578BACA0DC71A7E06540
Chrome Cache Entry: 277	ASCII text, with very long lines (65536), with no line terminators	AE272E12BB102CF4E9BA87D504F2EF0A	8E214A6EB3590364E34D90DC99009C74E05F60D6	05B36AA0B8A0A0E8F4FDE31BCCE9E799B1FBF902771C57928D9298F5EB1A1FD9
Chrome Cache Entry: 278	ASCII text, with very long lines (65536), with no line terminators	ACFA39B6E6BD3CEE95A1BE8790B06678	A476E80D66C876895ACBC3CB0BCF48DAC5E5DF40	1C5B90A8080E7CF97E1C978CEDF323312FC04F58415C2CD043F4DEB091FB802E
Chrome Cache Entry: 279	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 280	PNG image data, 48 x 48, 8-bit colormap, non-interlaced	41A0E840AA47C87E19D2BFE0B1231C3F	B5F588CA91FC9E67B5EA658C5FF943B0639E57B9	A333D02EEDDE7A4DD8643D58B0EA7947268A1762F35F517EB6000EC9E7FCFAE8
Chrome Cache Entry: 281	HTML document, ASCII text, with very long lines (58054)	7C9CFC1BACFEC0CBA3ABFD5B73E6DE98	573598CB6716A2080E9AF9CB79BB6196DCDB44DD	3112AA90CA30C4F88888FE65EE807B46032E6A21B86A8CAB895ADB773A77A5C3
Chrome Cache Entry: 282	Unicode text, UTF-8 text, with very long lines (50045)	BAAF830FC576FC456CB3F518BC0E613A	CBB3953EFE9CF21B230B3C8E6E82DA4D9D812780	8B780007215B807C49FDCE4FB746AB9471B070011BF0C9B23D7DB718185D9914
Chrome Cache Entry: 283	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 284	ASCII text, with very long lines (6155), with no line terminators	1E32438142FCD82E3C2AEA1EC4900C2E	70F7F4732872C739C76969D77FE36D1D53333950	C3F06CF6DED52069A79551343ACA5F2269A048CEDB9FBACD3CFFF7136980659C
Chrome Cache Entry: 285	ASCII text, with very long lines (65536), with no line terminators	31B52E285AECEA6AFF5E09AA9B90EAED	47DE24235B7F6143FC63E0B4B483EC628B006342	BD3352B0C7B707FA5A0867249158B7B1F22927A733C1088A7C39AEA1186E6F29
Chrome Cache Entry: 286	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 287	PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced	D05A0AB9BF394439A1584A2B0D44DB5C	183C28023D3BA3358A7A5DF1DB887582AE5340ED	B23272A9692C4EC3C020935917E9D096490876C976ABEC1290BD3CC9AAE13974
Chrome Cache Entry: 288	ASCII text, with very long lines (19782)	49D6128CFB4D12FEAE4746B0C04B5635	FC8CD0C6E74928D2891AE08DA8C0F04294EA971E	4244F578D44BAFCEBB6F07F9A81D58569643D62284AB476DF2B17A5D8413BC2B
Chrome Cache Entry: 289	ASCII text, with very long lines (6867), with no line terminators	26C3C284EDADC317106C9358BAF83AB5	97D3B1696078BE1DB9093D1F10AEFCF74F9F0660	618AD76495DD6D322F6E225FD6BEE12DB7AD4479D7E0AAF39CD76E0A368342AC
Chrome Cache Entry: 290	ASCII text, with very long lines (11709), with no line terminators	2885FEC5FBF3A9E77DA4BF6AC7838469	C10928FD9A50458024678A435D929052DB47C78F	84CC7C5D44516D6E6564BDB74456EDF2DF2385F8B6F21B4DAEF362C23D6CE990
Chrome Cache Entry: 291	GIF image data, version 89a, 1 x 1	57F187C7A868FAEAC558007A8EB6CB2E	11AB10AB109FDB53D91D444AC781101F5A6360C6	AA03DC59BDCA72631D2301E4297CFA030BD31B907DC138E7B973D12311C90A22
Chrome Cache Entry: 292	JSON data	2CA62553DC3FDE3551E592A47A6371E9	ADB612AAF8EDBA6A1B3ED1FE807C620D0B2B67FD	B9391F1017214481EBCD66649D521E043516C53119B2A7A4FA0E7690199AE5A2
Chrome Cache Entry: 293	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 294	ASCII text, with very long lines (65362)	66F2A67890F87F75E0349B9A54892789	7CDF81D1F73218A01E390993356AA7A87D559F3D	7E20C56A633FCA2C33580C545B40F21C413957521651224AB87DB9C50539F33A
Chrome Cache Entry: 295	JSON data	AAEA5D3F57FE043EA6ADDAEFE2F8EBD2	89E5C2230CA763C19380F04E5B33B7893CC63529	07630CA2CA67D91512C1AFBE05F1CED68203A1785F343DB67681504993239B64
Chrome Cache Entry: 296	JSON data	01BFAE208BA21F96B1AEA3E1DB5FF9AD	8E4913D562D14B22DA1258A960FDAF2E538F249F	3DC61B43BBD540E1DF282CEDA30CF25C3B71E6FF80C689C57496C3300FAFAA8B
Chrome Cache Entry: 297	ASCII text, with very long lines (22137)	A517F2C7607EAE9712BFC06A76520CAF	045823E42260BC696E4760408834BA325393C7CD	01DAE845CCBBE003BB692E96144AA61F7CE55A50138C6ABB38D4BC7A1E921084
Chrome Cache Entry: 298	HTML document, Unicode text, UTF-8 text, with very long lines (57788)	261744DE1EA26DEAAB56BBB4A8835F72	66687C9EEDF5DD5F29348DF95A29E4EC23B6DB41	F5E4027EB7D29E9FB67F5BB392A72B0ECA20BB12EC8C9CFF6F1D4CA28F3147EE
Chrome Cache Entry: 299	ASCII text, with very long lines (65463)	486488ADBC486D805BD4735BD2677826	9A46A9704A1B27435271632F60EFF3C21FA4898F	470227B2221F0B786210472FB160D60DD852BC34DBB15A2165148DB9618ACE9A
Chrome Cache Entry: 300	Web Open Font Format (Version 2), TrueType, length 92724, version 1.0	F132633E65809EC36C0F01B8A29FA457	E68A5B0DE3E08AC85A13426CE3D8C13AD21D38FF	A98C20990FE3E31203FE2DB8384AF8E05E7B358CDAE3C28B034E1F02B47DB630
Chrome Cache Entry: 301	ASCII text, with very long lines (65447)	641DD14370106E992D352166F5A07E99	EDA46747C71D38A880BEE44F9A439C3858BB8F99	A0FE8723DCF55DA64D06B25446D0A8513E52527C45AFCB37073465F9C6F352AF
Chrome Cache Entry: 302	gzip compressed data, original size modulo 2^32 255000	72AF65B6B04E556A175F74522379F12E	8293267628FDEAEED51EB2589E2244F152A67D70	76128F91B41280E9B12ABB7254417AF74B309A78013E9F424F0D10853B6E89C5
Chrome Cache Entry: 303	JSON data	AAEA5D3F57FE043EA6ADDAEFE2F8EBD2	89E5C2230CA763C19380F04E5B33B7893CC63529	07630CA2CA67D91512C1AFBE05F1CED68203A1785F343DB67681504993239B64
Chrome Cache Entry: 304	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	34A232B49CADC1F1B6614E061AA830AD	B0639151AD6F9EDFA41BA9D4D1B98F6F928D6C34	E533A9A1F5C6BC0D91E6FD23DF80F706D3A4CC8BE539EAD4EB5D00072927A476
Chrome Cache Entry: 305	Unicode text, UTF-8 text, with very long lines (39370)	C5FC28C57A072765C966EE010CF77B3A	FAA51716230984C5CC60D0067D9165BBC5D7583D	942A9BA1FE78B402E8B52B83058DBBABDE8DB6B4D1DEBF960D6D5AFE5192DB52
Chrome Cache Entry: 306	ASCII text, with very long lines (1350)	E444A03D38821936DD4A531F6D05AFB1	9CC1CC74317C6D327C69B9AC28A70C754CD1EF81	E6F0D5A59B1EF3CBB25F39CC859ADEB0020369B03384B00D86D98EBB7BE39092
Chrome Cache Entry: 307	PNG image data, 70 x 26, 8-bit/color RGBA, non-interlaced	27E71A5124018E16EAE0B8897618623D	D0D54D88B04EDFC71F338C19EAB9994632BC6CED	1D6E86E59AB7235A8343F494C8E8DA6CC02C5A98A75D682401340E6D06935F20
Chrome Cache Entry: 308	HTML document, Unicode text, UTF-8 text, with very long lines (1934)	750CA4BD06A9B36C3C5506983C50462B	242B6D2ED8DEB957D716DC2B975F9AAE02798B6C	C26F5A7DE18292D883777E51C8605FAB9A24092376BBBC8CACCF253EEA13743A
Chrome Cache Entry: 309	ASCII text, with very long lines (65536), with no line terminators	0C7A06AB70AFF0DC036CE76EA64A13BD	7EED6A409216A1712E70F0CF0DE201A8AA7E2D82	F9DAB38BE57EAC68B993E3DA39235B49D87FD3B0E05CBD592E0FDCD0A594E4B9
Chrome Cache Entry: 310	HTML document, ASCII text, with very long lines (58048)	38F95256F2010AD4E4FE6D75B75FE0AE	59E9DABC53A87A1D41E4B1B8ECB90236328A8575	B1A14504CF643295E38A4F874D2718A9F5FD775A232B35B550BFCBCC5BD7F762
Chrome Cache Entry: 311	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	6018807017AFEAD14417566F975FFDB4	2EE7C3239E4046E9567C8100DECD9ABE6093B79F	99AF6690771B7B62A1325D0C0B38A9A0300C18921E4877DCF38A239B9C977502
Chrome Cache Entry: 312	JSON data	AA06ED13ABA3B8794A6B08C97690BE10	D33973099AAB36E3D31776FC2CFA5813F3E01682	776884509E2EAA210894BAA49945B7AD8A02026ADC657E276F724AF7E8544374
Chrome Cache Entry: 313	GIF image data, version 89a, 1 x 1	81144D75B3E69E9AA2FA3E9D83A64D03	F0FBC60B50EDF5B2A0B76E0AA0537B76BF346FFC	9B9265C69A5CC295D1AB0D04E0273B3677DB1A6216CE2CCF4EFC8C277ED84B39
Chrome Cache Entry: 314	JSON data	48D245EC8385771C75FCC3EAB92B5967	A5A557EA6BBA77E98ADD0828DF963E7ED7DB0105	471DA81FBD408B6352D17FDEC0E7D4940A82CA210F12DB00FB80504881623887
Chrome Cache Entry: 315	PNG image data, 79 x 26, 8-bit/color RGBA, non-interlaced	6384185CBE9A4F106857A3CB85CAEA98	0E31A4FE2CE98A8B4FDA60687AA71079B4D3A95B	5839F0330821CF08029BEDDD6D248170DA1AF16CD7AFF253E7BD075D591F5D42
Chrome Cache Entry: 316	ASCII text, with very long lines (19124), with no line terminators	E32404018F946367D67843972EAD845B	C0F15354BBB5651D15168F3340CA6A7D9F0A44E5	9B258BB228CA2C16912122F8D12F5B55C84A5BC3213AB60153D5E4135DD85829
Chrome Cache Entry: 317	ASCII text, with very long lines (23379), with no line terminators	9E40A41A129ED1D6CB264D81858D4854	F9776FA975B81EC254633F02D006E28A3A6079FB	478337B30E20AC02307A358E23D477E7C1C0260B39BFC5CD951EC367C923C562
Chrome Cache Entry: 318	HTML document, ASCII text, with very long lines (58048)	38F95256F2010AD4E4FE6D75B75FE0AE	59E9DABC53A87A1D41E4B1B8ECB90236328A8575	B1A14504CF643295E38A4F874D2718A9F5FD775A232B35B550BFCBCC5BD7F762
Chrome Cache Entry: 319	ASCII text, with very long lines (1210)	49D03D47BD15DDBEC4926A87821C3278	8D545B020E45D00A775DECA8BCB0A4BBE17C1F2D	D327ED4B7D3E5878F53B377E35DE67F9A2D9335BD85BE6028C36D3B6B05D4F72
Chrome Cache Entry: 320	ASCII text, with very long lines (65536), with no line terminators	DB5A931B5024FE86A63D507A3F84D84F	D81BBFE9BF6EA1AC288F3E8B21D60EBD87AF379C	2DA38B5D5A8ACA1FC64BDD32CB444AD738D49010A1A28E4933AC3D50CC84AF6B
Chrome Cache Entry: 321	ASCII text, with very long lines (65508)	7BA11A08E48BA9F76CE05CACEC640727	6B697F983F25B6528544C767277E9A1E2322C7B5	8E6C1E164372165A4B31001BC9D28614200EAF665A5827BE856AC11D5262946D
Chrome Cache Entry: 322	ASCII text, with very long lines (21229)	26DFF7B84954EF35ED7B3C7E01C4C08B	6A03338997D33C4EBF80D3D6C30A467CB9AA5488	022E2F39DEBA7F332EABE69B27B31D98D4D5F2535116745957A691D1B1EC4CC5
Chrome Cache Entry: 323	ASCII text, with very long lines (3258), with no line terminators	3B18E75C0005C57D9971E3482E42A05F	997BDF26E4F99444B04DE5A2352714DB248B1579	044D99E5BB35485F911B9081B933B813CDC389CA457DB2BE376830A354DF089D
Chrome Cache Entry: 324	PNG image data, 48 x 48, 8-bit colormap, non-interlaced	925EE33071EF712BDA608EF3BF50EF13	C7D8844E68D5C9BC0294DC5A69F8550C6D6D39D5	996B0E99FCC7A553EAC6F51569BE5429B1BF8C071A708289FAB808D7660CF74C
Chrome Cache Entry: 325	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 326	ASCII text, with very long lines (7862)	FD4F902B789F81BAA379B0BA42C21ACD	9F5C7F1B6E8151ED8D54C24A297B27177B38EFB0	6E61BE2F374A0122510025578940BAF7EF8DBBCAF3ECC5F5535CFC81BD1CFD39
Chrome Cache Entry: 327	Unicode text, UTF-8 text, with very long lines (65449)	D9973C203CEAC28C4C37F625D195CC7A	9F7FD07FB99B9C7DC49E20F42D4452B69A74E91F	CE6C1C641594A798428772AA1D256CA160ABA99D317B14A28A7AA31F09384B48
Chrome Cache Entry: 328	Web Open Font Format, TrueType, length 41976, version 2.0	B2CA1822B16A92E0A0111C994CFE4B8A	AD3BF01829F003D1E837FDAE30B97E4911528C0F	12269C2ADB9DA8C73E2D8E5628566E4662720BDFF4687C3BD6190571FF8C3B05
Chrome Cache Entry: 329	troff or preprocessor input, ASCII text, with very long lines (14445)	C5407CF892E45285BE01847749C11B6C	56F7C38868DE6656D36B255FD3A6D0F88893065D	260551F7501A16977F98E55AEC11B1B66F47D0724F98CA376C447E1C74F7DF72
Chrome Cache Entry: 330	ASCII text, with very long lines (523)	7B430C6350A59A7CF22B9ADECCBA327B	B48D3C289BCB6809BB52FFFD8F013055ED6BCD65	058ED961BFE422AF7BFC65865F4C08531EC8ACE995F8A1EC560A46581CB7712C
Chrome Cache Entry: 331	ASCII text, with very long lines (1822)	6B67ED08CEF649F2DB78399C64807793	F4E75CF6D963A9EC6B7BF2602089319F223BAAC7	BADEFC051631A67247618743956B65BE3A4EC1369724704DF6CA99AD907E4330
Chrome Cache Entry: 332	JSON data	C810E9B7CB48D30FDDD3F3B81476941F	7CB3B733AC2ACB1347F4A27E0C4CF5A3BDD9BF83	F3603464E821014EB8C95D21A982CB1DA0D902F2D0F023AEF34A77A1B9CE25BA
Chrome Cache Entry: 333	HTML document, ASCII text	3C99C784A0562CB4A884864BA1776184	060CC84667B415D3C79C259053B25F5512ED77C3	17F7603BBF476F8346268391F41BD36741F492395F72AEB061F1590B7EDE224D
Chrome Cache Entry: 334	ASCII text, with very long lines (65536), with no line terminators	00FA5D22FB629D75C4EA76ED9178B4B1	A9A5E86A1A4F8B75A4AF4BA5BCC5EDDC6E6B1CFA	581EC498D082064294865E5A1AFB091BFE4A67D0B0F176F8F62217082C6D4D53
Chrome Cache Entry: 335	JSON data	6423E909E49BC79F7E172B98EDE32A8C	50EA38C0C32AD97C5394D842956636D6273FB4C6	B2130491497D5247FB189D0BB749E789A463DB29274290325E065E9FB50BCB01
Chrome Cache Entry: 336	ASCII text, with no line terminators	EC331136E75314D2030EE013B6069921	6B7428B8B15616A67F767D42964AF94FCBE2A803	A7358DF6B7B60280F2A0D7CD5B70A9F1DFA4FCE5C31FB1A24FB2F109AF7EE977
Chrome Cache Entry: 337	ASCII text, with very long lines (51942), with no line terminators	C11FDF3357309AC3498B8FB8A247B9A1	F8B3CD5CE8BB4F731F47990090AAE4396BFD417A	9780E4C7E4B83503061393423635B500D9673BC2A7BCA4156E34D820C74870B3
Chrome Cache Entry: 338	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 339	ASCII text, with very long lines (606)	EA7826F34518D7C2295738F39C7640FA	0095729B4BC2A580E4CE033993DAFE498DB87DF5	68CC280CE370C6F1F51A4FC5950103FC38DF80A429552C549ADD04EBD8BD3A23
Chrome Cache Entry: 340	JSON data	B533C358C9C0E0BA748254F2335F9141	032FFD0C93A5610C667E382D4C305C5ED9445BCC	2FA80586E3D7F4EDCFF3435A05D96AD3EBB6644FA1EBE4AA76F66D9FFF26F75C
Chrome Cache Entry: 341	RIFF (little-endian) data, Web/P image, VP8 encoding, 220x140, Scaling: [none]x[none], YUV color, decoders should clamp	C653A46326F12936183D50C5EA87AA49	4358E6950AEBFF8CC18075C222604ACF09C775B1	1E7E3E106AA39279085F1561401AF99F4DA0073EAF5C6EF9A2E04B600DDDF532
Chrome Cache Entry: 342	ASCII text, with very long lines (361)	6C8B16EB80520E0A2CE4B67012A53044	1E64BDA44A630210A458F7DD8A0F774DF09E31BE	55596F1CE0714EBE06C5DEC59940182947B9D97241FB54A2C4F97545FD7B3C9E
Chrome Cache Entry: 343	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 344	ASCII text, with very long lines (61938)	40AB217559E57F953AA43823F5DB4634	0B65935EF35641D488D3E68EAC4E9D8AF22FB641	B8FDF317BAB440671681B5C9A2015373A582BCA20A1271721876077A10EB6C9D
Chrome Cache Entry: 345	ASCII text, with very long lines (2922)	2D272F0222AA817F5CB96E94E70099FF	AAB8208AF9788CBD146976E7775B9950AD670951	824C2F3A1A46DD3920DA3547903AA364E733E1153BFD7B259B270B6CA7D4A460
Chrome Cache Entry: 346	JSON data	99914B932BD37A50B983C5E7C90AE93B	BF21A9E8FBC5A3846FB05B4FA0859E0917B2202F	44136FA355B3678A1146AD16F7E8649E94FB4FC21FE77E8310C060F61CAAFF8A
Chrome Cache Entry: 347	ASCII text, with very long lines (24823), with no line terminators	E04AD89975C535B30BAE773D0EB0D3B2	0C72555D0FD844150B6EC407A57DA2D29BF380E2	06C0EDBFC1B871FB45195265F5FAAD3E23191305F6FF2125557A9FBC287C8992
Chrome Cache Entry: 348	JSON data	B3303EF6EC7973777164CA0271845EB2	E82457E23C3A9E0A20BFBAD1D1B411AB647AAA8C	7BF6616322BFBE7F3C17BF4D16B950462AE7036AE5CD57EE8ACC90AD01F0412C
Chrome Cache Entry: 349	ASCII text, with very long lines (65536), with no line terminators	DAE3D23D11D452A14D5B43D39FDA3537	458F3DE294C17819136653E9780F1755034BEBD8	372C3A9CF7A9619CE8E71C71DFF3DAFBF3883F1AA7CD1ECB44981EA5DBA3D1CD
Chrome Cache Entry: 350	ASCII text, with very long lines (65508)	7BA11A08E48BA9F76CE05CACEC640727	6B697F983F25B6528544C767277E9A1E2322C7B5	8E6C1E164372165A4B31001BC9D28614200EAF665A5827BE856AC11D5262946D
Chrome Cache Entry: 351	PNG image data, 95 x 26, 8-bit/color RGBA, non-interlaced	D05A0AB9BF394439A1584A2B0D44DB5C	183C28023D3BA3358A7A5DF1DB887582AE5340ED	B23272A9692C4EC3C020935917E9D096490876C976ABEC1290BD3CC9AAE13974
Chrome Cache Entry: 352	ASCII text, with very long lines (64347)	072B2C3ACF701DD53DF6CE69EA15C1A7	9EEFC6F1A848B8F10498B7DC298AF62646465F5E	63BAE03AA97278ACB1D6F7863E593999BBDC5D280D2FA5A3050F234CE5EEE850
Chrome Cache Entry: 353	ASCII text, with very long lines (37432)	589224032219ECEA31C252A7960A7DF0	AA24466D90796B6FB806033F0F865DA6372F3D8E	7F5DF73404AC9FDE1E0FD454C9A24E93C4E7FAD5E79D2F9F7D15537D039198B9
Chrome Cache Entry: 354	JSON data	7D1DBBD1D76EB7C445482824B38461DB	E1E762334193103DBB8F769B502DE5A6B2DB6361	BDACA36312500A5E930637A84A6B58159AFC776DDAFF09BAFC479FCE63BF13A8
Chrome Cache Entry: 355	Unicode text, UTF-8 text, with very long lines (65439)	FD1E080B63AEAEABF7856FD50A5B08C7	FD383195EB47E8E40189C5A0DE3791C611857110	E2925622230A31721A25F3EF39ED0BDE3AF62210C39FCA84380CC20EA75B66A3
Chrome Cache Entry: 356	ASCII text, with very long lines (5482)	018A80B99AE24EC8E569AB75BCBDD148	B768928C3FCE97FDF121193CBF6A4F82383759A2	611874166A8E94F90F61FBCECAB72BF94A560193F31FF10334974D9FEAFA1FFC
Chrome Cache Entry: 357	PNG image data, 91 x 26, 8-bit colormap, non-interlaced	B6D0B31340D7A113F63B936E23D06F78	268E3856DA737F7E56E679258949EF70DDDE47F4	18C62988860A8FFD90BAB6376B4FE36A723BD39403C420D3943AA3EB5A0029C5
Chrome Cache Entry: 358	JSON data	B533C358C9C0E0BA748254F2335F9141	032FFD0C93A5610C667E382D4C305C5ED9445BCC	2FA80586E3D7F4EDCFF3435A05D96AD3EBB6644FA1EBE4AA76F66D9FFF26F75C
Chrome Cache Entry: 359	RIFF (little-endian) data, Web/P image, VP8 encoding, 720x536, Scaling: [none]x[none], YUV color, decoders should clamp	5E477C52CEF8BCD69F92B5FA7368DBD3	B4F365F1235B9F0ED3640641BCE6A6EAAC08B5FD	EA0084E3B217B051BF03522DD4ACC8154B688ED67D2DE165A4DFAB57B232BED0
Chrome Cache Entry: 360	JSON data	6423E909E49BC79F7E172B98EDE32A8C	50EA38C0C32AD97C5394D842956636D6273FB4C6	B2130491497D5247FB189D0BB749E789A463DB29274290325E065E9FB50BCB01
Chrome Cache Entry: 361	ASCII text, with very long lines (6500), with no line terminators	1380A7C59A37F8FFA2FFEC08FAA2E0BB	75BC57A9785C8CD20F4E203F509F872B5444C218	B98B1CB8764D4E22551BAED140F483E98027D2F3E64C2F1FBC45088980C55223
Chrome Cache Entry: 362	ASCII text, with very long lines (57572)	5ED8E953736577955909001D1171B4F3	6DAE24BBB24439C38C9C350DE33A78246C770744	48229B3DAC9608E36D5B418F0BB5732CF0575A877C715FFB04B8F2933EB8F220
Chrome Cache Entry: 363	JSON data	AA06ED13ABA3B8794A6B08C97690BE10	D33973099AAB36E3D31776FC2CFA5813F3E01682	776884509E2EAA210894BAA49945B7AD8A02026ADC657E276F724AF7E8544374

Phishing

AI detected phishing page

Source: https://booking.extnnehotteir.com

Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49731 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.43.61.160
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	TCP traffic detected without corresponding DNS query: 23.206.229.226
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /admin/o2shi1bka89 HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2Hv HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /static/booking/styles/main_jlksgegksel32232v5.css HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /static/stylesheets/banner.css HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.6.4.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io-3.0.1.min.js HTTP/1.1Host: cdn.socket.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: pXqYyw4mS9ESGZj2g0RUIg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /static/booking/favicon.ico HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://booking.extnnehotteir.com/sign-in?op_token=WmfrIgGdxkXeTRYBLYgOJWpIF0ELMfpkUmRqkezrLpTS3ZaOI9xpasttNyidzYLo9Nn8YPijVwfwbBHOTEOapYH7geqjA8QR2HvAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /backend_static/common/flags/new/48-squared/us.png HTTP/1.1Host: q-xx.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://booking.extnnehotteir.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/booking/favicon.ico HTTP/1.1Host: booking.extnnehotteir.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wE
Source: global traffic	HTTP traffic detected: GET /backend_static/common/flags/new/48-squared/us.png HTTP/1.1Host: q-xx.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: KWjPsfWT2RucoeRaJ6mpTA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: NtVYQHreSaHMtPAauRnTLA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /en-us?utm_source=extranet_login_page HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/fonts/icons/icons.woff?v=1.3.3 HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: /c6nvTLVbGLVpmnbmsfSpg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/OtAutoBlock.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /optimize.js?id=GTM-MVTHSWF HTTP/1.1Host: www.googleoptimize.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon/bookingdotcomb2b/booking_prod/scripts/evergage.min.js HTTP/1.1Host: cdn.evgnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libs/bui/9.5.6/bui.min.js HTTP/1.1Host: bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/1px.gif HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/initiator.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/main.ce2869c62d2ccb514c50.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/me.7d4a349527f92fc578d9.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/1px.gif HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/initiator.js HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-us.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.svg HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kindly-chat.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.ico HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/site.webmanifest HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rc/19174/scripts/s.js HTTP/1.1Host: cdn.spinnaker-js.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-us.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.svg HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/huge_slider_teaser/public/2024-06/ukb5394_asset_bank_shot_10_0719.jpg.webp?h=a0c51cab&itok=O6kEyqHx HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /KindlyChat-4b664f93b8bd8ce36493.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2024-03/join-booking-hero.jpg.webp?h=56d0ca2e&itok=3dorJ9nt HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-05/cybersecurity2.png.webp?h=cf1ccd34&itok=ztBNqW6y HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /themes/custom/booking/images/favicons/favicon.ico HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202404.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-10/travel_predictions_2024_1_1.jpg.webp?h=db5e2b43&itok=jW2sd4Zb HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A02+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657 HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/huge_slider_teaser/public/2024-06/ukb5394_asset_bank_shot_10_0719.jpg.webp?h=a0c51cab&itok=O6kEyqHx HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2024-03/join-booking-hero.jpg.webp?h=56d0ca2e&itok=3dorJ9nt HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-05/cybersecurity2.png.webp?h=cf1ccd34&itok=ztBNqW6y HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /shared/commons.9b20dd57c6f12e1beb80.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: F+Mzs9PoDApv/6Os10TP/g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /sites/default/files/styles/menu_teaser_desktop/public/2023-10/travel_predictions_2024_1_1.jpg.webp?h=db5e2b43&itok=jW2sd4Zb HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22}; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Medium.c4877bdfa15aef22d9255288b16899c5.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/main_cloudfront_sd.iq_ltr/59a2fade3d36f2f4f9ecd750c27be976b0ac7dee.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/main_exps_cloudfront_sd.iq_ltr/de150bdd2c4f503788221a11564ca289cdbe20e5.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92ce308fc.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/main_cloudfront_sd/9d3571bfcfd220f5be846047e043c221bcc1cc2e.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/searchbox_cloudfront_sd/f7aa20a8e47580b2d09d2b0785ba3ed32ced4021.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/css/client.112a5244.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf050cd2.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ua-parser HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/geoip?weather=false HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/css/256aa323.b7ebf6c0.chunk.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb10712.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/analytics.79f8498ff26e4bffe258.js HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ua-parser HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/geoip?weather=false HTTP/1.1Host: dcinfos-cache.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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 HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/1230916.1524893.json?3ac2b93dcc3f353c12ffcd1847a1baa3 HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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 HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=Kkzi0HKKDW1BhDZqxD6Y+ByfXXk03WFKEjVQ4EYCUfD9JgYWQP4XKfAhxxXMjpSQNSjnBu2+zi3Ufg5NptW+ZrxATJQZJX3le1vZ0vVip3NmX5GD6Ua8cumyfDwpjuM1aFqY7I3zrceQEFFIJtmeFV1JHZXW2r7pQgD2cXazWbvnEjjPbX8=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/1230916.1524893.json?3ac2b93dcc3f353c12ffcd1847a1baa3 HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/content_cloudfront_sd/ece690fd13c824529e3870e0e662c417931b8461.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e7446001225f2b.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /design-assets/assets/v3.81.0/fonts-brand/BookingBold.woff HTTP/1.1Host: t-cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /design-assets/assets/v3.81.0/fonts-brand/BookingRegular.woff HTTP/1.1Host: t-cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logo?ver=1&sid=43724e98906336bfa0cdee9a49c43a97&t=17200170051 HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmdWb5Xjjp4oE%2FZB6TDYhAIwwjcEhC4hr3F5TkPmVdseXN8pWARAUkK%2BMpX%2FajW4LNza7JLVJ%2B1RId%2BUjrMFj0XMBJNEkBF5A8My9e7570imH2qkh5MEILk5516bR8CKYcaHhuC5vBBUy1Lhmaj%2FwB50%3D; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/fonts/booking-iconset-original/29bca18dce5a8e111855e31314a9b1d750ea9beb.woff2 HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33b3330f9.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/client.aef18f37.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/034e4287.d0fe97f0.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/a72063b1.7c807fb7.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /psb/capla/static/js/256aa323.a3f07c1f.chunk.js HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logo?ver=1&sid=43724e98906336bfa0cdee9a49c43a97&t=17200170051 HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbKE7bjkbYWzknertGXiQbmdWb5Xjjp4oE%2FZB6TDYhAIwwjcEhC4hr3F5TkPmVdseXN8pWARAUkK%2BMpX%2FajW4LNza7JLVJ%2B1RId%2BUjrMFj0XMBJNEkBF5A8My9e7570imH2qkh5MEILk5516bR8CKYcaHhuC5vBBUy1Lhmaj%2FwB50%3D; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-
Source: global traffic	HTTP traffic detected: GET /static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42fb050d.png HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-gb.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c360/v1/track HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D
Source: global traffic	HTTP traffic detected: GET /consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/8ead1a95-64b9-4e6c-877c-52602d89b97c/en-gb.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js_tracking?ref_action=content&ver=2&stype=1&lang=en-gb&pid=8fce65f64498001f&ete=&etg=&etcg=eWfCDMeICKFNcfEEHFRT\|4&ets=&etgwv= HTTP/1.1Host: www.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"X-Booking-ET-Serialized-State: EzjSDHH-jwSonZfrsB6BZy2_XjFMImDud7C83xD16WjB0IDZNg6wyll1FVx4vN4TuX-Booking-Language-Code: en-gbX-Booking-Client-Info: sec-ch-ua-mobile: ?0X-Booking-AID: 304142User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-Booking-Pageview-Id: 8fce65f64498001fX-Booking-Info: X-Booking-SiteType-Id: 1X-Booking-Session-Id: bd8594232a35d0b0aa19987e3b97a73dsec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%20sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ&sid%20=930746e7f78d5b33410375991db31657Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D
Source: global traffic	HTTP traffic detected: GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: zKkk532iVwRD6VHt3INHlg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css HTTP/1.1Host: cf.bstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy-consents/implicit HTTP/1.1Host: account.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D; _gat=1; lastSeen=0; bkng_ap_sso_session=eyJib29raW5nX2dsb2JhbCI6eyJzZXNzaW9ucyI6W10sImRhdGFfc3ViamVjdF9pZCI6ImQxNzA3YWJjLTViNzMtNDc1YS1hMjJhLTE2YTIwNjU0NDJlYyJ9fQ; bkng_sso_session=e30; bkng_sso_ses=e30
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202403.2.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&gjid=1336240905&_gid=1950907471.1720017009&_u=aGBAgAIJAAAAAGgMI~&z=106604052 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&_u=aGBAgAIJAAAAAGgMI~&z=921114110 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/challenge.js HTTP/1.1Host: d8c14d4960ca.edge.sdk.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg HTTP/1.1Host: cf.bstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js_tracking?ref_action=content&ver=2&stype=1&lang=en-gb&pid=8fce65f64498001f&ete=&etg=&etcg=eWfCDMeICKFNcfEEHFRT\|4&ets=&etgwv= HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbca8KLfxLPecT51SU%2B6PqTKfvKiavbqrctWRfjmSdFikXmNlgUiZ9GWG6iyrRy%2BX3RLbc%2FWTvr%2F2%2Fpceidx58dSwv2sRkwSyIWuKJTBQ9REgqFlADzAnpDp8lJ8un0cU3WKZ%2FGiyJQQMBn%2FghE6hqMPTMwJSkLaHXDjK3XcdU59g%3D; _gat=1; lastSeen=0; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=nonGDPR&implicitConsentDate=1720017010321&isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=e49875b7-6e18-40b5-a28d-a6771aa14937&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Fcontent%2Fprivacy.en-gb.html%3Flabel%3Dgen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%2520sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ%26sid%2520%3D930746e7f78d5b33410375991db31657&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-116109-18&cid=2095171112.1720017009&jid=1136369996&_u=aGBAgAIJAAAAAGgMI~&z=921114110 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/challenge.js HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c360/v1/track HTTP/1.1Host: www.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; OptanonConsent=implicitConsentCountry=nonGDPR&implicitConsentDate=1720017010321&isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=e49875b7-6e18-40b5-a28d-a6771aa14937&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.booking.com%2Fcontent%2Fprivacy.en-gb.html%3Flabel%3Dgen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiAIBmAIhqAIDuAKC4pmxB%2520sACAdICJDFlZWY0ZmRjLTU5MGUtNDcxMi1iOTk5LTZiMmU0N2E5MjY2YdgCBOACAQ%26sid%2520%3D930746e7f78d5b33410375991db31657&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; lastSeen=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/verify HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: iYJG5BMy1UvO1D2N/OHUuQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en-us?utm_source=extranet_login_page HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; lastSeen=0; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJIf-None-Match: "1720016997"
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304If-None-Match: "605f0374-750"If-Modified-Since: Sat, 27 Mar 2021 10:05:40 GMT
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304If-None-Match: "605f0374-1ed1"If-Modified-Since: Sat, 27 Mar 2021 10:05:40 GMT
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-us?utm_source=extranet_login_pageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A03+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1; _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=1&pvis=1&th=1230916.1524893.1.1.1.1.1720017006852.1720017006852.0.1; cors_js=1; BJS=-; _ga=GA1.2.2095171112.1720017009; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi2
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /signals/config/137657823624702?v=2.9.160&r=stable&domain=partner.booking.com&hme=733c3732ec767f7a62e7787aff967e6d19b1e13e533937876f2e15efe07bf678&ex_m=67%2C113%2C100%2C104%2C58%2C3%2C93%2C66%2C15%2C91%2C84%2C49%2C51%2C160%2C163%2C175%2C171%2C172%2C174%2C28%2C94%2C50%2C73%2C173%2C155%2C158%2C168%2C169%2C176%2C122%2C39%2C33%2C134%2C14%2C48%2C181%2C180%2C124%2C17%2C38%2C1%2C41%2C62%2C63%2C64%2C68%2C88%2C16%2C13%2C90%2C87%2C86%2C101%2C103%2C37%2C102%2C29%2C25%2C156%2C159%2C131%2C27%2C10%2C11%2C12%2C5%2C6%2C24%2C21%2C22%2C54%2C59%2C61%2C71%2C95%2C26%2C72%2C8%2C7%2C76%2C46%2C20%2C97%2C96%2C98%2C9%2C19%2C18%2C81%2C53%2C79%2C32%2C70%2C0%2C89%2C31%2C78%2C83%2C45%2C44%2C82%2C36%2C4%2C85%2C77%2C42%2C34%2C80%2C2%2C35%2C60%2C40%2C99%2C43%2C75%2C65%2C105%2C57%2C56%2C30%2C92%2C55%2C52%2C47%2C74%2C69%2C23%2C106 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX1VTIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLXVzP3V0bV9zb3VyY2U9ZXh0cmFuZXRfbG9naW5fcGFnZSNtYWluLWNvbnRlbnQiLCJ1cmxSZWZlcnJlciI6IiIsImNoYW5uZWwiOiJXZWIiLCJiZWFjb25WZXJzaW9uIjoxNiwiY29uZmlnVmVyc2lvbiI6IjEyNiIsImNvbnRlbnRab25lcyI6WyJzaWRlYmFyX2Jhbm5lciIsInBvcHVwX3N1cnZleSIsImJvb2tpbmdfbWNwX2dhIiwiaG9tZXBhZ2VfY2Fyb3VzZWwiLCJob21lcGFnZV9taW5pX2hlcm9fYmFubmVyIiwiaG9tZXBhZ2VfcmVjb21tZW5kZWRfcmVhZHMiLCJob21lcGFnZV9yZWNvbW1lbmRlZF9yZWFkc18xc3RfdGVhc2VyIiwiaG9tZXBhZ2VfY3RhIl19LCJ1c2VyIjp7ImFub255bW91c0lkIjoiMWU1N2M4Zjk4NThlNjQ0OCIsImlkZW50aXRpZXMiOnsiZ2FDbGllbnRJZCI6IjIwOTUxNzExMTIuMTcyMDAxNzAwOSJ9fSwiaW50ZXJhY3Rpb24iOnsibmFtZSI6IlZpZXdlZCBIb21lcGFnZSJ9LCJwYWdlVmlldyI6dHJ1ZSwiY29uc2VudHMiOltdLCJhY2NvdW50Ijp7fSwiX3Rvb2xzRXZlbnRMaW5rSWQiOiIzNjE0ODk0MjM1MjQ3ODkyIiwiZXhwbGFpbiI6dHJ1ZX0%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=fzXpBkEoLM+0CDtPWvLyBSmdHZ0IWxb2X8jCTOhBq69PH67VHvly1CNGTtH2C2Hy0jZant24hzvTL/gtiYVdtbyOgE+i+rdIXBftdHm1kgnJcmhjS9AtShwXUhgRcU7646EzK2tSoMR4FxaG9P/hVwJ5QcQV8FL6NWupMrWPusqx4O7gRvA=
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-LVHK6H547B&gacid=2095171112.1720017009&gtm=45je4710v889588973z8811498483za200zb811498483&dma=0&gcs=G111&gcd=13r3r3r3r5&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&z=1164317894 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4890&pxr=1&gdpr=0&pst=1720017025277 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendors-react-chat_node_modules_react-hook-form_dist_index_esm_mjs-aeac223be9413b14fbb3.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /react-chat_src_components_Carousel_Carousel_js-react-chat_src_components_MessageButton_Messag-020420-e1a675876deb028268b2.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Chat-d91fd68a244be422d61e.js HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&_u=QACAAEAAAAAAACAAI~&z=531817729 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: fS29FFUuKyBH3/pmOMty/w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 1NJbvkRphCkPOAjlZvrcqA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&gjid=1577760482&_gid=1950907471.1720017009&_u=QACAAEAAAAAAACAAI~&z=1098597650 HTTP/1.1Host: stats.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=fzXpBkEoLM+0CDtPWvLyBSmdHZ0IWxb2X8jCTOhBq69PH67VHvly1CNGTtH2C2Hy0jZant24hzvTL/gtiYVdtbyOgE+i+rdIXBftdHm1kgnJcmhjS9AtShwXUhgRcU7646EzK2tSoMR4FxaG9P/hVwJ5QcQV8FL6NWupMrWPusqx4O7gRvA=; AWSALBTGCORS=svghumMS8q2XFvjHwbZiLtsKXN3DSDOpyLI+dfOEZObn2GeRIXfOOmpu0aMak8if0rCGENKhfHpWtVMijhRnVKIHKKrup9RXLxeUm0Xkvhkuf+UGKxg0JedSJ8hQVSe0QE4ye/UqYqnFRw+kc8/OgEiXGFsbLBolEE9k0xZdqgBmPF/O/Do=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAY91l0lEZAAAA:GTBNiSOM8S2UJp1mcbUJ/Airk4RV3Yi2Z+PYPlrHBWd/v05fYMupXf1lUUQu2gNnwIeEHaewLGaLwPMzjtlRYSyiwCL4H01Tf+oi21wAE1FyU5shqoLyfdwi5UQVCQnSV4csjwm3qX+02tHJ2/ustgXgPavV0a+vUbMVZxmJPKN0Mi7m7sIXVdlBqmfYyU3PWXFyK2i83yU2g29dFdUSSSZS4ZRwvoMkcCZHZVPJhlV75JHJ; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2069667428.1720017025277\|1720017025268\|\|0\|\|\|\|0\|18.07\|40.95803; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4890&pxr=1&gdpr=0&pst=1720017025277 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-6284728-15&cid=2095171112.1720017009&jid=373491819&_u=QACAAEAAAAAAACAAI~&z=531817729 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIlqHLAQiFoM0BCLnKzQEIitPNARjBy8wBGMXYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/stats/bot/5062/public/current_wait_time?sources%5B%5D=web HTTP/1.1Host: sage.kindly.aiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/stats/bot/5062/public/current_wait_time?sources%5B%5D=web HTTP/1.1Host: sage.kindly.aiConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content&rl=&if=false&ts=1720017026795&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017025056&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: lD/ASftr1S3ixyB29Ep1Vg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /data HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=0703256797eb7d7a624e9eb8cf81b47691a59af0&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: wk4mmxzPzqBkM92tBSaeSQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=175100-175100If-Range: "d2ac4d984b36b772a3b08736889192a7"
Source: global traffic	HTTP traffic detected: GET /d8c14d4960ca/a18a4859af9c/telemetry HTTP/1.1Host: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /src/assets/fonts/IBMPlexSans-Regular.2c412e2f77ae69aa2154613095be7130.ttf HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://partner.booking.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=175100-180439If-Range: "d2ac4d984b36b772a3b08736889192a7"
Source: global traffic	HTTP traffic detected: GET /en-us HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fp
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: VmP3JKziue6owsUcNVrKPA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 9qFATANX9Uk0t89Dsafq5w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: bQW2B89JJFyKLRi0Vdq93w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_XgRhdDPWb33RcpJhPMJZtlmn458nD-GlhUL5Ud4J8h4.js?scope=footer&delta=0&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-4
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-4
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en-us&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A24+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; _ga=GA1.1.2095171112.1720017009; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.0.1720017026.59.0.0; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, triggerReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.1.2095171112.1720017009; _ga_LVHK6H547B=GS1.1.
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; mf_user=441b19bf62065e7f40954aa7de126dce\|; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=2&pvis=2&th=1230916.1524893.2.2.1.1.1720017006852.1720017025358.0.1; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.1.2095171112.1720017009; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017033
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=849&pxr=1&gdpr=0&pst=1720017033441 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=XU5tyIfq/lXaSF3733zIioTJlG5x74irCB8riPgCKIKj6zkU9u3AHLZ13B/GegkNup8PV4+WNOIXYfdX4oPdNlughmhLPrKualeZW9i9ogeLZqS1rdu2cuP62kV4QgN5HEjbggsYiQxaAubXtjATUgWeYmvvR+sSE27t7rp75VvU7aXBug8=
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-us&rl=&if=false&ts=1720017033230&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017033184&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-us&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=849&pxr=1&gdpr=0&pst=1720017033441 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2069667428.1720017025277$070333776ddae7c83e4bd79702bfa0d624d2de56.-2069667428.1720017033441\|1720017030064\|2071166924_-791013993\|0\|\|\|\|0\|18.07\|40.95803; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX1VTIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLXVzIiwidXJsUmVmZXJyZXIiOiIiLCJjaGFubmVsIjoiV2ViIiwiYmVhY29uVmVyc2lvbiI6MTYsImNvbmZpZ1ZlcnNpb24iOiIxMjYiLCJjb250ZW50Wm9uZXMiOlsic2lkZWJhcl9iYW5uZXIiLCJwb3B1cF9zdXJ2ZXkiLCJib29raW5nX21jcF9nYSIsImhvbWVwYWdlX2Nhcm91c2VsIiwiaG9tZXBhZ2VfbWluaV9oZXJvX2Jhbm5lciIsImhvbWVwYWdlX3JlY29tbWVuZGVkX3JlYWRzIiwiaG9tZXBhZ2VfcmVjb21tZW5kZWRfcmVhZHNfMXN0X3RlYXNlciIsImhvbWVwYWdlX2N0YSJdfSwidXNlciI6eyJhbm9ueW1vdXNJZCI6IjFlNTdjOGY5ODU4ZTY0NDgiLCJpZGVudGl0aWVzIjp7ImdhQ2xpZW50SWQiOiIyMDk1MTcxMTEyLjE3MjAwMTcwMDkifX0sImludGVyYWN0aW9uIjp7Im5hbWUiOiJWaWV3ZWQgSG9tZXBhZ2UifSwicGFnZVZpZXciOnRydWUsImNvbnNlbnRzIjpbXSwiYWNjb3VudCI6e30sIl90b29sc0V2ZW50TGlua0lkIjoiMjMxOTA3NzgzMjI2MTEwNzIiLCJleHBsYWluIjp0cnVlfQ%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=XU5tyIfq/lXaSF3733zIioTJlG5x74irCB8riPgCKIKj6zkU9u3AHLZ13B/GegkNup8PV4+WNOIXYfdX4oPdNlughmhLPrKualeZW9i9ogeLZqS1rdu2cuP62kV4QgN5HEjbggsYiQxaAubXtjATUgWeYmvvR+sSE27t7rp75VvU7aXBug8=; AWSALBTGCORS=H2ns3/xroKocVCyzPYbZjgGynZV67oQM3Mg1WwVPWkKifRXqnFoMTFqo26GjBocXApGEw+tZ564emf7HMp7E6xnBavbwUBuzYatybTI9HQkoZFQA4ZdO5N/DEz2wvjnp6fZkt3DIKlSjR6O37rg2yYG2DtTvF+IZCEa8iPZPJg8OQsJTJUA=
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=1&li=0&lh=0&ls=0&d=AABMAcAAAAcCgAIxAAAAMgAFAAOLADMBAAAAfgSREgABBLcSAAIEuBIAAwS4EgAEBLgSAAUEyAYCgAIxAAANkw4AABAuDZgmAAEAAA2bJgACAAANqiYAAwAADbImAAQAAA2-JgAFAAAN5yYABgAADegmAAcAAA3tJgAIAAAN_SYACQAADg4mAAoAAA4_JgALAAAOSCYADAAADkgmAA0AAA_-JgAOAAAQ_CYADwAAEP8mABAAABEBJgARAAARGyYAEgAAERsmABMAABEhJgAUAAARKCYAFQAAETkmABYAABFBJgAXAAARQSYAGAAAEUkmABkAABFJJgAaAAARVCYAGwAAEVUmABwAABFcJgAdAAARXCYAHgAAEWkmAB8AABFqJgAgAAARciYAIQAAEXMmACIAABGAJgAjAAARgSYAJAAAEYomACUAABGMJgAmAAARjCYAJwAAEl4CAoYCNxJnKQXMp-EABhboBwKGAjcAABbpKBbpKgABAAD__wAc4CYAKAAAHOEmACkAABzkJgAqAAAkjyYAKwAAJJAmACwAACSRJgAtAAAodCYALgAAKHUmAC8AACiCJgAwAAAogiYAMQAAKIMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi11cw==,Mjp2RTdRcQ==,MzpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NDo3Y0hNRA==,NTpFeHBlcmllbmNlIDE=,NjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: oAwry0o++s8pWPAFLOoVfQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: tlGPz8WVoh2NZDoMcsB79Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=1&li=0&lh=0&ls=0&d=AABMAcAAAAcCgAIxAAAAMgAFAAOLADMBAAAAfgSREgABBLcSAAIEuBIAAwS4EgAEBLgSAAUEyAYCgAIxAAANkw4AABAuDZgmAAEAAA2bJgACAAANqiYAAwAADbImAAQAAA2-JgAFAAAN5yYABgAADegmAAcAAA3tJgAIAAAN_SYACQAADg4mAAoAAA4_JgALAAAOSCYADAAADkgmAA0AAA_-JgAOAAAQ_CYADwAAEP8mABAAABEBJgARAAARGyYAEgAAERsmABMAABEhJgAUAAARKCYAFQAAETkmABYAABFBJgAXAAARQSYAGAAAEUkmABkAABFJJgAaAAARVCYAGwAAEVUmABwAABFcJgAdAAARXCYAHgAAEWkmAB8AABFqJgAgAAARciYAIQAAEXMmACIAABGAJgAjAAARgSYAJAAAEYomACUAABGMJgAmAAARjCYAJwAAEl4CAoYCNxJnKQXMp-EABhboBwKGAjcAABbpKBbpKgABAAD__wAc4CYAKAAAHOEmACkAABzkJgAqAAAkjyYAKwAAJJAmACwAACSRJgAtAAAodCYALgAAKHUmAC8AACiCJgAwAAAogiYAMQAAKIMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi11cw==,Mjp2RTdRcQ==,MzpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NDo3Y0hNRA==,NTpFeHBlcmllbmNlIDE=,NjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=070333776ddae7c83e4bd79702bfa0d624d2de56&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en-gb HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017034.51.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fp
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: ydhWeM5vLSomfYS1QD0UVw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_OQFMChpj4TK2MwcEZQHui-t-iGCpTgvgxnaPbxulWTA.js?scope=footer&delta=0&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%2
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: nJecMmjLH2ysrynfZqIOCA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: g8kw9l6/nRB9Vyzm6IVY7Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=en&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A33+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%25
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/en.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 2qYZGy1iFwFcjTajiERWWA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger;navigation-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=fal
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-gb&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=1179&pxr=1&gdpr=0&pst=1720017039738 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/en-gbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=3&pvis=3&th=1230916.1524893.3.3.1.1.1720017006852.1720017034254.0.1; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=eyJzb3VyY2UiOnsicGFnZVR5cGUiOiJIb21lcGFnZSIsImxvY2FsZSI6ImVuX0dCIiwidXJsIjoiaHR0cHM6Ly9wYXJ0bmVyLmJvb2tpbmcuY29tL2VuLWdiIiwidXJsUmVmZXJyZXIiOiIiLCJjaGFubmVsIjoiV2ViIiwiYmVhY29uVmVyc2lvbiI6MTYsImNvbmZpZ1ZlcnNpb24iOiIxMjYiLCJjb250ZW50Wm9uZXMiOlsic2lkZWJhcl9iYW5uZXIiLCJwb3B1cF9zdXJ2ZXkiLCJib29raW5nX21jcF9nYSIsImhvbWVwYWdlX2Nhcm91c2VsIiwiaG9tZXBhZ2VfbWluaV9oZXJvX2Jhbm5lciIsImhvbWVwYWdlX3JlY29tbWVuZGVkX3JlYWRzIiwiaG9tZXBhZ2VfcmVjb21tZW5kZWRfcmVhZHNfMXN0X3RlYXNlciIsImhvbWVwYWdlX2N0YSJdfSwidXNlciI6eyJhbm9ueW1vdXNJZCI6IjFlNTdjOGY5ODU4ZTY0NDgiLCJpZGVudGl0aWVzIjp7ImdhQ2xpZW50SWQiOiIyMDk1MTcxMTEyLjE3MjAwMTcwMDkifX0sImludGVyYWN0aW9uIjp7Im5hbWUiOiJWaWV3ZWQgSG9tZXBhZ2UifSwicGFnZVZpZXciOnRydWUsImNvbnNlbnRzIjpbXSwiYWNjb3VudCI6e30sIl90b29sc0V2ZW50TGlua0lkIjoiMzU5MDAxOTM0MTU5NDE1OTUiLCJleHBsYWluIjp0cnVlfQ%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=SxcVHKrUiZJZmplH3mGl+n/CeB5QzRdUGvhkgV2LS85RM2IVFJixLramuj+390g5F02CHNAgRsqua+ES2hH9KvgbU1sEmeE071EjdqPCIHH/3oB0IN+z5n9nQ1ONlwH+0WvIdKShjcZQ2C3b71hAQJubB/MpuAo15whchEjaG6myijYw888=
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fen-gb&rl=&if=false&ts=1720017039475&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017039438&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: l7WgoVTl/VDe6VRw9cK9Cg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=CDfOOv/zqzE2WWjKfT2StEQBaaqq5L3So2SugI6JnZe1Oep2fITuYbwKQywk3QVWV1lGyYdxNvuKE0elngjAWJiwiSWRglOKd2eGO8v8Bwo2mB1wAR11PqhzL+xJII3LAb4DUIEv/0YDv+8okIBkbXIZjqALRoNFbByf1u1Xd+9kdha0tm4=; AWSALBTGCORS=K9ZeF1LTP/Bmm3fJnhkvkwWDH8ptyQnYpgtaTrkFF7x/+H0fmK0m6xbykVzjdrdIeYEXBVQNgv17PBQ7as1C8L5S2LrreS0A9zHMY/MU08fC9+k+e+NWyQI7aOQWIYJNHBdgLZvImKgfz8TxncTIUnYgB73+TIBWLoYxGJa0hWkjN1Iw8SI=
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909db4ee55eb97589\|0703256797eb7d7a624e9eb8cf81b47691a59af0.-2
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fen-gb&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=1179&pxr=1&gdpr=0&pst=1720017039738 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: YQjsimwKx3mEu6mCHDnaig==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Zoyw/nZuBxgWHrsYE3zEQA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=07033994ba79a98d24b0dc6c61a58f931d0bdf57&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bg HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpart
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: qA/x7QhWTvWJDL5fuLf0rg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=070333776ddae7c83e4bd79702bfa0d624d2de56&v=18.07&pst=1720017033441&q=1&li=0&lh=0&ls=0&d=AADfAoMAAAAFAAOLAAACAokBvAGjKQb_l-AAAALAEgABA6gHAokBvAACA7EoA7IqAAEAAP__AAUzEgADBTMSAAQFMxIABQU0EgAGBpIOAAAQLgb7JgABAAAHBCYAAgAABwUmAAMAAAcJJgAEAAAHQSYABQAAB0UmAAYAAAdKJgAHAAAHZyYACAAAB2wmAAkAAAdsJgAKAAAHbSYACgAACLYGAoYBuQACCOUCAoQBtwjlKQT_MSgABwjvJgALAAAJXQICgAGzCqomAAwAAAqxJgANAAAKtSYADgAACrgmAA4AAArlJgAPAAAK5SYAEAAACuUmABAAAArmKQNmLXIABwr5JgARAAAK_CYAEgAACwUmABMAAAsQJgAUAAALECYAFQAACxEmABUAAAsYJgAWAAALGCYAFwAACxkmABcAAAsxJgAYAAALMiYAGQAACzMmABkAAAtLJgAaAAALTCYAGwAAC0wmABsAAAtTJgAcAAALVCYAHQAAC1QmAB0AAAteJgAeAAALXiYAHwAAC14mAB8AAAtqJgAgAAALaiYAIQAAC2smACEAAAt1JgAiAAALdSYAIwAAC3YmACMAAAt-JgAkAAALfyYAJQAAC38mACUAAAuJJgAmAAALiyYAJwAAC4smACgAAAuSJgAoAAAN6AcCgAGzAAIN6SgN6SoAAAAA__8BF34mACkAABd_JgAqAAAXgSYAKwAAF4QmACwAAB4bJgAtAAAeHCYALgAAHiYmAC4AAB4tBgKAAbMAAh55BwKAAbMAAh55KB55KgAAAAD__wIfCiYALwAAIfsmADAAACH8JgAxAAAh_iYAMQAAIg4mADIAACIOJgAzAAAiDyYAMwAAJpET.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,MTplbi11cw==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: IxjWcQ1L0wgVeXJ8xg91IA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=070333776ddae7c83e4bd79702bfa0d624d2de56&v=18.07&pst=1720017033441&q=1&li=0&lh=0&ls=0&d=AADfAoMAAAAFAAOLAAACAokBvAGjKQb_l-AAAALAEgABA6gHAokBvAACA7EoA7IqAAEAAP__AAUzEgADBTMSAAQFMxIABQU0EgAGBpIOAAAQLgb7JgABAAAHBCYAAgAABwUmAAMAAAcJJgAEAAAHQSYABQAAB0UmAAYAAAdKJgAHAAAHZyYACAAAB2wmAAkAAAdsJgAKAAAHbSYACgAACLYGAoYBuQACCOUCAoQBtwjlKQT_MSgABwjvJgALAAAJXQICgAGzCqomAAwAAAqxJgANAAAKtSYADgAACrgmAA4AAArlJgAPAAAK5SYAEAAACuUmABAAAArmKQNmLXIABwr5JgARAAAK_CYAEgAACwUmABMAAAsQJgAUAAALECYAFQAACxEmABUAAAsYJgAWAAALGCYAFwAACxkmABcAAAsxJgAYAAALMiYAGQAACzMmABkAAAtLJgAaAAALTCYAGwAAC0wmABsAAAtTJgAcAAALVCYAHQAAC1QmAB0AAAteJgAeAAALXiYAHwAAC14mAB8AAAtqJgAgAAALaiYAIQAAC2smACEAAAt1JgAiAAALdSYAIwAAC3YmACMAAAt-JgAkAAALfyYAJQAAC38mACUAAAuJJgAmAAALiyYAJwAAC4smACgAAAuSJgAoAAAN6AcCgAGzAAIN6SgN6SoAAAAA__8BF34mACkAABd_JgAqAAAXgSYAKwAAF4QmACwAAB4bJgAtAAAeHCYALgAAHiYmAC4AAB4tBgKAAbMAAh55BwKAAbMAAh55KB55KgAAAAD__wIfCiYALwAAIfsmADAAACH8JgAxAAAh_iYAMQAAIg4mADIAACIOJgAzAAAiDyYAMwAAJpET.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,MTplbi11cw==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: Rt3uCTQS6jkjRtVZkG1gEQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: dp5VbW1DjJZEIUtx8QLYug==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=2&li=5940&lh=907&ls=126&d=ADgeACIAAAsABwABDAAHA_smADIAAAP8JgAzAAAD_iYANAAAGK8T.Nzoja2luZGx5LWNoYXQtYXBpID4gZGl2ID4gOmRvY3VtZW50LWZyYWdtZW50OiA+ICNjaGF0Q29udGFpbmVyID4gZGl2ID4gZGl2ID4gZGl2ID4gZGl2OlsyXSA+IGRpdiA+IGRpdjpbMl0gPiBidXR0b24=. HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_sUtND6IDwL1bFz0ypkAvBmuD5qhU9jBHfp4FZtLC4fw.css?delta=0&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_8xrXTAiqhK5R19N2cI7xoXYTYSLTDP3dX6YW9tM8lM0.css?delta=1&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_UvXyKwn0NQjGoY4ItVYtivOqsPRcB28Y3ICRoR_4aTg.css?delta=2&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /sites/default/files/css/css_VT2uO3rIvz8wQKjBZTK55zRpppfj2I5f-jtzgH28ia4.css?delta=3&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_J-ns2p5_JxZ8i6--J9QPWWQZl2yX7MLYJFdUOLE4yxk.js?scope=footer&delta=0&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252F
Source: global traffic	HTTP traffic detected: GET /sites/default/files/js/js_K9WZD6vkJ5WsZ0_HlzLgYDB_QmZWaIgJxtXOGpJfYD8.js?scope=footer&delta=2&language=bg&theme=booking&include=eJx1UQtuwyAMvRCEI1UG3MBCMDImbXb6ka4ta7dJyMKf5-dng_dCkHcD9890ZsqiPAgk2JGNxQBbJK4qweduDqPqXgVXY6GiskRLzLOxLWpX67uvhWHDlJB1inMQLQHXgZoTWUgvoI_RwxG5JWJh0mdyreoA2fdWox7cooX6KwqvkmJejOdWIE13V1UBiVWiq4_MiHRJOzU5-Vgdbci7oYyOkirAMDOU8ASNyNRyaTbFGtCrLeKlmpudVvIt4UsIPuA61AAztYpJC_bNsX72HOuQVVvIuSddil3bu-AfBQfDr_zgcP2MmOUPkoDgO74isAvKEeNDpGcqtolQVucEsznMdGzx9CLkGOJI_TNjO7TVOOeY-2EoSSyqr_mCp29Kc3Pu_F_xkPfW HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252F
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: jXwydd1bzVDE2A1bDK/HUw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/bg.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: geEIG5rd47xrN4wztauR1w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/plugins/unveilhooks/ls.unveilhooks.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page
Source: global traffic	HTTP traffic detected: GET /libraries/lazysizes/lazysizes.min.js HTTP/1.1Host: partner.booking.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://partner.booking.com/bgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A39+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; _ga=GA1.2.2095171112.1720017009; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=4&pvis=4&th=1230916.1524893.4.4.1.1.1720017006852.1720017039984.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017040.45.0.0; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~172001703
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=0703256797eb7d7a624e9eb8cf81b47691a59af0&v=18.07&pst=1720017025277&q=2&li=5940&lh=907&ls=126&d=ADgeACIAAAsABwABDAAHA_smADIAAAP8JgAzAAAD_iYANAAAGK8T.Nzoja2luZGx5LWNoYXQtYXBpID4gZGl2ID4gOmRvY3VtZW50LWZyYWdtZW50OiA+ICNjaGF0Q29udGFpbmVyID4gZGl2ID4gZGl2ID4gZGl2ID4gZGl2OlsyXSA+IGRpdiA+IGRpdjpbMl0gPiBidXR0b24=. HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=1&li=0&lh=0&ls=0&d=AACsAfYAAQAFAAOLATMHAoABswAAAr4oAr4qAAEAAP__AAL6AgKAAbMDIhIAAQNpKQNmk5QAAgS1EgADBLUSAAQEthIABQS2EgAGBNUCAokBvAU7KQb_NcsABwb-DgAAEC4HhSYAAQAAB4UmAAIAAAeGJgADAAAHliYABAAAB5omAAUAAAelJgAGAAAH4iYABwAAB-ImAAgAAAkWBgKIAbsAAAlJAgKFAbgJSSkFZjIWAAcJXyYACQAACYICAoIBtgntAgKAAbMKHikDZi1yAAcK-CYACgAACwomAAsAAAueJgAMAAALoSYADQAAC6MmAA4AAAvOJgAPAAAL0CYAEAAAC9YmABEAAAvZJgASAAAL4CYAEwAAC-gmABQAAAvoJgAVAAAL9SYAFgAAC_UmABcAAAv_JgAYAAAL_yYAGQAADAkmABoAAAwKJgAbAAAMFyYAHAAADBgmAB0AAAwhJgAeAAAMIiYAHwAADDYmACAAAAw3JgAhAAAMRCYAIgAADEcmACMAAAxbJgAkAAAMWyYAJQAADGQmACYAAAxkJgAnAAAMdyYAKAAADHgmACkAAAyGJgAqAAAMhiYAKwAADJImACwAAAyTJgAtAAAMlCYALgAADfkHAoABswAADfooDfoqAAAAAP__ARfvJgAvAAAX8iYAMAAAJqMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi1nYg==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: jqwqILU8RRbFqnijDtrwww==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Y81hiQX+Ot67p9HCmvoMHw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 2ClhqQJYGiwTNz+wNlsunA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fbg&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4841&pxr=1&gdpr=0&pst=1720017051454 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=HJKuNUE0u6NwAFNNOsOr2FvqYebgtqjb5k2QyYWdoveQoLfzFR5cgpO4DrlMNQkRnv7iOz4/3lNFhcsldapNbAOwce2SbZbTN1rs9Wpnv6D84ZwwDf2Svcfqow4HMD/M+q1n6Mv5njW3i5WujjhSrOqI/+0CMM065Fj71OzEH91yjloV/C0=
Source: global traffic	HTTP traffic detected: GET /consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/8ead1a95-64b9-4e6c-877c-52602d89b97c/bg.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /core/modules/statistics/statistics.php HTTP/1.1Host: partner.booking.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _evga_c2e4={%22uuid%22:%221e57c8f9858e6448%22}; bkng_sso_auth=CAIQsOnuTRpmChkpreFMNri/p41oQesNKxQTeScJoJjpHWLMWQeM8+2KkovXsmsUTOocgzFLikPt8RfUIOlgsDN3UQKvKg802O/iWvjwtboLC4Xqg9kEm9mHgCvh2e1//yPin4u+DD3MNFqg9qqF; pcm_consent=analytical%3Dtrue%26countryCode%3DUS%26consentId%3D1a72a638-ee30-4cc2-a313-16d5796d6af2%26consentedAt%3D2024-07-03T14%3A30%3A05.471Z%26expiresAt%3D2024-12-30T14%3A30%3A05.471Z%26implicit%3Dtrue%26marketing%3Dtrue%26regionCode%3DNY%26regulation%3Dnone%26legacyRegulation%3Dnone; _sfid_2a26={%22anonymousId%22:%221e57c8f9858e6448%22%2C%22consents%22:[]}; cors_js=1; BJS=-; _gid=GA1.2.1950907471.1720017009; _gat=1; bkng_sso_session=e30; bkng_sso_ses=e30; bkng=11UmFuZG9tSVYkc2RlIyh9Yaa29%2F3xUOLbiKbS0JOgDBLYY%2BtTDhrKnuHyT5pcQprmjMyGRqzcutz4Tl3%2FOZi2SFl0Quz4q7NxHaV%2FMI04xKF%2B6kJp7teQFvVu6mpo320oTtaC%2BWzc6nwv7SwN%2BUuAka3CEEjtzu2EMhYo1MkCFlSn1%2BPC2RowK1RTBSU%2Brn6%2Fy%2FO4E4jxymw%3D; Drupal.hideEntity__signinTooltip=true; lastSeen=1720017019304; _gat_UA-6284728-15=1; mf_user=441b19bf62065e7f40954aa7de126dce\|; _mkto_trk=id:261-NRZ-371&token:_mch-booking.com-1720017026295-37063; _ga=GA1.3.2095171112.1720017009; _gid=GA1.3.1950907471.1720017009; _fbp=fb.1.1720017026791.190071828990427448; aws-waf-token=9ec059a4-17c7-423e-a45f-c7d6e6edbaf9:EQoAsfhkia31AAAA:CtqJisbd7bNbWiqc9NIjprCV0cY16LZ+MzGztUFQENJGdv5N45ay1vlqUHClDF1S+KeR5cTlFb3M9jgVhpt1wKuWLpQhtBFwLlGPMqa0Gbv6C6wwF4tsMAEONMv4w/CSeteHyEpyT4xzY8kgpmHU2SWJ/w5uKVNzWUN+6MOMrLZewj8hs4xV+VZXG2RUWOVt95ougE4m8t35St01npmBgmmY8hmqmCpxm9vCYW15g579CvWj; QSI_HistorySession=https%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page~1720017006500%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us%3Futm_source%3Dextranet_login_page%23main-content~1720017030145%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-us~1720017036678%7Chttps%3A%2F%2Fpartner.booking.com%2Fen-gb~1720017043040; _ga=GA1.2.2095171112.1720017009; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Jul+03+2024+10%3A30%3A51+GMT-0400+(Eastern+Daylight+Time)&version=202404.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=f5c60795-7d26-44ec-bbfa-c4f64b39b680&interactionCount=0&isAnonUser=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A1%2CC0004%3A1&AwaitingReconsent=false; ABTastySession=mrasn=&lp=https%253A%252F%252Fpartner.booking.com%252Fen-us%253Futm_source%253Dextranet_login_page; ABTasty=uid=c189kb6c2891z0j9&fst=1720017005133&pst=-1&cst=1720017005133&ns=1&pvt=5&pvis=5&th=1230916.1524893.5.5.1.1.1720017006852.1720017052241.0.1; _ga_LVHK6H547B=GS1.1.1720017025.1.1.1720017052.33.0.0; mf_b18d32a2-ec35-41cf-9425-b945bb4c2fa5=9f07b72f09d4515909
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=1&li=0&lh=0&ls=0&d=AACsAfYAAQAFAAOLATMHAoABswAAAr4oAr4qAAEAAP__AAL6AgKAAbMDIhIAAQNpKQNmk5QAAgS1EgADBLUSAAQEthIABQS2EgAGBNUCAokBvAU7KQb_NcsABwb-DgAAEC4HhSYAAQAAB4UmAAIAAAeGJgADAAAHliYABAAAB5omAAUAAAelJgAGAAAH4iYABwAAB-ImAAgAAAkWBgKIAbsAAAlJAgKFAbgJSSkFZjIWAAcJXyYACQAACYICAoIBtgntAgKAAbMKHikDZi1yAAcK-CYACgAACwomAAsAAAueJgAMAAALoSYADQAAC6MmAA4AAAvOJgAPAAAL0CYAEAAAC9YmABEAAAvZJgASAAAL4CYAEwAAC-gmABQAAAvoJgAVAAAL9SYAFgAAC_UmABcAAAv_JgAYAAAL_yYAGQAADAkmABoAAAwKJgAbAAAMFyYAHAAADBgmAB0AAAwhJgAeAAAMIiYAHwAADDYmACAAAAw3JgAhAAAMRCYAIgAADEcmACMAAAxbJgAkAAAMWyYAJQAADGQmACYAAAxkJgAnAAAMdyYAKAAADHgmACkAAAyGJgAqAAAMhiYAKwAADJImACwAAAyTJgAtAAAMlCYALgAADfkHAoABswAADfooDfoqAAAAAP__ARfvJgAvAAAX8iYAMAAAJqMT.MDojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYQ==,MTplbi1nYg==,MjojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXY=,Mzp2RTdRcQ==,NDpbT25nb2luZyAtIGRvIG5vdCBwYXVzZV0gR0EgLSBNQ1AgdG8gZGF0YUxheWVy,NTo3Y0hNRA==,NjpFeHBlcmllbmNlIDE=,NzojcGFyYWdyYXBoLXZpZXdzcmVmZXJlbmNlLTYwNTkgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBkaXYgPiBhcnRpY2xlID4gYSA+IGRpdjpbMl0=.bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /init?v=18.07&p=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&ret=0&u=441b19bf62065e7f40954aa7de126dce&href=https%3A%2F%2Fpartner.booking.com%2Fbg&url=new%20homepage-64867&ref=&title=Partner%20Hub%20%7C%20Booking.com%20for%20Partners&res=1280x1024&tz=300&to=0&dnt=0&ori=&dw=1263&dh=907&time=4841&pxr=1&gdpr=0&pst=1720017051454 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /71cd12cdf77ebcb750cff91a9bba6f04/manifest.json HTTP/1.1Host: try.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "b533c358c9c0e0ba748254f2335f9141"If-Modified-Since: Mon, 01 Jul 2024 16:57:13 GMT
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ariane.abtasty.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: dCQvl1vDDUWPkkD0IMRuxA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=137657823624702&ev=PageView&dl=https%3A%2F%2Fpartner.booking.com%2Fbg&rl=&if=false&ts=1720017052197&sw=1280&sh=1024&v=2.9.160&r=stable&ec=0&o=4126&fbp=fb.1.1720017026791.190071828990427448&cs_est=true&ler=empty&cdl=API_unavailable&it=1720017051950&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api2/event/booking_prod?event=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%3D HTTP/1.1Host: bookingdotcomb2b.germany-2.evergage.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=HJKuNUE0u6NwAFNNOsOr2FvqYebgtqjb5k2QyYWdoveQoLfzFR5cgpO4DrlMNQkRnv7iOz4/3lNFhcsldapNbAOwce2SbZbTN1rs9Wpnv6D84ZwwDf2Svcfqow4HMD/M+q1n6Mv5njW3i5WujjhSrOqI/+0CMM065Fj71OzEH91yjloV/C0=; AWSALBTGCORS=LuycQ91aWPbGz99HDnEtmyAwrWGuroKvSBHP46f7eyvWZ/Paf94cALLEIoqVuTQZWm4qzqc7hiELurUkXZKf6XSMCrbRbzsu5tOLFbwKPJGRSqO+hfVlQUaxak9z799lmd/Uv8mVUCAb2d51/ok37znbSJh302n8jmUzxzAI1UVJzafnLH4=
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings/dd38dbbf-6f63-4533-9201-1df5d18b2412.json?version=2.60.4&kindly-chat-browser-id=9707dbd2-47ad-4b78-86f3-04290c915fad HTTP/1.1Host: chat.kindlycdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "c810e9b7cb48d30fddd3f3b81476941f"If-Modified-Since: Wed, 05 Jun 2024 08:07:01 GMT
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: VuugWJxaqB3lL1H2LKUerA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /html?website=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&session=9f07b72f09d4515909db4ee55eb97589&page=07035146f9a8277e7f86beb92fdf713b7c5784ba&gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: SZh7LvT/k2cbrPa96C9LGA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: /cS4Rwuz04ntMP/JuS7Y7A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /dom?gz=1 HTTP/1.1Host: o2.mouseflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: ffeMFHVsc329xdrVqjA64g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: Jv30qiw0Nmaht2yUQXvHYA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket HTTP/1.1Host: booking.extnnehotteir.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://booking.extnnehotteir.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: session=.eJwdzcEOgiAAANB_4dzFdE67mYrZiDksnV6axTI0QRF02fr3XNd3eR8gK05Fdx2VZLwGOyBCbpuPTOOQLIHxMjXK-TDD1pt4BPO76KSRI4fHzbt2U2lBTyEVZ9AIiIL9vi2PfaBO-CztQwMRu2BKlhqxpPGtrC3RHOHUBxugNaNrlhaBGhJKCnO1Scg_iu34ZMatrRwXfH-C5jXD.ZoVgWA.tkXd8bgjJwEwfBfnrI197hnr2wESec-WebSocket-Key: /velaq3bMwr5lE6kv+V4tg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /chatbubble/socket/websocket?vsn=1.0.0 HTTP/1.1Host: sage.kindly.aiConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://partner.booking.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: frYaBy8j50aL4DfUISeXOg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /events?w=b18d32a2-ec35-41cf-9425-b945bb4c2fa5&s=9f07b72f09d4515909db4ee55eb97589&p=07033994ba79a98d24b0dc6c61a58f931d0bdf57&v=18.07&pst=1720017039738&q=2&li=3749&lh=907&ls=0&d=ACdrALEAACYAMQAAAAEmADIAAAAGJgAzAAADLAYCgAGzAAADfwcCgAGzAAADgCgDgCoAAAAA__8AA7kmADQAAAO6JgA1AAADuyYANgAAA8kmADcAAAPKJgA4AAADyiYAOQAADWAGAoABswAADbMHAoABswAADbQoDbQqAAAAAP__AQ3lJgA6AAAN5iYAOwAADeYmADwAABCjJgA9AAAQpSYAPgAAELwmAD8AABC9JgBAAAApoBM..bW91c2Utb3V0,bW91c2Utb3V0 HTTP/1.1Host: o2.mouseflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-type: text/plainAccept: /*Origin: https://partner.booking.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://partner.booking.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_268.2.dr	String found in binary or memory: buttons work using pieces of code from the individual social media providers, allowing third party cookies to be placed on your device.</p><p>These cookies can be purely functional, but they can also be used to keep track of which websites you visit from their network, to build a profile of your online browsing behaviour and to show you personalised ads. This profile will be partly built using comparable information the providers receive from your visits to other websites in their network.</p><p>To read more about what social media providers do with your personal data, take a look at their cookie and/or privacy statements: <a href="https://www.facebook.com/policies/cookies/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> (includes Instagram, Messenger and Audience Network), <a href="https://www.snap.com/en-US/cookie-policy/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Snapchat</span></a>, <a href="https://policy.pinterest.com/en/cookies" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Pinterest</span></a> and <a href="https://twitter.com/en/privacy#chapter2.3" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Twitter</span></a>. Be aware that these statements may be updated from time to time.</p></li></ul><p>We work with trusted third parties to collect data. We may also sometimes share information with these third parties, such as your email address or phone number. These third parties might link your data to other information they collect to create custom audiences or deliver targeted ads. For information on how these third parties process your data, please take a look at the following links: <a href="http://www.google.com/policies/privacy/partners/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>How Google uses information</span></a>, <a href="https://www.facebook.com/policy.php" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook's data policy</span></a>.</p><h4 id="non-cookie-techniques" class="policy_font_display_one">Non-cookie techniques equals www.facebook.com (Facebook)
Source: chromecache_268.2.dr	String found in binary or memory: buttons work using pieces of code from the individual social media providers, allowing third party cookies to be placed on your device.</p><p>These cookies can be purely functional, but they can also be used to keep track of which websites you visit from their network, to build a profile of your online browsing behaviour and to show you personalised ads. This profile will be partly built using comparable information the providers receive from your visits to other websites in their network.</p><p>To read more about what social media providers do with your personal data, take a look at their cookie and/or privacy statements: <a href="https://www.facebook.com/policies/cookies/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> (includes Instagram, Messenger and Audience Network), <a href="https://www.snap.com/en-US/cookie-policy/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Snapchat</span></a>, <a href="https://policy.pinterest.com/en/cookies" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Pinterest</span></a> and <a href="https://twitter.com/en/privacy#chapter2.3" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Twitter</span></a>. Be aware that these statements may be updated from time to time.</p></li></ul><p>We work with trusted third parties to collect data. We may also sometimes share information with these third parties, such as your email address or phone number. These third parties might link your data to other information they collect to create custom audiences or deliver targeted ads. For information on how these third parties process your data, please take a look at the following links: <a href="http://www.google.com/policies/privacy/partners/" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>How Google uses information</span></a>, <a href="https://www.facebook.com/policy.php" target="_blank" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook's data policy</span></a>.</p><h4 id="non-cookie-techniques" class="policy_font_display_one">Non-cookie techniques equals www.twitter.com (Twitter)
Source: chromecache_352.2.dr	String found in binary or memory: (function(a,b,c,d){var e={exports:{}};e.exports;(function(){var f=a.fbq;f.execStart=a.performance&&a.performance.now&&a.performance.now();if(!function(){var b=a.postMessage\|\|function(){};if(!f){b({action:"FB_LOG",logType:"Facebook Pixel Error",logMessage:"Pixel code is not installed correctly on this page"},"");"error"in console&&console.error("Facebook Pixel Error: Pixel code is not installed correctly on this page");return!1}return!0}())return;f.__fbeventsModules\|\|(f.__fbeventsModules={},f.__fbeventsResolvedModules={},f.getFbeventsModules=function(a){f.__fbeventsResolvedModules[a]\|\|(f.__fbeventsResolvedModules[a]=f.__fbeventsModules[a]());return f.__fbeventsResolvedModules[a]},f.fbIsModuleLoaded=function(a){return!!f.__fbeventsModules[a]},f.ensureModuleRegistered=function(b,a){f.fbIsModuleLoaded(b)\|\|(f.__fbeventsModules[b]=a)});f.ensureModuleRegistered("signalsFBEventsGetIwlUrl",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("signalsFBEventsGetTier",function(){return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("SignalsFBEvents.plugins.iwlbootstrapper",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var c=f.getFbeventsModules("SignalsFBEventsIWLBootStrapEvent"),d=f.getFbeventsModules("SignalsFBEventsLogging"),g=f.getFbeventsModules("SignalsFBEventsNetworkConfig"),h=f.getFbeventsModules("SignalsFBEventsPlugin"),i=f.getFbeventsModules("signalsFBEventsGetIwlUrl"),j=f.getFbeventsModules("signalsFBEventsGetTier"),k=d.logUserError,l=/^https:\/\/.\.facebook\.com$/i,m="FACEBOOK_IWL_CONFIG_STORAGE_KEY",n=null;e.exports=new h(function(d,e){try{n=a.sessionStorage?a.sessionStorage:{getItem:function(a){return null},removeItem:function(a){},setItem:function(a,b){}}}catch(a){return}function h(c,d){var e=b.createElement("script");e.async=!0;e.onload=function(){if(!a.FacebookIWL\|\|!a.FacebookIWL.init)return;var b=j(g.ENDPOINT);b!=null&&a.FacebookIWL.set&&a.FacebookIWL.set("tier",b);d()};a.FacebookIWLSessionEnd=func
Source: chromecache_353.2.dr	String found in binary or memory: L.getElementsByTagName("iframe"),oa=Q.length,ma=0;ma<oa;ma++)if(!u&&c(Q[ma],E.xe)){$I("https://www.youtube.com/iframe_api");u=!0;break}})}}else I(v.vtp_gtmOnSuccess)}var q=["www.youtube.com","www.youtube-nocookie.com"],r={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},t,u=!1;Z.__ytl=n;Z.__ytl.C="ytl";Z.__ytl.isVendorTemplate=!0;Z.__ytl.priorityOverride=0;Z.__ytl.isInfrastructure=!1; equals www.youtube.com (Youtube)
Source: chromecache_353.2.dr	String found in binary or memory: Math.round(p);v["gtm.videoCurrentTime"]=Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Tj:function(){e=Db()},pd:function(){d()}}};var jc=ka(["data-gtm-yt-inspected-"]),DC=["www.youtube.com","www.youtube-nocookie.com"],EC,FC=!1; equals www.youtube.com (Youtube)
Source: chromecache_241.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=nA(a,c,e);O(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return O(122),!0;if(d&&f){for(var m=Ob(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},qA=function(){var a=[],b=function(c){return tb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: return b}BC.J="internal.enableAutoEventOnTimer";var jc=ka(["data-gtm-yt-inspected-"]),DC=["www.youtube.com","www.youtube-nocookie.com"],EC,FC=!1; equals www.youtube.com (Youtube)
Source: chromecache_268.2.dr	String found in binary or memory: t use WhatsApp or similar third-party services to request booking or payment confirmations. If you receive, for example, a WhatsApp message asking you to follow a link to guarantee your booking or complete a related payment, do not reply to this message or follow that link. Instead, we ask that you report the message to our <a id="how-to-contact-us--read-more" aria-labelledby="how-to-contact-us--read-more how-to-contact-us" href="#how-to-contact-us" class="a83ed08757 f88a5204c2 b98133fb50"><span>Customer Service</span></a> team.</p><p>Your social media provider will be able to tell you more about how they use and process your data when you connect to Booking.com through them. This can include combining the personal data they collect when you use Booking.com through them with information they collect when you use other online platforms you have also linked to your social media account.</p><p>If you decide to connect using your Facebook or Google account, please review the following links for information about how these parties use data they receive: <a target="_blank" href="https://www.facebook.com/policy.php" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Facebook</span></a> and <a target="_blank" href="https://www.google.com/policies/privacy/partners/" class="a83ed08757 f88a5204c2 bui-link bui-link--primary b98133fb50"><span>Google</span></a>.</p><hr class="privacy-divider"/><h3 id="personal-data-what-security-procedures" class="policy_font_display_two">What security and retention procedures does Booking.com put in place to safeguard your personal data?</h3><p>We have procedures in place to prevent unauthorised access to, and the misuse of, personal data.</p><p>We use appropriate business systems and procedures to protect and safeguard your personal data. We also use security procedures and technical and physical restrictions for accessing and using the personal data on our servers. Only authorised personnel are permitted to access personal data in the course of their work.</p><p>We equals www.facebook.com (Facebook)
Source: chromecache_241.2.dr	String found in binary or memory: var QB=function(a,b,c,d,e){var f=Lz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Lz("fsl","nv.ids",[]):Lz("fsl","ids",[]);if(!g.length)return!0;var k=Qz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);O(121);if(m==="https://www.facebook.com/tr/")return O(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!ty(k,uy(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: booking.extnnehotteir.com
Source: global traffic	DNS traffic detected: DNS query: cdn.jsdelivr.net
Source: global traffic	DNS traffic detected: DNS query: cdn.socket.io
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: q-xx.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: partner.booking.com
Source: global traffic	DNS traffic detected: DNS query: bstatic.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: www.googleoptimize.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: rtp-static.marketo.com
Source: global traffic	DNS traffic detected: DNS query: lonrtp1.marketo.com
Source: global traffic	DNS traffic detected: DNS query: try.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: cdn.evgnet.com
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: chat.kindlycdn.com
Source: global traffic	DNS traffic detected: DNS query: cdn.spinnaker-js.com
Source: global traffic	DNS traffic detected: DNS query: www.booking.com
Source: global traffic	DNS traffic detected: DNS query: zn09tjwjvephllacp-partnersatbooking.siteintercept.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: apil1.spinnaker-js.com
Source: global traffic	DNS traffic detected: DNS query: shelves.booking.com
Source: global traffic	DNS traffic detected: DNS query: cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: siteintercept.qualtrics.com
Source: global traffic	DNS traffic detected: DNS query: dcinfos-cache.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: bookingdotcomb2b.germany-2.evergage.com
Source: global traffic	DNS traffic detected: DNS query: t-cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: ariane.abtasty.com
Source: global traffic	DNS traffic detected: DNS query: account.booking.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.edge.sdk.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: accommodations.booking.com
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: cdn.mouseflow.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: o2.mouseflow.com
Source: global traffic	DNS traffic detected: DNS query: 261-nrz-371.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: sage.kindly.ai
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com

Source: unknown

Source: chromecache_268.2.dr	String found in binary or memory: http://a9.com/-/spec/opensearch/1.1/
Source: chromecache_268.2.dr	String found in binary or memory: http://allaboutcookies.org/
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_362.2.dr	String found in binary or memory: http://benalman.com/about/license/
Source: chromecache_362.2.dr	String found in binary or memory: http://benalman.com/projects/jquery-hashchange-plugin/
Source: chromecache_268.2.dr	String found in binary or memory: http://cars.booking.com/Home.do?affiliateCode=booking-com&adplat=footer&preflang=en
Source: chromecache_282.2.dr	String found in binary or memory: http://github.com/jrburke/almond
Source: chromecache_362.2.dr	String found in binary or memory: http://josscrowcroft.github.com/accounting.js/
Source: chromecache_267.2.dr	String found in binary or memory: http://jquery.com/
Source: chromecache_267.2.dr, chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns#
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns/fb#
Source: chromecache_268.2.dr	String found in binary or memory: http://ogp.me/ns/fb/booking_com#
Source: chromecache_275.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_255.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLHow
Source: chromecache_271.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLIBM
Source: chromecache_255.2.dr	String found in binary or memory: http://scripts.sil.org/OFLhttp://scripts.sil.org/OFLsimple
Source: chromecache_267.2.dr	String found in binary or memory: http://sizzlejs.com/
Source: chromecache_192.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_271.2.dr	String found in binary or memory: http://www.boldmonday.comhttp://www.ibm.comThis
Source: chromecache_268.2.dr	String found in binary or memory: http://www.opentable.co.uk?ref=13850
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/auth/oauth2?dt=1720017005&aid=304142&redirect_uri=https%3A%2F%2F
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/oauth2/authorize?aid=304142;client_id=d1cDdLj40ACItEtxJLTo;redirect_uri=
Source: chromecache_268.2.dr	String found in binary or memory: https://account.booking.com/sso/logout/v3
Source: chromecache_308.2.dr	String found in binary or memory: https://admin.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://admin.booking.com/?lang=en&utm_source=extranet_login_footer&utm_medium=frontend&utm_campaign
Source: chromecache_298.2.dr	String found in binary or memory: https://admin.booking.com/?utm_source=partner_hub&utm_medium=go_to_extranet_link&utm_campaig
Source: chromecache_268.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html
Source: chromecache_298.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=bg&utm_source=partner_hub&utm_m
Source: chromecache_281.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=en-gb&utm_source=phc&utm_medium
Source: chromecache_318.2.dr, chromecache_310.2.dr	String found in binary or memory: https://admin.booking.com/hotel/hoteladmin/privacy.html?lang=en-us&utm_source=phc&utm_medium
Source: chromecache_241.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_338.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_275.2.dr	String found in binary or memory: https://animate.style/
Source: chromecache_268.2.dr	String found in binary or memory: https://authorityportal.booking.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/articles.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/pxgo?token=UmFuZG9tSVYkc2RlIyh9YVyXrXnsfRBJrxVpE5kjB-gC5N-DVBPrZzRuymEwUigSVPl1U
Source: chromecache_268.2.dr	String found in binary or memory: https://booking.com/pxgo?url=https%3A%2F%2Fbooking.kayak.com%2Fin%3Fp%3Dfooter_link%26mc%3DUSD%26sid
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://bstatic.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://bstatic.com/libs/bui/9.5.6/bui.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://business.booking.com/?aid=304142&lang=en-gb&label=gen173bo-122AEB2AIB
Source: chromecache_268.2.dr	String found in binary or memory: https://careers.booking.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://careers.booking.com/?utm_source=corporate&utm_medium=footer
Source: chromecache_268.2.dr	String found in binary or memory: https://carrier.booking.com/google/places/webautocompletesimple
Source: chromecache_268.2.dr	String found in binary or memory: https://cars.booking.com
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org/consent/5b5ab62b-24f1-40fe-8bb1-6de0b3a94fda/OtAutoBlock.js
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_close.svg
Source: chromecache_196.2.dr, chromecache_345.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_external_link.svg
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_guard_logo.svg
Source: chromecache_345.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_persistent_cookie_icon.png
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
Source: chromecache_308.2.dr	String found in binary or memory: https://cdn.jsdelivr.net/npm/axios/dist/axios.min.js
Source: chromecache_353.2.dr	String found in binary or memory: https://cdn.mouseflow.com/projects/
Source: chromecache_308.2.dr	String found in binary or memory: https://cdn.socket.io/socket.io-3.0.1.min.js
Source: chromecache_308.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
Source: chromecache_308.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/images/
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/current-script-polyfill/1.0.0/current-script-polyfill.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/privacy-consent/releases/2.1.55/customer/cookie-banner.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/libs/promise/7.0.4/promise-7.0.4.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/css/256aa323.b7ebf6c0.chunk.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/css/client.112a5244.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/034e4287.d0fe97f0.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/256aa323.a3f07c1f.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/a72063b1.7c807fb7.chunk.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/psb/capla/static/js/client.aef18f37.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/assistant_entrypoint_cloudfront_sd.iq_ltr/611b70b00745fa4412a01012
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/async_wpm_overlay_assets_cloudfront_sd.iq_ltr/abb304bf3600a5cf5f74
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/851d9d90e70b111207ec88dd198b5ea33
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/59a2fade3d36f2f4f9ecd750c27be976b0ac7dee
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/main_exps_cloudfront_sd.iq_ltr/de150bdd2c4f503788221a11564ca289cdb
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/ski_lp_overview_panel_cloudfront_sd.iq_ltr/2b3350935410fe4e36d74ef
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb107
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/apple-touch-icon/5db9fd30d96b1796883ee94be7dddce50b73bb38.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/40749a316c45e239a7149b6711ea4c48d10f8d89.ico
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/4a3b40c4059be39cbf1ebaa5f97dbb7d150926b9.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/fb/7/19dadf908acc5e43f190a0a901ec12c3dd36421d.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ar/9cce2b91336709016282f06432a8b6366069e0c2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/bg/540f2da5fee31b7385af127619ab5ca4fc3783b5.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/br/0cf5e55d996fdcf96a2d31733addf5c10bad1f74.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/catalonia/8578246a75d8b9dceaacb174072d0c6acaf
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/cn/5a221730f540facc62563bfa6192ce155a9f677e.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/cz/32002e60fead55ce886ff9827dfcf4af8cf4e277.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/de/668350ee17050ec21845c27503ae960695f341a9.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/dk/744575dd4e87590a543b7c8cbacaef6c3de4e4d2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ee/509074558f4fe7c71ceed57584dec0382274dd16.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/fi/465d3b73ff07d1d696cb5dd26fbb91097c175e1b.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/fr/c48bc65c9dc57035fa983df37e9732c0f0a2663f.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/gb/daba79fdd4066d133e8bf59070fd6819b951c403.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/gr/e0e42a97a7b860fc9be71954262902f2a4e94aa6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/hr/e7a46f4dad977aecafa6a3680972e0c137a1bc41.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/hu/fc7cb24c5c7cb9de74a74fad271d6838daabc4cb.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/id/e7d3d00965d8c994a72807b43b21c648250cf906.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/il/fc1907ccd86aa051f7fbe22649d1e31ac6aee016.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/in/20aa535a5d3c505dd02fea275ed1a36c0fb1fe08.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/is/7d644655f895f8e346b964dc18cf5b6608a98d52.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/it/b8db3771480bd0c7971b9f94cad3640c89521882.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/jp/9bf7e50bc6dc66599aeede9189ca16de461c60b6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/kr/4cb76b458a73ca4c1de034c7623475278d363ce6.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/lt/5bb712a60a82b7e075deba5b102aa36348bbb255.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/lv/393103a26c1d5f1fbd7d9674732bbdfc42296399.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/mx/f3a3f562a0185d68fb04b2ec01db2062ca6bdb76.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/my/6d811cf6127cea0a957ca0243546a03339fa19ac.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/nl/65e3bcc466c4026a08bdb2671799ca26c3228d19.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/no/827be8d24af5667778b4bc651fe03f738a812b60.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ph/7048127466891462116ee2774154585fb5607aba.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/pl/4d6b6e962b0b049a03924fc618b959395d60ae39.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/pt/715db1dc3acc79e1e109a9563fbf8a172e873ae5.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ro/2d67b91f7beb87bd9286975da3e6dadc70d9c64b.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/rs/c1bc4fc1d782713cfec17a071dadca6b755a233e.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ru/2277320023a64803843c36ca6aa48ad77523dd0d.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/sa/44ab510f37755d1d9d4c4dfa9b1f25bed9b2a95c.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/se/5e126775c25a54a24956ddcc72c8bbcaeed20872.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/si/f0619cdd45548522566c6d72a660ddc011906184.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/sk/29e3667f5aca74c157af9225d5a97a74a41e52ef.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/th/53a76d6856962953d739d07ac61f04adee50a3d1.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/tr/f7ad0cb74f4ea5e7193cb6029c7f977e9786cfa2.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/ua/2ea50f1c1fb480c4557a5578f71657fc3152c3a1.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/us/fa2b2a0e643c840152ba856a8bb081c7ded40efa.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/vn/90b17da2aafaebce7b0c34189747e1e10dba8041.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/flags/new/48-squared/z4/ced4751e6ac2cbb9884a5878fff59a4e24c3e386.p
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/nobg_all_blue_iq/b700d9e3067c1186a3364012df4fe1c48ae6da44.png
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845e
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_opentable/a4b50503eda6c15773d6e61c238230eb42f
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3d
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/img/twitter-image-else/566c7081f1deeaca39957e96365c3908f83b95af.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/assistant_entrypoint_cloudfront_sd/ef4280b820a27ed734dd50de76d082ea
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_atlas_v2_cn_cloudfront_sd/bd7e7adbf9731810a79badc567cd4846b1a
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_atlas_v2_non_cn_cloudfront_sd/880672823d34a6cc1366fd38f98c6b4
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_lists_cloudfront_sd/a2299c3f69cdf005cc73075218ac585d89528565.
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/async_wpm_overlay_assets_cloudfront_sd/c6cb9b63eea61102d4e96fe72b7c
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/atlas_places_async_cloudfront_sd/c94b60c4da2dae6b55fd9eabf168f146fc
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/content_cloudfront_sd/ece690fd13c824529e3870e0e662c417931b8461.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/9fc72199a3b8ae2b967821deb6fa10d92
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/error_catcher_bec_cloudfront_sd/0acd2ada6c74d5dec978a04ea837952bdf0
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/main_cloudfront_sd/9d3571bfcfd220f5be846047e043c221bcc1cc2e.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e74460
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/searchbox_cloudfront_sd/f7aa20a8e47580b2d09d2b0785ba3ed32ced4021.js
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/ski_lp_overview_panel_cloudfront_sd/9d8e7cfd33a37ffb15285d98f697002
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/js/sp-on-maps_cloudfront_sd/1d69e13e40d03fc59f58d76b31735d5d8c37416a.j
Source: chromecache_268.2.dr	String found in binary or memory: https://cf.bstatic.com/static/opensearch/en-gb/4e7571db3e3392305a9bed7c8dae0d335160dc74.xml
Source: chromecache_308.2.dr	String found in binary or memory: https://code.jquery.com/jquery-3.6.4.min.js
Source: chromecache_268.2.dr	String found in binary or memory: https://community.booking.com/?profile.language=en-gb
Source: chromecache_268.2.dr	String found in binary or memory: https://d8c14d4960ca.edge.sdk.awswaf.com/d8c14d4960ca/a18a4859af9c/challenge.js
Source: chromecache_201.2.dr, chromecache_339.2.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_195.2.dr	String found in binary or memory: https://docs.aws.amazon.com/waf/latest/developerguide/waf-javascript-api.html
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://git.drupalcode.org/project/once/-/raw/v1.0.1/LICENSE.md
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://github.com/aFarkas/lazysizes#automatically-setting-the-sizes-attribute
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://github.com/aFarkas/lazysizes#broken-image-symbol
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://github.com/focus-trap/tabbable/blob/master/LICENSE
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://github.com/jquery-form/form
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://github.com/jquery-form/form#license
Source: chromecache_267.2.dr	String found in binary or memory: https://github.com/jquery/jquery-migrate
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr, chromecache_250.2.dr, chromecache_306.2.dr, chromecache_237.2.dr	String found in binary or memory: https://github.com/kenwheeler/slick/blob/master/LICENSE
Source: chromecache_353.2.dr	String found in binary or memory: https://google.com
Source: chromecache_353.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_342.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/css/256aa323.b7ebf6c0.chunk.css.map
Source: chromecache_297.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/css/client.112a5244.css.map
Source: chromecache_240.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/034e4287.d0fe97f0.chunk.js.map
Source: chromecache_277.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/256aa323.a3f07c1f.chunk.js.map
Source: chromecache_235.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/a72063b1.7c807fb7.chunk.js.map
Source: chromecache_299.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/client.aef18f37.js.map
Source: chromecache_268.2.dr	String found in binary or memory: https://join.booking.com/?lang=en-gb&aid=304142&utm_source=footer_menu&utm_medium=fronte
Source: chromecache_268.2.dr	String found in binary or memory: https://join.booking.com/?lang=en-gb&utm_source=topbar&utm_medium=frontend&amp;label=gen
Source: chromecache_268.2.dr	String found in binary or memory: https://lbs.baidu.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://lbs.baidu.com/index.php?title=openprivacy
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://lonrtp1.marketo.com
Source: chromecache_362.2.dr	String found in binary or memory: https://mths.be/cssescape
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://munchkin.marketo.net/
Source: chromecache_268.2.dr	String found in binary or memory: https://news.booking.com/en-us/
Source: chromecache_241.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ar
Source: chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/bg
Source: chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/bg/taxonomy/term/3693
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/cs
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/de
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/el
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-gb
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-gb/community
Source: chromecache_281.2.dr	String found in binary or memory: https://partner.booking.com/en-gb/taxonomy/term/3693
Source: chromecache_268.2.dr	String found in binary or memory: https://partner.booking.com/en-gb?utm_campaign=footer_list&utm_medium=frontend_footer&utm_so
Source: chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/en-us
Source: chromecache_310.2.dr	String found in binary or memory: https://partner.booking.com/en-us/taxonomy/term/3693
Source: chromecache_308.2.dr	String found in binary or memory: https://partner.booking.com/en-us?utm_source=extranet_login_page
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/es
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/es-ar
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/fr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/he
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/hr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/hu
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/id
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/it
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ja
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ko
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/nl
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pl
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pt
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/pt-br
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ro
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/ru
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/2023-01/Twowomeninlobby.png
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/avatar_default/public/2024-03/callum_1.png?it
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/medium_400_width/public/2024-06/ukb5394_asset
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sites/default/files/styles/teaser_image_card/public/2023-01/Twowomeninlo
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/sv
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/th
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/tr
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/vi
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/zh-cn
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://partner.booking.com/zh-tw
Source: chromecache_268.2.dr	String found in binary or memory: https://plus.google.com/105443419075154950489
Source: chromecache_308.2.dr	String found in binary or memory: https://q-xx.bstatic.com/backend_static/common/flags/new/48-squared/us.png
Source: chromecache_333.2.dr	String found in binary or memory: https://q.bstatic.com/libs/bui/7.3.1/bui.min.css
Source: chromecache_333.2.dr	String found in binary or memory: https://r.bstatic.com/libs/calango/0.500/bui.css
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/focus-trap/tabbable/v6.2.0/LICENSE
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery-form/form/master/LICENSE
Source: chromecache_218.2.dr, chromecache_329.2.dr, chromecache_294.2.dr, chromecache_238.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery/jquery-ui/1.13.2/LICENSE.txt
Source: chromecache_294.2.dr, chromecache_202.2.dr, chromecache_215.2.dr	String found in binary or memory: https://raw.githubusercontent.com/jquery/jquery/3.7.1/LICENSE.txt
Source: chromecache_288.2.dr, chromecache_210.2.dr, chromecache_213.2.dr	String found in binary or memory: https://raw.githubusercontent.com/muicss/loadjs/4.2.0/LICENSE.txt
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://rtp-static.marketo.com
Source: chromecache_242.2.dr	String found in binary or memory: https://s.qualtrics.com/spoke/all/jam
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/company/reservations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/company/search.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/content/complaints.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e9890633
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/content/cs.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/help.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/help.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/login.html?op=oauth_return
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/myreservations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/mysettings.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://secure.booking.com/reviewtimeline.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://shelves.booking.com/
Source: chromecache_242.2.dr	String found in binary or memory: https://siteintercept.qualtrics.com
Source: chromecache_242.2.dr	String found in binary or memory: https://siteintercept.qualtrics.com/dxjsmodule/
Source: chromecache_353.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_241.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_338.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_268.2.dr	String found in binary or memory: https://support.google.com/chrome/answer/95647?hl=en
Source: chromecache_268.2.dr	String found in binary or memory: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer?redirectloc
Source: chromecache_268.2.dr	String found in binary or memory: https://sustainability.booking.com/
Source: chromecache_338.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://taxi.booking.com
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://tcf.cookiepedia.co.uk
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_281.2.dr, chromecache_323.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://try.abtasty.com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/_frdtcr?aid=304142
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/accommodations.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cd
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/affiliate-program/v2/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=4372
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/airport.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/apartments/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/bed-and-breakfast/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/booking-home/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bf
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/business.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/city.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c43a
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content-moderation-policy/overview-page.en-gb.html?label=gen173bo-122AEB2AIB
Source: chromecache_298.2.dr	String found in binary or memory: https://www.booking.com/content/about.bg.html?utm_source=partnerhub&utm_medium=about_booking_com
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_281.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-gb.html?utm_source=phc&utm_medium=about_booking_com_lin
Source: chromecache_318.2.dr, chromecache_310.2.dr	String found in binary or memory: https://www.booking.com/content/about.en-us.html?utm_source=phc&utm_medium=about_booking_com_lin
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/ccpa.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/contact-us.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bf
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/dsar.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAE
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/how_we_work.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336b
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ar.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.bg.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ca.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.cs.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.da.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.de.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.el.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-122AEB2AIB&tmpl=docs%2Fprivacy-pol
Source: chromecache_268.2.dr, chromecache_308.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.en-gb.html?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEB
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es-ar.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es-mx.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.es.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.et.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.fi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.fr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.he.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hr.html
Source: chromecache_268.2.dr, chromecache_314.2.dr, chromecache_244.2.dr, chromecache_253.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.hu.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.id.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.is.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.it.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ja.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ko.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.lt.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.lv.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ms.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.nl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.no.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pt-br.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.pt-pt.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ro.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.ru.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sk.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.sv.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.th.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.tl.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.tr.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.uk.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.vi.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.zh-cn.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.zh-tw.html
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/terms.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/content/terms?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/country.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/covid-19-booking-faqs.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/deals/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/destinationfinderdeals.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989063
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/district.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/extended-stays/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336
Source: chromecache_207.2.dr, chromecache_217.2.dr, chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://www.booking.com/general.html?tmpl=docs/privacy-policy
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/genius.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c4
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/guest-house/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/help?label=gen173bo-1DCBQoggJCB3ByaXZhY3lIM1gDaLYBiAEBmAEJuAEZyAEP2AED6AEBiA
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/hostels/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/hotel/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c43
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/landmark.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/packages.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/region.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee9a49c4
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/resorts/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cde
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/reviews
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/traveller-awards/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e989063
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/trust-and-safety.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0
Source: chromecache_268.2.dr	String found in binary or memory: https://www.booking.com/villas/index.en-gb.html?label=gen173bo-122AEB2AIB&sid=43724e98906336bfa0cdee
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/about/compliance-and-ethics/human-rights/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.bookingholdings.com/modern-slavery-statement/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.criteo.com/privacy/
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.drupal.org)
Source: chromecache_218.2.dr, chromecache_288.2.dr, chromecache_329.2.dr, chromecache_210.2.dr, chromecache_350.2.dr, chromecache_319.2.dr, chromecache_261.2.dr, chromecache_213.2.dr, chromecache_259.2.dr, chromecache_321.2.dr, chromecache_294.2.dr, chromecache_238.2.dr, chromecache_202.2.dr, chromecache_204.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.drupal.org/licensing/faq
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.google-analytics.com
Source: chromecache_353.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_241.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_338.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_353.2.dr, chromecache_331.2.dr, chromecache_241.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googleoptimize.com
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googleoptimize.com/optimize.js?id=GTM-MVTHSWF
Source: chromecache_241.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_353.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_338.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_268.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-5Q664QZ
Source: chromecache_281.2.dr, chromecache_318.2.dr, chromecache_310.2.dr, chromecache_298.2.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-TGMJRCB
Source: chromecache_241.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_196.2.dr, chromecache_296.2.dr	String found in binary or memory: https://www.onetrust.com/products/cookie-consent/
Source: chromecache_353.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443

Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.43.61.160:443 -> 192.168.2.8:49731 version: TLS 1.2

Source: classification engine

Classification label: mal48.phis.win@24/317@142/50

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1996,i,7617465802996181104,7982531139265237095,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://booking.extnnehotteir.com/admin/o2shi1bka89"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2112 --field-trial-handle=1996,i,7617465802996181104,7982531139265237095,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1467018
Product:	CloudBasic
Start time:	16:28:31
Start date:	03.07.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
http://booking.extnnehotteir.com/admin/o2shi1bka89

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report http://booking.extnnehotteir.com/admin/o2shi1bka89

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
http://booking.extnnehotteir.com/admin/o2shi1bka89