Edit tour

Windows Analysis Report
http://www.hillviewlodge.hotelrent.top

Overview

General Information

Sample URL:	http://www.hillviewlodge.hotelrent.top
Analysis ID:	1585884
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64

chrome.exe (PID: 2824 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6484 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2284 --field-trial-handle=2220,i,17760474165695216429,4462363176024230734,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 2556 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.hillviewlodge.hotelrent.top" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

HTTP traffic detected: POST /report/v4?s=A0c%2FEabV2GIg0hwVlJNfxvz5%2FHEc365XJdsfgNGG5DRfcf6e26aeaf7s6jW9lD5VmHGn5D5QbGuv3QdbCcrp1rctAzt9c3tcXBTaaMj6DAr4nzD%2FTeW141f5vwlZVZYcso1g6gBN HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 463Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Wed, 08 Jan 2025 11:43:22 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeexpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatepragma: no-cachex-turbo-charged-by: LiteSpeedCF-Cache-Status: BYPASSSet-Cookie: lang=en-US; expires=Tue, 28 Jan 2025 11:43:22 GMT; Max-Age=1728000Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jfKc1LCpfvcgmm1PG0ayinWXROBYvpuRqz6MvnWA%2BlTjjuNksIwJ7AqsDjV6z51LFgnQ2KQcI2LbYIBoJUAhdZFdzH%2FFr9NGEUupvJ6rqB9BuaYM%2Fuv2SmBbQPyF"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 8febedec2b275e78-EWRserver-timing: cfL4;desc="?proto=TCP&rtt=1687&min_rtt=1617&rtt_var=657&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2823&recv_bytes=1200&delivery_rate=1805813&cwnd=252&unsent_bytes=0&cid=ed1ae2a952d3e111&ts=1942&x=0"

Source: chromecache_218.2.dr, chromecache_267.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_218.2.dr, chromecache_267.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_268.2.dr, chromecache_224.2.dr	String found in binary or memory: http://github.com/jrburke/almond
Source: chromecache_401.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_185.2.dr	String found in binary or memory: https://bugs.chromium.org/p/chromium/issues/detail?id=600120
Source: chromecache_185.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=888319
Source: chromecache_350.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_close.svg
Source: chromecache_350.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_external_link.svg
Source: chromecache_350.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_guard_logo.svg
Source: chromecache_401.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_401.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_290.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/a72063b1.a2509705.chunk.js.map
Source: chromecache_174.2.dr	String found in binary or memory: https://istatic.booking.com/internal-static/capla/static/js/client.90b7ed8f.js.map
Source: chromecache_352.2.dr, chromecache_410.2.dr	String found in binary or memory: https://leafletjs.com
Source: chromecache_401.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_387.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_350.2.dr	String found in binary or memory: https://tcf.cookiepedia.co.uk
Source: chromecache_401.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_401.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_350.2.dr	String found in binary or memory: https://www.booking.com/content/privacy.html
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_401.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_401.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_299.2.dr, chromecache_387.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_401.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_401.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_401.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Source: chromecache_350.2.dr	String found in binary or memory: https://www.onetrust.com/products/cookie-consent/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50258 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50250
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50188
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown	Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50147
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50151
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50156
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50166
Source: unknown	Network traffic detected: HTTP traffic on port 50115 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50168
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50169
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50180 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50111 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 50169 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50123 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50098 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 50285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50086 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: classification engine

Classification label: mal56.win@20/387@78/28

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2284 --field-trial-handle=2220,i,17760474165695216429,4462363176024230734,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.hillviewlodge.hotelrent.top"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2284 --field-trial-handle=2220,i,17760474165695216429,4462363176024230734,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
http://www.hillviewlodge.hotelrent.top	100%	Avira URL Cloud	malware

Source	Detection	Scanner	Label
https://housity.net/images/countries/Austria.jpg	0%	Avira URL Cloud	safe
https://housity.net/style/style.css	0%	Avira URL Cloud	safe
https://housity.net/images/london.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/logo-w.png	0%	Avira URL Cloud	safe
https://housity.net/icons/hotel.svg	0%	Avira URL Cloud	safe
http://www.hillviewlodge.hotelrent.top/	100%	Avira URL Cloud	malware
https://housity.net/icons/child.svg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/Argentina.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/Brazil.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/Indonesia.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/Australia.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/subscribe.png	0%	Avira URL Cloud	safe
https://housity.net/icons/user.svg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/United%20States%20of%20America.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/countries/United%20kingdom.jpg	0%	Avira URL Cloud	safe
https://istatic.booking.com/internal-static/capla/static/js/client.90b7ed8f.js.map	0%	Avira URL Cloud	safe
https://housity.net/images/countries/Germany.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/amsterdam.jpg	0%	Avira URL Cloud	safe
https://housity.net/images/logo-b.png	0%	Avira URL Cloud	safe
https://bugs.chromium.org/p/chromium/issues/detail?id=600120	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
d2i5gg36g14bzn.cloudfront.net	18.245.31.18	true	false	unknown
a.nel.cloudflare.com	35.190.80.1	true	false	high
www.hillviewlodge.hotelrent.top	204.93.224.158	true	false	unknown
images.pexels.com	104.18.66.220	true	false	high
du1b3vb35hc0o.cloudfront.net	99.86.4.32	true	false	unknown
maxcdn.bootstrapcdn.com	104.18.11.207	true	false	high
d1of1hbywxxm65.cloudfront.net	18.245.60.2	true	false	unknown
d8c14d4960ca.edge.sdk.awswaf.com	65.9.66.100	true	false	high
stats.g.doubleclick.net	108.177.15.157	true	false	high
de2trjlt8e8rj.cloudfront.net	52.222.236.82	true	false	unknown
1004834818.rsc.cdn77.org	195.181.170.18	true	false	high
www3.l.google.com	142.250.184.206	true	false	high
d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	3.167.227.24	true	false	high
housity.net	104.26.4.217	true	false	unknown
www.google.com	142.250.186.164	true	false	high
unpkg.com	104.17.246.203	true	false	high
cdn.cookielaw.org	104.18.87.42	true	false	high
geolocation.onetrust.com	104.18.32.137	true	false	high
hillviewlodge.hotelrent.top	204.93.224.158	true	false	unknown
kit.fontawesome.com	unknown	unknown	false	high
t-cf.bstatic.com	unknown	unknown	false	high
nellie.booking.com	unknown	unknown	false	high
widget.getyourguide.com	unknown	unknown	false	high
www.booking.com	unknown	unknown	false	high
cdn.getyourguide.com	unknown	unknown	false	high
cf.bstatic.com	unknown	unknown	false	high
account.booking.com	unknown	unknown	false	high
translate.google.com	unknown	unknown	false	high
img.icons8.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://cf.bstatic.com/static/js/plugable-access-form_cloudfront_sd/3ae2aaac8c7322f2908109b6a9e7446001225f2b.js	false		high
https://housity.net/style/style.css	false	Avira URL Cloud: safe	unknown
https://images.pexels.com/photos/2613110/pexels-photo-2613110.jpeg	false		high
https://images.pexels.com/photos/58597/pexels-photo-58597.jpeg	false		high
https://nellie.booking.com/report	false		high
https://cf.bstatic.com/static/css/static_cloudfront_sd.iq_ltr/e7d89fbf1d621385f416c64b2a5444ca3fb10712.css	false		high
https://images.pexels.com/photos/1114892/pexels-photo-1114892.jpeg?auto=compress&cs=tinysrgb&w=1260&h=750&dpr=2	false		high
https://housity.net/images/countries/Austria.jpg	false	Avira URL Cloud: safe	unknown
https://img.icons8.com/color/2x/france-circular.png	false		high
https://img.icons8.com/color/2x/japan-circular.png	false		high
https://images.pexels.com/photos/402028/pexels-photo-402028.jpeg	false		high
https://cf.bstatic.com/static/js/main_cloudfront_sd/71d6261ae9cb7282b862c811664f4f5693f33611.js	false		high
https://a.nel.cloudflare.com/report/v4?s=jfKc1LCpfvcgmm1PG0ayinWXROBYvpuRqz6MvnWA%2BlTjjuNksIwJ7AqsDjV6z51LFgnQ2KQcI2LbYIBoJUAhdZFdzH%2FFr9NGEUupvJ6rqB9BuaYM%2Fuv2SmBbQPyF	false		high
https://cf.bstatic.com/psb/capla/static/js/034e4287.b3397dfb.chunk.js	false		high
https://housity.net/privacy	false		unknown
https://housity.net/images/london.jpg	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/202403.2.0/assets/otCommonStyles.css	false		high
https://housity.net/images/logo-w.png	false	Avira URL Cloud: safe	unknown
https://unpkg.com/leaflet/dist/leaflet.js	false		high
https://cf.bstatic.com/psb/capla/static/js/client.90b7ed8f.js	false		high
https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-116109-18&cid=1945203844.1736336616&jid=1710330963&gjid=267868670&_gid=21772017.1736336616&_u=aGBAgAIJAAAAAGgMIAC~&z=519113706	false		high
https://images.pexels.com/photos/1534560/pexels-photo-1534560.jpeg	false		high
https://cf.bstatic.com/libs/privacy-consent/releases/2.1.63/customer/cookie-banner.min.js	false		high
https://cf.bstatic.com/static/img/tfl/group_logos/logo_kayak/83ef7122074473a6566094e957ff834badb58ce6.png	false		high
https://housity.net/icons/hotel.svg	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/js/jquery_cloudfront_sd/e1e8c0e862309cb4caf3c0d5fbea48bfb8eaad42.js	false		high
https://cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/0191998d-4ea0-7a35-bbae-232aa21682f6/es.json	false		high
https://housity.net/?&tag=summerend	false		unknown
https://img.icons8.com/color/2x/italy-circular.png	false		high
https://cf.bstatic.com/static/js/crossorigin_check_cloudfront_sd/2454015045ef79168d452ff4e7f30bdadff0aa81.js	false		high
https://cf.bstatic.com/static/js/searchbox_cloudfront_sd/8c409b90db8d2ce96d4f48a8b2eca3f43a705428.js	false		high
https://maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css	false		high
https://cdn.cookielaw.org/scripttemplates/202403.2.0/otBannerSdk.js	false		high
https://cf.bstatic.com/xdata/images/hotel/max1024x768/103458436.jpg?k=d899d024426a44b719c2433b7f6a68d645a2737f2703ff05ee587174bc6fe812&o=&hp=1	false		high
https://images.pexels.com/photos/3727276/pexels-photo-3727276.jpeg	false		high
https://images.pexels.com/photos/131920/pexels-photo-131920.jpeg	false		high
https://housity.net/images/countries/Brazil.jpg	false	Avira URL Cloud: safe	unknown
https://images.pexels.com/photos/1573471/pexels-photo-1573471.jpeg	false		high
https://housity.net/images/countries/Indonesia.jpg	false	Avira URL Cloud: safe	unknown
https://housity.net/icons/child.svg	false	Avira URL Cloud: safe	unknown
https://housity.net/images/countries/Argentina.jpg	false	Avira URL Cloud: safe	unknown
https://images.pexels.com/photos/13396630/pexels-photo-13396630.jpeg	false		high
https://cf.bstatic.com/static/js/content_cloudfront_sd/ece690fd13c824529e3870e0e662c417931b8461.js	false		high
http://www.hillviewlodge.hotelrent.top/	true	Avira URL Cloud: malware	unknown
https://housity.net/images/countries/Australia.jpg	false	Avira URL Cloud: safe	unknown
https://www.booking.com/logo?ver=1&sid=7d194e26a6065487de8def708a8e58e4&t=17363366121	false		high
https://images.pexels.com/photos/1624880/pexels-photo-1624880.jpeg	false		high
https://cdn.cookielaw.org/consent/3ea94870-d4b1-483a-b1d2-faf1d982bb31/3ea94870-d4b1-483a-b1d2-faf1d982bb31.json	false		high
https://images.pexels.com/photos/472309/pexels-photo-472309.jpeg	false		high
https://cf.bstatic.com/static/css/gprof_icons_cloudfront_sd.iq_ltr/308436ca26aacf6a7553e4c0cf298d0f780727a2.css	false		high
https://img.icons8.com/color/2x/germany-circular.png	false		high
https://housity.net/icons/user.svg	false	Avira URL Cloud: safe	unknown
https://images.pexels.com/photos/1587097/pexels-photo-1587097.jpeg	false		high
https://housity.net/images/subscribe.png	false	Avira URL Cloud: safe	unknown
https://images.pexels.com/photos/259967/pexels-photo-259967.jpeg	false		high
https://housity.net/images/countries/United%20States%20of%20America.jpg	false	Avira URL Cloud: safe	unknown
https://d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com/d8c14d4960ca/a18a4859af9c/telemetry	false		high
https://cf.bstatic.com/static/img/flags/new/48-squared/es/b3bd4690290a78b1303198dd6576bdab8d7f9a80.png	false		high
https://images.pexels.com/photos/1637122/pexels-photo-1637122.jpeg	false		high
https://cf.bstatic.com/psb/capla/static/js/a72063b1.a2509705.chunk.js	false		high
https://unpkg.com/leaflet@1.9.4/dist/leaflet.css	false		high
https://t-cf.bstatic.com/design-assets/assets/v3.109.6/fonts-brand/BookingBold.woff	false		high
https://maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css	false		high
https://www.booking.com/content/privacy.es.html	false		high
https://account.booking.com/privacy-consents/implicit	false		high
https://img.icons8.com/color/2x/usa-circular.png	false		high
https://cf.bstatic.com/static/css/print/0cc4ce4b7108d42a9f293fc9b654f749d84ba4eb.css	false		high
https://images.pexels.com/photos/259447/pexels-photo-259447.jpeg	false		high
https://cf.bstatic.com/static/css/fonticons_clean/base64/woff/5d61b8a7156073e5e3e9741f65dda44ae3eef7d2.css	false		high
https://d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com/d8c14d4960ca/a18a4859af9c/verify	false		high
https://housity.net/images/countries/Germany.jpg	false	Avira URL Cloud: safe	unknown
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js	false		high
https://unpkg.com/leaflet@1.9.4/dist/leaflet.js	false		high
https://housity.net/images/countries/United%20kingdom.jpg	false	Avira URL Cloud: safe	unknown
https://housity.net/images/logo-b.png	false	Avira URL Cloud: safe	unknown
https://cf.bstatic.com/static/css/main_cloudfront_sd.iq_ltr/c05d8b146b431a34ee7407f6763b433207818cd8.css	false		high
https://cf.bstatic.com/static/js/core-deps-inlinedet_cloudfront_sd/f62025e692b596dd53ecd1bd082dfd3197944c50.js	false		high
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location	false		high
https://cf.bstatic.com/static/img/tfl/group_logos/logo_priceline/f80e129541f2a952d470df2447373390f3dd4e44.png	false		high
https://cf.bstatic.com/xdata/images/hotel/max1024x768/267982119.jpg?k=15e6d6d600996cf06394da0f93d309faecf842d2a4c1ce33e9a7f48274c7fb9e&o=&hp=1	false		high
https://cf.bstatic.com/static/img/tfl/group_logos/logo_agoda/1c9191b6a3651bf030e41e99a153b64f449845ed.png	false		high
https://cf.bstatic.com/static/img/tfl/group_logos/logo_booking/27c8d1832de6a3123b6ee45b59ae2f81b0d9d0d0.png	false		high
https://housity.net/images/amsterdam.jpg	false	Avira URL Cloud: safe	unknown
https://www.booking.com/navigation_times	false		high
https://cf.bstatic.com/static/img/favicon/9ca83ba2a5a3293ff07452cb24949a5843af4592.svg	false		high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
http://fontawesome.io	chromecache_218.2.dr, chromecache_267.2.dr	false		high
https://www.booking.com/content/privacy.html	chromecache_350.2.dr	false		high
http://www.broofa.com	chromecache_401.2.dr	false		high
https://www.onetrust.com/products/cookie-consent/	chromecache_350.2.dr	false		high
https://ampcid.google.com/v1/publisher:getClientId	chromecache_299.2.dr, chromecache_387.2.dr	false		high
https://cdn.cookielaw.org/logos/static/ot_guard_logo.svg	chromecache_350.2.dr	false		high
https://stats.g.doubleclick.net/j/collect	chromecache_387.2.dr	false		high
https://leafletjs.com	chromecache_352.2.dr, chromecache_410.2.dr	false		high
https://translate.google.com	chromecache_401.2.dr	false		high
https://play.google.com/log?format=json&hasfast=true	chromecache_401.2.dr	false		high
https://www.google.%/ads/ga-audiences	chromecache_299.2.dr, chromecache_387.2.dr	false		high
https://www.google.com/images/cleardot.gif	chromecache_401.2.dr	false		high
https://www.google.com/support/translate	chromecache_401.2.dr	false		high
https://istatic.booking.com/internal-static/capla/static/js/client.90b7ed8f.js.map	chromecache_174.2.dr	false	Avira URL Cloud: safe	unknown
https://bugs.chromium.org/p/chromium/issues/detail?id=600120	chromecache_185.2.dr	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
204.93.224.158	www.hillviewlodge.hotelrent.top	United States	48851	RADWAREIL	false
108.177.15.155	unknown	United States	15169	GOOGLEUS	false
108.177.15.157	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
104.18.66.220	images.pexels.com	United States	13335	CLOUDFLARENETUS	false
99.86.4.32	du1b3vb35hc0o.cloudfront.net	United States	16509	AMAZON-02US	false
65.9.66.100	d8c14d4960ca.edge.sdk.awswaf.com	United States	16509	AMAZON-02US	false
104.17.245.203	unknown	United States	13335	CLOUDFLARENETUS	false
104.18.32.137	geolocation.onetrust.com	United States	13335	CLOUDFLARENETUS	false
52.222.236.82	de2trjlt8e8rj.cloudfront.net	United States	16509	AMAZON-02US	false
18.245.31.18	d2i5gg36g14bzn.cloudfront.net	United States	16509	AMAZON-02US	false
3.167.227.24	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	United States	16509	AMAZON-02US	false
104.26.4.217	housity.net	United States	13335	CLOUDFLARENETUS	false
142.250.186.110	unknown	United States	15169	GOOGLEUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
142.250.184.206	www3.l.google.com	United States	15169	GOOGLEUS	false
104.17.246.203	unpkg.com	United States	13335	CLOUDFLARENETUS	false
104.18.87.42	cdn.cookielaw.org	United States	13335	CLOUDFLARENETUS	false
195.181.170.18	1004834818.rsc.cdn77.org	United Kingdom	60068	CDN77GB	false
104.18.11.207	maxcdn.bootstrapcdn.com	United States	13335	CLOUDFLARENETUS	false
18.245.31.49	unknown	United States	16509	AMAZON-02US	false
18.245.60.7	unknown	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
18.245.60.2	d1of1hbywxxm65.cloudfront.net	United States	16509	AMAZON-02US	false
142.250.186.164	www.google.com	United States	15169	GOOGLEUS	false
18.245.31.129	unknown	United States	16509	AMAZON-02US	false
207.211.211.26	unknown	United States	14135	NAVISITE-EAST-2US	false
104.18.86.42	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.5

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1585884
Start date and time:	2025-01-08 12:42:05 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 6m 22s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://www.hillviewlodge.hotelrent.top
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	7
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.win@20/387@78/28
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.184.195, 142.250.185.206, 64.233.166.84, 142.250.184.238, 142.250.185.110, 142.250.185.78, 142.250.186.42, 142.250.185.99, 142.250.181.227, 142.250.184.202, 104.18.34.98, 172.64.153.158, 142.250.181.234, 142.250.185.202, 142.250.185.170, 142.250.186.138, 142.250.185.106, 142.250.186.170, 216.58.212.138, 142.250.186.74, 172.217.16.138, 142.250.185.234, 216.58.206.74, 172.217.23.106, 216.58.206.42, 142.250.185.138, 172.217.18.106, 199.232.210.172, 192.229.221.95, 104.18.39.214, 172.64.148.42, 142.250.186.174, 142.250.185.174, 104.18.40.68, 172.64.147.188, 216.239.38.178, 216.239.32.178, 216.239.36.178, 216.239.34.178, 142.250.185.238, 142.250.185.67, 172.217.16.206, 142.250.181.238, 217.20.57.35, 23.56.254.164, 4.245.163.56, 23.1.237.91, 13.107.253.45
Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, widget.getyourguide.com.cdn.cloudflare.net, clientservices.googleapis.com, clients2.google.com, ocsp.digicert.com, redirector.gvt1.com, update.googleapis.com, www.gstatic.com, www.google-analytics.com, kit.fontawesome.com.cdn.cloudflare.net, www.bing.com, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, ajax.googleapis.com, fonts.gstatic.com, www-alv.google-analytics.com, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, edgedl.me.gvt1.com, translate.googleapis.com, clients.l.google.com, cdn.getyourguide.com.cdn.cloudflare.net
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://www.hillviewlodge.hotelrent.top

Input	Output
URL: http://www.hillviewlodge.hotelrent.top Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": true, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": false, "third_party_hosting": true }
URL: http://www.hillviewlodge.hotelrent.top
URL: https://hillviewlodge.hotelrent.top/... Model: Joe Sandbox AI	{ "risk_score": 3, "reasoning": "The script redirects the user to an external domain, which is a moderate-risk indicator. However, without additional context or behaviors, this alone does not indicate a high-risk scenario." }
window.location.href = "https://housity.net?&tag=summerend";
URL: https://housity.net/?&tag=summerend... Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "This script appears to be a simple redirect to the HTTPS version of the current page, which is a common security practice to ensure secure connections. It does not exhibit any high-risk behaviors and is likely a legitimate implementation." }
if (!window.location.toString().startsWith("https")) { var httpURL = window.location.hostname + window.location.pathname; var httpsURL = "https://" + httpURL; window.location = httpsURL; }
URL: https://housity.net/?&tag=summerend... Model: Joe Sandbox AI	{ "risk_score": 6, "reasoning": "The script demonstrates moderate-risk behavior by sending user data to an external domain without transparency. While the intent appears to be cookie management, the use of an external fetch request to 'https://housity.net/utils/cookies.php' raises concerns and requires further review." }
function denyCookies() { //document.getElementById('coockie-locker').remove(); } function agreeCookies() { document.getElementById("coockie-locker").style.display = "none"; document.getElementById("cookie-background").style.display = "none"; fetch("https://housity.net/utils/cookies.php"); //document.getElementById('cookies') }
URL: https://housity.net/?&tag=summerend... Model: Joe Sandbox AI	{ "risk_score": 5, "reasoning": "The provided JavaScript snippet exhibits a mix of behaviors, some of which raise moderate concerns. While the script appears to handle image errors and language settings, it also makes external data transmissions and performs redirects, which require further review. The overall risk score is in the medium range, indicating the need for closer inspection to ensure the script's legitimacy and identify any potential security implications." }
var ci = false; function ImgError(source, n="") { source.src = "/images/photo-hotel.jpg"; source.onerror = ""; if(!ci && n !== "") Cim(n); return true; } function Cim(n){ ci = true; fetch('https://housity.net/utils/cim.php?n=' + n) .then(response => { console.log(response); }) .catch(error => { console.error('Error Cim:', error); }); } function SetLang(lang) { fetch("https://housity.net/utils/setlang.php?lang=" + lang).then(response => { if (!response.ok) { alert("Error setting language"); } return response.json(); }) .then(data => { console.log(data); if (data.status === "ok") { // Si la clave "status" en el JSON es "ok", recargamos la pgina location.reload(); } else { alert("La solicitud no fue exitosa 2"); } }) .catch(error => { alert("Error al realizar la solicitud:" + error); }); }
URL: https://housity.net/?&tag=summerend... Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "The provided JavaScript snippet appears to be a simple newsletter subscription functionality with no high-risk indicators. It uses standard DOM manipulation, form submission, and a fetch request to a server-side script. The code does not exhibit any behaviors that would be considered high-risk, such as dynamic code execution, data exfiltration, or redirects to suspicious domains. The script's purpose is transparent and aligns with typical newsletter subscription functionality." }
const subsBut = document.getElementById("subscribe-button"); const subsLoading = document.getElementById("subscribe-loading"); const subsRes = document.getElementById("subscribe-result"); const lang = "en-US"; document.addEventListener("DOMContentLoaded", function() { var form = document.getElementById("subscribe-form"); form.addEventListener("submit", function(event) { event.preventDefault(); // Evitar que el formulario se enve por defecto SubscribeNewsletter(); }); }); function SubscribeNewsletter() { var email = document.getElementById("subscribe-email-input").value; subsBut.style.display = "none"; subsLoading.style.display = "block"; subsRes.textContent = "Subscribing..."; subsRes.style.display = "block"; const data = { email: email, lang: lang }; const options = { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(data) }; fetch("newsletter/subscribe.php", options) .then(response => response.json()) .then(data => { if (data.status === "ok") { subsBut.style.display = "none"; subsLoading.style.display = "none"; subsRes.textContent = "Subscibed!"; subsRes.style.display = "block"; } else { subsBut.style.display = "none"; subsLoading.style.display = "none"; subsRes.textContent = data.msg; subsRes.style.display = "block"; } }) .catch(error => { subsBut.style.display = "none"; subsLoading.style.display = "none"; subsRes.textContent = error; subsRes.style.display = "block"; }); }
URL: https://housity.net/?&tag=summerend... Model: Joe Sandbox AI	{ "risk_score": 2, "reasoning": "The provided JavaScript snippet appears to be a simple autocomplete/suggestion feature for a search input. It uses standard DOM manipulation and the `fetch` API to retrieve suggestions from a server-side script. There are no high-risk indicators, and the behavior is consistent with a legitimate search functionality. The script may have some minor issues, such as the use of a legacy `XDomainRequest` API, but overall it poses a low risk." }
const search = document.getElementById("searchtext"); const suggest = document.getElementById("suggestions"); function OnTap() { var query = search.value; if (query == "") { suggest.innerHTML = ""; suggest.style.display = "none"; return; } fetch("utils/tapcity.php?query=" + query).then(response => response.text()).then(text => { if (search.value == "") { suggest.style.display = "none"; return; } suggest.innerHTML = text; suggest.style.display = "flex"; }); return; } function FillSearch(query) { search.value = query; suggest.innerHTML = ""; suggest.style.display = "none"; return; }
URL: https://housity.net/?&tag=summerend Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Search", "text_input_field_labels": [ "Where are you going?", "Checkin", "Checkout", "Adults", "Children" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://housity.net/?&tag=summerend Model: Joe Sandbox AI	{ "brands": [ "Housity" ] }
	{ "brands": [ "Housity" ] }
URL: https://housity.net/privacy Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "This Privacy Policy establishes the terms under which it uses and protects the information provided by its users when using its website. This company is committed to the security of its users' data.", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.booking.com/content/privacy.es.html Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Poltica de privacidad", "prominent_button_name": "Imprimir / Guardar", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://housity.net/privacy Model: Joe Sandbox AI	{ "brands": [ "Housity" ] }
	{ "brands": [ "Housity" ] }
URL: https://www.booking.com/content/privacy.es.html Model: Joe Sandbox AI	{ "brands": [ "Booking.com" ] }
	{ "brands": [ "Booking.com" ] }

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jan 8 10:42:57 2025, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9847617094009182
Encrypted:	false
SSDEEP:	48:8NdRsTCmJH6idAKZdA19ehwiZUklqehey+3:8m/Gty
MD5:	A78EBCE4CBDFC77A8023D9D53C119016
SHA1:	96821F91942EBAC9C4A61EACA69A2D1E41DBBABB
SHA-256:	B9A7532B1D7FD44251041801C1E55BE02D7EEA1E6189EEC530A653DB0EE9BE9E
SHA-512:	BFA47718B2B0AA7D42D61141D093E6896FCFBB88C1FE798F83A648674A94975364A8AA2F9A40920E81F4506C5EDF3C548B998518C49E20AE43CCAE20D91D02F9
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,.....N7v.a..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I(ZZ]....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V(ZZ]....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V(ZZ]....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V(ZZ]..........................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V(Z]]...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........?..\|.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Source: https://housity.net/?&tag=summerend	HTTP Parser: No <meta name="copyright".. found
Source: https://housity.net/privacy	HTTP Parser: No <meta name="copyright".. found

Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: www.hillviewlodge.hotelrent.top
Source: global traffic	DNS traffic detected: DNS query: hillviewlodge.hotelrent.top
Source: global traffic	DNS traffic detected: DNS query: housity.net
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: maxcdn.bootstrapcdn.com
Source: global traffic	DNS traffic detected: DNS query: unpkg.com
Source: global traffic	DNS traffic detected: DNS query: img.icons8.com
Source: global traffic	DNS traffic detected: DNS query: widget.getyourguide.com
Source: global traffic	DNS traffic detected: DNS query: cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: cdn.getyourguide.com
Source: global traffic	DNS traffic detected: DNS query: images.pexels.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: kit.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: www.booking.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: t-cf.bstatic.com
Source: global traffic	DNS traffic detected: DNS query: account.booking.com
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.edge.sdk.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com
Source: global traffic	DNS traffic detected: DNS query: nellie.booking.com

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Jan 8, 2025 12:42:59.673448086 CET	192.168.2.5	1.1.1.1	0xdecf	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:42:59.673578978 CET	192.168.2.5	1.1.1.1	0x1e39	Standard query (0)	www.google.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:02.708260059 CET	192.168.2.5	1.1.1.1	0x6d57	Standard query (0)	www.hillviewlodge.hotelrent.top	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:02.708568096 CET	192.168.2.5	1.1.1.1	0x3672	Standard query (0)	www.hillviewlodge.hotelrent.top	65	IN (0x0001)	false
Jan 8, 2025 12:43:04.095129013 CET	192.168.2.5	1.1.1.1	0x3fde	Standard query (0)	hillviewlodge.hotelrent.top	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:04.095350981 CET	192.168.2.5	1.1.1.1	0x6138	Standard query (0)	hillviewlodge.hotelrent.top	65	IN (0x0001)	false
Jan 8, 2025 12:43:05.680239916 CET	192.168.2.5	1.1.1.1	0xb039	Standard query (0)	housity.net	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:05.680293083 CET	192.168.2.5	1.1.1.1	0x3b24	Standard query (0)	housity.net	65	IN (0x0001)	false
Jan 8, 2025 12:43:07.499851942 CET	192.168.2.5	1.1.1.1	0x87ef	Standard query (0)	translate.google.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:07.500035048 CET	192.168.2.5	1.1.1.1	0x62c9	Standard query (0)	translate.google.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:07.500572920 CET	192.168.2.5	1.1.1.1	0x1153	Standard query (0)	maxcdn.bootstrapcdn.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:07.500896931 CET	192.168.2.5	1.1.1.1	0x5666	Standard query (0)	maxcdn.bootstrapcdn.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:07.501368999 CET	192.168.2.5	1.1.1.1	0x94b3	Standard query (0)	unpkg.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:07.501503944 CET	192.168.2.5	1.1.1.1	0x204b	Standard query (0)	unpkg.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:07.502448082 CET	192.168.2.5	1.1.1.1	0xe301	Standard query (0)	img.icons8.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:07.502580881 CET	192.168.2.5	1.1.1.1	0x490e	Standard query (0)	img.icons8.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:07.645380020 CET	192.168.2.5	1.1.1.1	0x3fcc	Standard query (0)	housity.net	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:07.645539999 CET	192.168.2.5	1.1.1.1	0x78e2	Standard query (0)	housity.net	65	IN (0x0001)	false
Jan 8, 2025 12:43:08.460056067 CET	192.168.2.5	1.1.1.1	0x28bf	Standard query (0)	img.icons8.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:08.460194111 CET	192.168.2.5	1.1.1.1	0xe0fe	Standard query (0)	img.icons8.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:08.640058994 CET	192.168.2.5	1.1.1.1	0x4d5a	Standard query (0)	translate.google.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:08.640198946 CET	192.168.2.5	1.1.1.1	0xe5a6	Standard query (0)	translate.google.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:09.009839058 CET	192.168.2.5	1.1.1.1	0x7a41	Standard query (0)	unpkg.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:09.009968042 CET	192.168.2.5	1.1.1.1	0x77c	Standard query (0)	unpkg.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:09.712615967 CET	192.168.2.5	1.1.1.1	0x80db	Standard query (0)	widget.getyourguide.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:09.712764978 CET	192.168.2.5	1.1.1.1	0x5ed0	Standard query (0)	widget.getyourguide.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:09.847795010 CET	192.168.2.5	1.1.1.1	0xd26a	Standard query (0)	cf.bstatic.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:09.847915888 CET	192.168.2.5	1.1.1.1	0xc70f	Standard query (0)	cf.bstatic.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:10.516777039 CET	192.168.2.5	1.1.1.1	0x4fd3	Standard query (0)	widget.getyourguide.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:10.516920090 CET	192.168.2.5	1.1.1.1	0x21ca	Standard query (0)	widget.getyourguide.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:11.205701113 CET	192.168.2.5	1.1.1.1	0x9ce3	Standard query (0)	cdn.getyourguide.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:11.205898046 CET	192.168.2.5	1.1.1.1	0x516b	Standard query (0)	cdn.getyourguide.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:11.995481014 CET	192.168.2.5	1.1.1.1	0xce98	Standard query (0)	cf.bstatic.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:11.995666027 CET	192.168.2.5	1.1.1.1	0x27e0	Standard query (0)	cf.bstatic.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:12.496365070 CET	192.168.2.5	1.1.1.1	0x6477	Standard query (0)	cdn.getyourguide.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:12.496876001 CET	192.168.2.5	1.1.1.1	0xb11c	Standard query (0)	cdn.getyourguide.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:13.212346077 CET	192.168.2.5	1.1.1.1	0x1c75	Standard query (0)	images.pexels.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:13.212658882 CET	192.168.2.5	1.1.1.1	0x53d9	Standard query (0)	images.pexels.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:13.459923029 CET	192.168.2.5	1.1.1.1	0x8c23	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:13.460073948 CET	192.168.2.5	1.1.1.1	0xf2fb	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:14.702584982 CET	192.168.2.5	1.1.1.1	0x6bfc	Standard query (0)	images.pexels.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:14.702821016 CET	192.168.2.5	1.1.1.1	0xcd49	Standard query (0)	images.pexels.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:20.932663918 CET	192.168.2.5	1.1.1.1	0x3b88	Standard query (0)	kit.fontawesome.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:20.932837963 CET	192.168.2.5	1.1.1.1	0x4848	Standard query (0)	kit.fontawesome.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:31.817043066 CET	192.168.2.5	1.1.1.1	0x7925	Standard query (0)	www.booking.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:31.817447901 CET	192.168.2.5	1.1.1.1	0x647b	Standard query (0)	www.booking.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:33.357386112 CET	192.168.2.5	1.1.1.1	0xd00a	Standard query (0)	cf.bstatic.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:33.357537985 CET	192.168.2.5	1.1.1.1	0xcba4	Standard query (0)	cf.bstatic.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:35.943844080 CET	192.168.2.5	1.1.1.1	0xfe3a	Standard query (0)	cdn.cookielaw.org	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:35.944072962 CET	192.168.2.5	1.1.1.1	0x9b51	Standard query (0)	cdn.cookielaw.org	65	IN (0x0001)	false
Jan 8, 2025 12:43:36.162497044 CET	192.168.2.5	1.1.1.1	0xb0e2	Standard query (0)	t-cf.bstatic.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:36.162821054 CET	192.168.2.5	1.1.1.1	0x2ce6	Standard query (0)	t-cf.bstatic.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:36.646172047 CET	192.168.2.5	1.1.1.1	0xad9f	Standard query (0)	cdn.cookielaw.org	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:36.646336079 CET	192.168.2.5	1.1.1.1	0xaa14	Standard query (0)	cdn.cookielaw.org	65	IN (0x0001)	false
Jan 8, 2025 12:43:37.065179110 CET	192.168.2.5	1.1.1.1	0xf600	Standard query (0)	account.booking.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:37.065323114 CET	192.168.2.5	1.1.1.1	0xc2a1	Standard query (0)	account.booking.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:37.263675928 CET	192.168.2.5	1.1.1.1	0x76c5	Standard query (0)	geolocation.onetrust.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:37.263917923 CET	192.168.2.5	1.1.1.1	0xf278	Standard query (0)	geolocation.onetrust.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:37.296418905 CET	192.168.2.5	1.1.1.1	0xcfaa	Standard query (0)	www.booking.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:37.296802044 CET	192.168.2.5	1.1.1.1	0x4f25	Standard query (0)	www.booking.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:37.867794037 CET	192.168.2.5	1.1.1.1	0xdeab	Standard query (0)	geolocation.onetrust.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:37.867989063 CET	192.168.2.5	1.1.1.1	0xe779	Standard query (0)	geolocation.onetrust.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:38.535207987 CET	192.168.2.5	1.1.1.1	0x74ab	Standard query (0)	stats.g.doubleclick.net	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:38.535360098 CET	192.168.2.5	1.1.1.1	0xc36	Standard query (0)	stats.g.doubleclick.net	65	IN (0x0001)	false
Jan 8, 2025 12:43:39.176603079 CET	192.168.2.5	1.1.1.1	0x7482	Standard query (0)	account.booking.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:39.176740885 CET	192.168.2.5	1.1.1.1	0x927e	Standard query (0)	account.booking.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:39.456157923 CET	192.168.2.5	1.1.1.1	0xe9c6	Standard query (0)	stats.g.doubleclick.net	65	IN (0x0001)	false
Jan 8, 2025 12:43:39.456157923 CET	192.168.2.5	1.1.1.1	0xe5fc	Standard query (0)	stats.g.doubleclick.net	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:40.012693882 CET	192.168.2.5	1.1.1.1	0x493	Standard query (0)	d8c14d4960ca.edge.sdk.awswaf.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:40.012820959 CET	192.168.2.5	1.1.1.1	0x2e03	Standard query (0)	d8c14d4960ca.edge.sdk.awswaf.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:41.035307884 CET	192.168.2.5	1.1.1.1	0xf374	Standard query (0)	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:41.035697937 CET	192.168.2.5	1.1.1.1	0x80da	Standard query (0)	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	65	IN (0x0001)	false
Jan 8, 2025 12:43:43.060060978 CET	192.168.2.5	1.1.1.1	0xece3	Standard query (0)	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:43:43.060203075 CET	192.168.2.5	1.1.1.1	0xb4eb	Standard query (0)	d8c14d4960ca.d2eb2267.us-east-1.token.awswaf.com	65	IN (0x0001)	false
Jan 8, 2025 12:44:13.461735010 CET	192.168.2.5	1.1.1.1	0x51de	Standard query (0)	nellie.booking.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:44:13.462117910 CET	192.168.2.5	1.1.1.1	0xd39d	Standard query (0)	nellie.booking.com	65	IN (0x0001)	false
Jan 8, 2025 12:44:13.462454081 CET	192.168.2.5	1.1.1.1	0xc337	Standard query (0)	a.nel.cloudflare.com	A (IP address)	IN (0x0001)	false
Jan 8, 2025 12:44:13.462600946 CET	192.168.2.5	1.1.1.1	0x351c	Standard query (0)	a.nel.cloudflare.com	65	IN (0x0001)	false

Timestamp	Bytes transferred	Direction	Data
Jan 8, 2025 12:43:03.598202944 CET	446	OUT	GET / HTTP/1.1 Host: www.hillviewlodge.hotelrent.top Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Jan 8, 2025 12:43:04.092472076 CET	1016	IN	HTTP/1.1 301 Moved Permanently Connection: Keep-Alive Keep-Alive: timeout=5, max=100 content-type: text/html content-length: 795 date: Wed, 08 Jan 2025 11:43:03 GMT location: https://hillviewlodge.hotelrent.top/ Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 73 74 79 6c 65 3d 22 68 65 69 67 68 74 3a 31 30 30 25 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2c 20 73 68 72 69 6e 6b 2d 74 6f 2d 66 69 74 3d 6e 6f 22 20 2f 3e 0a 3c 74 69 74 6c 65 3e 20 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 0d 0a 3c 2f 74 69 74 6c 65 3e 3c 73 74 79 6c 65 3e 40 6d 65 64 69 61 20 28 70 72 65 66 65 72 73 2d 63 6f 6c 6f 72 2d 73 63 68 65 6d 65 3a 64 61 72 6b 29 7b 62 6f 64 79 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 21 69 6d 70 6f 72 74 61 6e 74 7d 7d 3c 2f 73 74 79 6c 65 3e 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 63 6f 6c 6f 72 3a 20 23 34 34 34 3b 20 6d 61 72 67 69 6e 3a 30 3b 66 6f 6e 74 3a 20 6e 6f 72 6d 61 6c 20 31 34 70 78 2f 32 30 70 78 20 41 72 69 61 6c 2c [TRUNCATED] Data Ascii: <!DOCTYPE html><html style="height:100%"><head><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /><title> 301 Moved Permanently</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head><body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"><div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1><h2 style="margin-top:20px;font-size: 30px;">Moved Permanently</h2><p>The document has been permanently moved.</p></div></div></body></html>

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:05 UTC	670	OUT	GET / HTTP/1.1 Host: hillviewlodge.hotelrent.top Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:05 UTC	495	IN	HTTP/1.1 200 OK Connection: close set-cookie: PHPSESSID=8467018119c8ca4b6555c77d3bb554d4; path=/; secure expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache content-type: text/html; charset=UTF-8 content-length: 79 date: Wed, 08 Jan 2025 11:43:04 GMT alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
2025-01-08 11:43:05 UTC	79	IN	Data Raw: 3c 73 63 72 69 70 74 3e 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 20 3d 20 22 68 74 74 70 73 3a 2f 2f 68 6f 75 73 69 74 79 2e 6e 65 74 3f 26 74 61 67 3d 73 75 6d 6d 65 72 65 6e 64 22 3b 20 3c 2f 73 63 72 69 70 74 3e Data Ascii: <script> window.location.href = "https://housity.net?&tag=summerend"; </script>

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:06 UTC	702	OUT	GET /?&tag=summerend HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Referer: https://hillviewlodge.hotelrent.top/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:06 UTC	1141	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:06 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; path=/ Set-Cookie: tag=summerend; expires=Tue, 28 Jan 2025 11:43:06 GMT; Max-Age=1728000 Set-Cookie: lang=en-US; expires=Tue, 28 Jan 2025 11:43:06 GMT; Max-Age=1728000 expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate pragma: no-cache vary: Accept-Encoding x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dy4NDprQnZ1bSuszxl77Ko77xmVf60NxHFsb6qplp9YtglaHQ1lj5SyzdaYdExl7oOMkDLrS0O66%2BqZK22lvUYs7Ir%2BzoHN%2FY4ir%2BGYiAoBXRhAz117IBiDxJSmA"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febed903c843308-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1785&min_rtt=1779&rtt_var=680&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2823&recv_bytes=1280&delivery_rate=1595628&cwnd=105&unsent_bytes=0&cid=a3fc4230ee824eb5&ts=438&x=0"
2025-01-08 11:43:06 UTC	228	IN	Data Raw: 34 33 62 38 0d 0a 3c 73 74 79 6c 65 3e 0d 0a 20 20 20 20 2f 2a 42 4f 44 59 20 2a 2f 0d 0a 20 20 20 20 62 6f 64 79 20 7b 0d 0a 20 20 20 20 20 20 20 20 64 69 73 70 6c 61 79 3a 20 62 6c 6f 63 6b 3b 0d 0a 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 50 6f 70 70 69 6e 73 22 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 72 65 6d 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 34 30 30 3b 0d 0a 20 20 20 20 20 20 20 20 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 35 3b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 Data Ascii: 43b8<style> /BODY / body { display: block; margin: 0px; font-family: "Poppins"; font-size: 1rem; font-weight: 400; line-height: 1.5; background-color:
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 23 46 39 46 38 46 38 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2f 2a 20 48 45 41 44 45 52 20 2a 2f 0d 0a 0d 0a 20 20 20 20 68 65 61 64 65 72 20 7b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 0d 0a 20 20 20 20 20 20 20 20 64 69 73 70 6c 61 79 3a 20 66 6c 65 78 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 73 70 61 63 65 2d 62 65 74 77 65 65 6e 3b 0d 0a 20 20 20 20 20 20 20 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 20 63 65 6e 74 65 72 3b 0d 0a 20 20 20 20 20 20 20 20 70 6f 73 69 74 69 6f 6e 3a 20 61 62 73 6f 6c 75 74 65 3b 0d 0a 20 20 20 20 20 20 20 20 77 69 64 74 68 3a Data Ascii: #F9F8F8; } /* HEADER */ header { background-color: transparent; display: flex; padding: 20px; justify-content: space-between; align-items: center; position: absolute; width:
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 39 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 66 6f 6f 74 65 72 2d 6c 69 6e 6b 73 20 6c 69 20 7b 0d 0a 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 73 6f 63 69 61 6c 2d 6c 69 6e 6b 73 20 7b 0d 0a 20 20 20 20 20 20 20 20 67 61 70 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 64 69 73 70 6c 61 79 3a 20 66 6c 65 78 3b 0d 0a 20 20 20 20 20 20 20 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 63 65 6e 74 65 72 3b 0d 0a 20 20 20 20 20 20 20 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 20 63 65 6e 74 65 72 3b 0d 0a 20 20 20 20 20 20 20 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 20 63 6f 6c 75 6d 6e 3b 0d 0a 20 Data Ascii: font-size: 19px; } .footer-links li { margin-top: 10px; } .social-links { gap: 20px; display: flex; justify-content: center; align-items: center; flex-direction: column;
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 2d 69 6d 61 67 65 20 30 2e 35 73 20 65 61 73 65 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 74 6f 70 70 65 72 20 68 31 20 7b 0d 0a 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 63 6f 6c 6f 72 3a 20 77 68 69 74 65 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 2d 74 6f 70 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0d 0a 20 20 20 20 20 20 20 20 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 20 2d 32 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 34 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 74 6f 70 70 65 72 20 68 32 20 7b 0d 0a 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 70 78 3b 0d 0a 20 20 20 Data Ascii: -image 0.5s ease; } .topper h1 { margin: 0px; color: white; padding-top: 20px; text-align: center; letter-spacing: -2; font-size: 40px; } .topper h2 { margin: 0px;
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 6c 6c 2c 20 6d 69 6e 6d 61 78 28 32 35 30 70 78 2c 20 31 66 72 29 29 3b 0d 0a 20 20 20 20 20 20 20 20 67 61 70 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 68 6f 74 65 6c 2d 73 6c 69 64 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 70 6f 73 69 74 69 6f 6e 3a 20 72 65 6c 61 74 69 76 65 3b 0d 0a 20 20 20 20 20 20 20 20 63 6f 6c 6f 72 3a 20 62 6c 61 63 6b 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 3a 20 31 70 78 20 73 6f 6c 69 64 20 23 64 63 64 66 65 34 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 68 6f 74 65 6c 2d 73 6c 69 64 65 2d 69 6e 66 6f 20 7b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 70 78 20 31 30 70 78 20 31 30 70 Data Ascii: ll, minmax(250px, 1fr)); gap: 20px; } .hotel-slide { position: relative; color: black; border: 1px solid #dcdfe4; border-radius: 5px; } .hotel-slide-info { padding: 0px 10px 10p
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 72 69 67 68 74 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 62 6f 6c 64 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 35 31 39 31 66 61 3b 0d 0a 20 20 20 20 20 20 20 20 63 6f 6c 6f 72 3a 20 77 68 69 74 65 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 6d 61 72 67 69 6e 3a 20 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 73 72 2d 63 69 74 79 20 7b 0d 0a 20 20 20 20 20 20 20 20 63 6f 6c 6f 72 3a 20 23 34 30 34 30 34 30 3b 0d 0a 20 20 20 Data Ascii: right: 10px; font-size: 20px; font-weight: bold; border-radius: 5px; background-color: #5191fa; color: white; padding: 10px; margin: 0px; } .sr-city { color: #404040;
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 61 64 69 75 73 3a 20 36 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 73 75 62 73 63 72 69 62 65 2d 66 6f 72 6d 20 7b 0d 0a 20 20 20 20 20 20 20 20 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 0d 0a 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3a 20 35 30 70 78 3b 0d 0a 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 73 75 62 73 63 72 69 62 65 2d 66 6f 72 6d 2d 65 6d 61 69 6c 2d 69 6e 70 75 74 20 7b 0d 0a 20 20 20 20 20 20 20 20 77 69 64 74 68 3a 20 35 30 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 Data Ascii: adius: 60px; } .subscribe-form { display: inline-flex; height: 50px; } .subscribe-form-email-input { width: 500px; border-radius: 5px; border: none; padding: 10px; }
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 20 20 20 20 74 6f 70 3a 20 2d 31 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 73 65 61 72 63 68 2d 69 6e 70 75 74 73 20 7b 0d 0a 20 20 20 20 20 20 20 20 64 69 73 70 6c 61 79 3a 20 66 6c 65 78 3b 0d 0a 20 20 20 20 20 20 20 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 20 72 6f 77 3b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 66 38 66 37 66 39 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 32 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 31 35 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 20 63 65 6e 74 65 72 3b 0d 0a 20 20 20 20 20 20 20 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 20 73 70 61 63 65 2d 61 72 Data Ascii: top: -10px; } .search-inputs { display: flex; flex-direction: row; background-color: #f8f7f9; padding: 20px; border-radius: 15px; align-items: center; justify-content: space-ar
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 37 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 61 64 64 72 65 73 73 20 69 20 7b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 30 70 78 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 62 75 74 74 6f 6e 62 6f 6f 6b 20 7b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 35 31 39 31 66 61 3b 0d 0a 20 20 20 20 20 20 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 0d 0a 20 20 20 20 20 20 20 20 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 75 70 70 65 72 63 61 73 65 3b 0d 0a 20 20 20 20 20 20 20 20 6c 65 74 74 65 72 2d 73 70 61 63 69 6e 67 3a 20 32 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 33 70 78 3b 0d 0a 20 20 Data Ascii: margin-top: 7px; } .address i { padding: 0px; } .buttonbook { background-color: #5191fa; color: #fff; text-transform: uppercase; letter-spacing: 2px; font-size: 13px;
2025-01-08 11:43:06 UTC	1369	IN	Data Raw: 65 20 7b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 3b 0d 0a 20 20 20 20 7d 0d 0a 0d 0a 20 20 20 20 2e 69 6e 70 75 74 2d 62 6f 78 20 7b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 77 68 69 74 65 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 31 30 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 77 68 69 74 65 3b 0d 0a 20 20 20 20 20 20 20 20 70 61 64 64 69 6e 67 3a 20 35 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 3a 20 73 6f 6c 69 64 20 31 70 78 3b 0d 0a 20 20 20 20 20 20 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 70 78 3b 0d 0a 20 20 20 20 Data Ascii: e { padding: 10px; border: none; } .input-box { background-color: white; padding: 10px; background-color: white; padding: 5px; border: solid 1px; border-radius: 5px;

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:07 UTC	678	OUT	GET /images/logo-w.png HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:07 UTC	1079	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:07 GMT Content-Type: image/webp Content-Length: 6062 Connection: close Age: 463247 Cache-Control: public, max-age=604800 Cf-Bgj: imgq:85,h2pri Cf-Polished: origFmt=png, origSize=15212 Content-Disposition: inline; filename="logo-w.webp" Vary: Accept etag: "3b6c-65fc6812-2e0df2;;;" expires: Sat, 21 Dec 2024 11:51:17 GMT last-modified: Thu, 21 Mar 2024 17:02:10 GMT x-turbo-charged-by: LiteSpeed CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nczZBp7xOxpyXyJ8uwrhZ5faIGxo%2F2SPJ66t8fvPUodxYy2IQM0XtYT6ycZk1ltGF2KsD3KP4KQ6NArI3BulS3DRSosd7df%2FrpBkwvw3o4kRi4XUwhGGoHDcwDua"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febed983c1a4288-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1747&min_rtt=1745&rtt_var=656&sent=6&recv=7&lost=0&retrans=0&sent_bytes=2823&recv_bytes=1256&delivery_rate=1673352&cwnd=246&unsent_bytes=0&cid=ab59c3495156eb4f&ts=1435&x=0"
2025-01-08 11:43:07 UTC	290	IN	Data Raw: 52 49 46 46 a6 17 00 00 57 45 42 50 56 50 38 4c 99 17 00 00 2f e7 c3 4a 10 15 61 bb ff ef b9 94 56 be c6 eb f5 5f 8f af b7 f1 7f b0 67 f6 fe 5d 65 e7 64 df d7 03 fe 93 8c c7 ae 94 0c cd 3e 27 22 eb 8c 66 dd 29 73 46 33 2c cb 1a 0c 86 c3 a6 84 c8 b2 0f 38 03 b1 a6 42 0c c4 0c ea 0c 55 6c 93 0a 29 96 05 81 63 85 7d e7 52 aa 5d c1 b2 d3 01 db 2d 36 ac db 02 58 26 e4 c0 10 64 db d4 e3 26 03 3d 2f 81 a4 8d fd e1 51 16 ee 0d 24 00 00 40 b0 09 ab db b6 6d db b6 6d db b6 6d db b6 6d db b6 ed 4f 79 02 b8 8f ff fb f8 bf 0f 7d e5 06 23 37 a4 1b fd 38 b9 f9 cb ed 7f 92 c8 ed 59 6e 11 37 fa 6f 72 0b 4a aa 94 db ad dc cc 7d 37 b9 c1 25 d5 cb 6d 45 6e 82 7e 9b dc 90 b3 48 12 b9 d5 c8 8d c0 67 93 1b 46 56 89 dc 40 72 0b 93 1b bc 27 97 24 72 bb 90 9b 9e 2f 97 24 72 9b 96 Data Ascii: RIFFWEBPVP8L/JaV_g]ed>'"f)sF3,8BUl)c}R]-6X&d&=/Q$@mmmmOy}#78Yn7orJ}7%mEn~HgFV@r'$r/$r
2025-01-08 11:43:07 UTC	1369	IN	Data Raw: 92 c8 2d 4b 6e 68 be 5c 22 b7 17 b9 39 f9 72 49 22 b7 3d b9 89 f9 72 49 22 b7 0e b9 51 fa 72 49 22 b7 84 1b 7d b9 44 6e f7 72 b3 f4 e5 92 44 6e eb 72 e3 f3 e5 92 44 6e 75 72 23 f6 e5 92 43 e5 16 7e b6 27 97 24 72 bb 94 9b 81 2f 97 24 72 9b ff 2f 5f 2e 49 e4 56 2a 37 5c 5f 2e 91 db a7 dc fc 7c b9 24 91 db b1 dc d4 7d b9 24 91 db 78 8f 2f 97 24 72 cb 91 1b a6 2f 97 c8 ed 55 6e ae be 5c 92 34 c8 4d ca 97 4b 12 b9 75 2d f4 e5 92 44 6e c9 72 43 f1 e5 12 b9 3d c8 cd da 97 4b 12 b9 ad cb 4d c8 97 4b 12 b9 35 1e e1 cb 25 72 03 cb 2d 52 6e 88 9e 5c 92 c8 ed 5a 6e 46 be 5c 92 0c 96 1b 97 2f 97 24 72 2b bf c7 97 4b e4 f6 25 b7 00 5f 2e 49 e4 76 2a 37 4d 5f 2e 49 e4 36 26 37 0a 5f 2e 19 2a 37 16 5f 2e 91 db 8c 37 27 b7 c3 3e 9e bb c5 93 5b 2d 37 55 f6 e3 e4 96 34 86 Data Ascii: -Knh\"9rI"=rI"QrI"}DnrDnrDnur#C~'$r/$r/_.IV7\_.\|$}$x/$r/Un\4MKu-DnrC=KMK5%r-Rn\ZnF\/$r+K%_.Iv7M_.I6&7_.*7_.7'>[-7U4
2025-01-08 11:43:07 UTC	1369	IN	Data Raw: f5 5b 7d c3 39 ea 77 d4 24 ea c4 98 b4 b4 d1 37 20 08 89 b3 00 ad 5b 6a 0c 33 6f 50 bf ba fa 33 d5 bf e5 14 f5 b7 e9 11 45 96 1a 5c da e8 19 10 15 01 bc d9 a4 4c f5 e3 a8 5f 47 fd b9 ea df 73 86 fa 01 7a 44 99 99 94 96 36 7a 05 04 37 f1 07 d5 b1 c5 b0 cc 65 ad e7 ab ff d8 09 b1 fa f9 b5 88 2a 37 2a 2d 6d 2c 78 11 1e e3 b0 db 3e 3b 41 e4 06 38 91 63 41 a6 fa 89 d5 6f aa fe 72 f5 5f d8 a7 fe 10 2d a2 ee cd 4a 4b a2 38 0b 5d 44 57 c0 2e fe ec 04 71 8c 23 8e 2c c9 54 3f 65 ad fa ab d5 7f 63 97 fa 27 75 88 a2 4a 4d 2f 75 79 03 04 6e d0 48 e0 d8 93 a9 7e 3a f5 db ab bf 61 a7 3d b1 fa 91 34 88 b2 36 2e 15 05 e9 f2 05 86 e8 20 38 ed ca bc 4b fd ce ea 6f 55 ff 8b 25 ea 57 d2 20 aa c6 bc b4 d4 e5 09 10 0a 3a 08 79 fb 32 2f 50 bf 87 fa 3b d5 ff 6e 81 fa d3 35 bc 6a Data Ascii: [}9w$7 [j3oP3E\L_GszD6z7e7-m,x>;A8cAor_-JK8]DW.q#,T?ec'uJM/uynH~:a=46. 8KoU%W :y2/P;n5j
2025-01-08 11:43:07 UTC	1369	IN	Data Raw: 26 0c 1d eb b6 5d 3b ac 08 f5 0e da 55 87 0a 44 12 ee 5b 01 3d 0f 21 6a c9 19 ff 14 15 2a 4a 80 0b ca 4e 08 8b 73 21 a4 fb 06 8b 27 55 9c 46 e4 06 3b 2f 5b e9 1e 02 8b 08 83 d5 e1 f6 43 11 b3 0c fc 71 ea 44 51 3b a2 d2 45 29 8b 42 e2 42 b3 1b 7a 46 66 b7 7e 4c b0 9a 08 70 d9 4c 02 68 49 20 f2 1d 74 45 5f 54 58 82 9a 52 8b fa 16 42 94 8a 7d a2 ee 44 55 89 32 15 85 bf 0f 50 85 68 37 84 d1 d9 11 95 c1 ee 89 17 3b ec 9c 60 6b df a5 ee 61 a2 06 d6 82 ea 0a e0 ce 97 11 df b7 4b 14 40 54 af 28 8f 81 5c a8 76 44 f3 ee 6c 08 4d e2 9f 65 61 68 c5 5d 87 e2 08 c0 27 17 10 53 0f 3e a1 21 4c 76 d0 48 58 eb 58 10 b1 86 9a cc 48 51 6b 16 89 9a 17 15 2d 4a 8c 0b d9 8e 08 44 72 16 33 3b 83 f5 44 88 b3 d6 77 80 fa 12 39 84 50 85 33 09 92 67 be d2 8c 3a c0 41 bc 15 15 3e 8f Data Ascii: &];UD[=!j*JNs!'UF;/[CqDQ;E)BBzFf~LpLhI tE_TXRB}DU2Ph7;`kaK@T(\vDlMeah]'S>!LvHXXHQk-JDr3;Dw9P3g:A>
2025-01-08 11:43:07 UTC	1369	IN	Data Raw: 57 1c c6 7c fe 07 46 85 61 63 dd c6 fd 40 81 88 cb 38 26 60 1f e3 c8 cf cb 3d a0 a1 9a 08 2d d4 6c a7 31 bf 3d a0 c3 a0 70 ca cb 6e eb 5f 0b 7a 29 e3 60 d0 9a e8 0f df 0e aa d3 34 15 b5 4e c3 3a 2d 1f 19 c3 4c 50 ed 3c d9 9c f0 6b b7 f1 45 a0 f0 47 e6 41 db 31 c4 11 47 80 88 13 50 c7 58 3d 77 a0 1e d2 40 a4 68 b9 c6 20 66 be 78 27 b1 d8 61 c8 c3 27 b9 6d 09 6a 1c 33 61 1e b0 1b a3 40 c3 40 e1 7b 7a 88 19 14 21 c7 cc df 07 0d d6 f2 0b b3 98 f9 cd 05 1b 0e 30 21 7c ce 6d 7c 32 68 fb cd bc 1f e6 88 99 51 a0 83 51 f7 6a 99 b3 10 b5 94 99 cf 00 5d a3 a5 d3 b8 cc e9 2b 9a c6 68 0b 4b dc b6 0d 14 08 8b 29 b5 98 f3 38 0a d4 88 7a 4d cb 2f 03 f8 1e 66 e6 61 a0 cb 74 ec 0e 56 64 5e 3c 70 71 ab 9e 49 6e db b4 1d 74 4d 57 80 f6 dc 12 09 ba 01 d5 bc 5b c7 29 a8 19 19 Data Ascii: W\|Fac@8&`=-l1=pn_z)`4N:-LP<kEGA1GPX=w@h fx'a'mj3a@@{z!0!\|m\|2hQQj]+hK)8zM/fatVd^<pqIntMW[)
2025-01-08 11:43:07 UTC	296	IN	Data Raw: 63 6e 7a e5 a3 d1 c3 0e bd e4 af 4d fd 0e 1b 32 8d ad 1f bb 64 1b 91 35 e9 e4 ce e1 e5 10 42 79 7b e7 d3 cb 1e 59 f1 14 e7 ef af 07 70 c2 91 ec 41 bd 83 f8 33 d3 69 73 a6 71 fe bf 0a b5 2d 9a f5 59 cd c7 03 78 fb 26 ef ec 14 d4 8f d8 37 df d2 03 ea 98 ee 9d 11 b5 01 bc df 3e 40 f9 e6 67 2d 44 11 1a de d9 be 01 dc ce be f9 a6 cb 50 45 ef ec a6 00 6e 5d ef 9b 55 7e 8b 7a 85 7d f3 c3 03 b8 f9 55 ef 6c 2b 6a 35 fb e6 27 04 f4 dd de d9 62 54 5d c5 37 9b de 81 5a c7 be f9 1f 02 f8 57 2b 7d b3 95 bf 42 8d 63 df 9c 88 0a e8 f1 be d9 b9 a7 a1 86 b1 6f fe 83 80 3e dc 3b fb 04 75 c0 34 df ec d4 80 be 9c 7d f3 19 a8 f2 52 df ec 90 1e d4 06 f6 cd 67 05 f4 03 be 59 ff 85 a8 ad ec 9b cf 0e e8 05 be d9 9c e1 a8 d3 5e f6 cd 36 06 f4 f3 ec 99 4f ab 43 8d fa 8d 6f f6 cb 80 Data Ascii: cnzM2d5By{YpA3isq-Yx&7>@g-DPEn]U~z}Ul+j5'bT]7ZW+}Bco>;u4}RgY^6OCo

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:07 UTC	575	OUT	GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	952	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: text/css; charset=utf-8 Transfer-Encoding: chunked Connection: close CDN-PullZone: 252412 CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74 CDN-RequestCountryCode: US Vary: Accept-Encoding Access-Control-Allow-Origin: * Cache-Control: public, max-age=31919000 ETag: W/"269550530cc127b6aa5a35925a7de6ce" Last-Modified: Mon, 25 Jan 2021 22:04:55 GMT CDN-ProxyVer: 1.06 CDN-RequestPullSuccess: True CDN-RequestPullCode: 200 CDN-CachedAt: 11/07/2024 01:04:57 CDN-EdgeStorageId: 871 timing-allow-origin: * cross-origin-resource-policy: cross-origin X-Content-Type-Options: nosniff CDN-Status: 200 CDN-RequestTime: 0 CDN-RequestId: 919d2da79013c9f2cbcb7aec6843d854 CDN-Cache: HIT CF-Cache-Status: HIT Age: 1300424 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Server: cloudflare CF-RAY: 8febed9b5db80f5b-EWR alt-svc: h3=":443"; ma=86400
2025-01-08 11:43:08 UTC	417	IN	Data Raw: 37 39 31 38 0d 0a 2f 2a 21 0a 20 2a 20 20 46 6f 6e 74 20 41 77 65 73 6f 6d 65 20 34 2e 37 2e 30 20 62 79 20 40 64 61 76 65 67 61 6e 64 79 20 2d 20 68 74 74 70 3a 2f 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 69 6f 20 2d 20 40 66 6f 6e 74 61 77 65 73 6f 6d 65 0a 20 2a 20 20 4c 69 63 65 6e 73 65 20 2d 20 68 74 74 70 3a 2f 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 69 6f 2f 6c 69 63 65 6e 73 65 20 28 46 6f 6e 74 3a 20 53 49 4c 20 4f 46 4c 20 31 2e 31 2c 20 43 53 53 3a 20 4d 49 54 20 4c 69 63 65 6e 73 65 29 0a 20 2a 2f 40 66 6f 6e 74 2d 66 61 63 65 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 27 46 6f 6e 74 41 77 65 73 6f 6d 65 27 3b 73 72 63 3a 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 65 6f 74 3f 76 3d 34 2e 37 Data Ascii: 7918/! Font Awesome 4.7.0 by @davegandy - http://fontawesome.io - @fontawesome * License - http://fontawesome.io/license (Font: SIL OFL 1.1, CSS: MIT License) */@font-face{font-family:'FontAwesome';src:url('../fonts/fontawesome-webfont.eot?v=4.7
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 77 6f 66 66 3f 76 3d 34 2e 37 2e 30 27 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 27 29 2c 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 74 74 66 3f 76 3d 34 2e 37 2e 30 27 29 20 66 6f 72 6d 61 74 28 27 74 72 75 65 74 79 70 65 27 29 2c 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 73 76 67 3f 76 3d 34 2e 37 2e 30 23 66 6f 6e 74 61 77 65 73 6f 6d 65 72 65 67 75 6c 61 72 27 29 20 66 6f 72 6d 61 74 28 27 73 76 67 27 29 3b 66 6f 6e 74 2d 77 65 69 67 68 74 3a 6e 6f 72 6d 61 6c 3b 66 6f 6e 74 2d 73 74 79 6c 65 3a 6e 6f 72 6d 61 6c 7d 2e 66 61 7b 64 69 73 70 6c 61 Data Ascii: '../fonts/fontawesome-webfont.woff?v=4.7.0') format('woff'),url('../fonts/fontawesome-webfont.ttf?v=4.7.0') format('truetype'),url('../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular') format('svg');font-weight:normal;font-style:normal}.fa{displa
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 25 7b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 30 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 30 64 65 67 29 7d 31 30 30 25 7b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 33 35 39 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 33 35 39 64 65 67 29 7d 7d 40 6b 65 79 66 72 61 6d 65 73 20 66 61 2d 73 70 69 6e 7b 30 25 7b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 30 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 30 64 65 67 29 7d 31 30 30 25 7b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 33 35 39 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 33 35 39 64 Data Ascii: %{-webkit-transform:rotate(0deg);transform:rotate(0deg)}100%{-webkit-transform:rotate(359deg);transform:rotate(359deg)}}@keyframes fa-spin{0%{-webkit-transform:rotate(0deg);transform:rotate(0deg)}100%{-webkit-transform:rotate(359deg);transform:rotate(359d
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 74 61 63 6b 2d 31 78 2c 2e 66 61 2d 73 74 61 63 6b 2d 32 78 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 6c 65 66 74 3a 30 3b 77 69 64 74 68 3a 31 30 30 25 3b 74 65 78 74 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 7d 2e 66 61 2d 73 74 61 63 6b 2d 31 78 7b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 69 6e 68 65 72 69 74 7d 2e 66 61 2d 73 74 61 63 6b 2d 32 78 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 65 6d 7d 2e 66 61 2d 69 6e 76 65 72 73 65 7b 63 6f 6c 6f 72 3a 23 66 66 66 7d 2e 66 61 2d 67 6c 61 73 73 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 30 30 22 7d 2e 66 61 2d 6d 75 73 69 63 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 30 31 22 7d 2e 66 61 2d 73 65 61 72 63 68 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 30 Data Ascii: tack-1x,.fa-stack-2x{position:absolute;left:0;width:100%;text-align:center}.fa-stack-1x{line-height:inherit}.fa-stack-2x{font-size:2em}.fa-inverse{color:#fff}.fa-glass:before{content:"\f000"}.fa-music:before{content:"\f001"}.fa-search:before{content:"\f00
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 33 22 7d 2e 66 61 2d 66 6c 61 67 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 34 22 7d 2e 66 61 2d 68 65 61 64 70 68 6f 6e 65 73 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 35 22 7d 2e 66 61 2d 76 6f 6c 75 6d 65 2d 6f 66 66 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 36 22 7d 2e 66 61 2d 76 6f 6c 75 6d 65 2d 64 6f 77 6e 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 37 22 7d 2e 66 61 2d 76 6f 6c 75 6d 65 2d 75 70 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 38 22 7d 2e 66 61 2d 71 72 63 6f 64 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 32 39 22 7d 2e 66 61 2d 62 61 72 63 6f 64 65 3a 62 65 66 6f 72 Data Ascii: ore{content:"\f023"}.fa-flag:before{content:"\f024"}.fa-headphones:before{content:"\f025"}.fa-volume-off:before{content:"\f026"}.fa-volume-down:before{content:"\f027"}.fa-volume-up:before{content:"\f028"}.fa-qrcode:before{content:"\f029"}.fa-barcode:befor
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 38 22 7d 2e 66 61 2d 66 61 73 74 2d 62 61 63 6b 77 61 72 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 39 22 7d 2e 66 61 2d 62 61 63 6b 77 61 72 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 61 22 7d 2e 66 61 2d 70 6c 61 79 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 62 22 7d 2e 66 61 2d 70 61 75 73 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 63 22 7d 2e 66 61 2d 73 74 6f 70 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 64 22 7d 2e 66 61 2d 66 6f 72 77 61 72 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 34 65 22 7d 2e 66 61 2d 66 61 73 74 2d 66 6f 72 77 61 72 64 3a 62 65 66 6f 72 65 7b 63 Data Ascii: fore{content:"\f048"}.fa-fast-backward:before{content:"\f049"}.fa-backward:before{content:"\f04a"}.fa-play:before{content:"\f04b"}.fa-pause:before{content:"\f04c"}.fa-stop:before{content:"\f04d"}.fa-forward:before{content:"\f04e"}.fa-fast-forward:before{c
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 7d 2e 66 61 2d 65 79 65 2d 73 6c 61 73 68 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 30 22 7d 2e 66 61 2d 77 61 72 6e 69 6e 67 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 65 78 63 6c 61 6d 61 74 69 6f 6e 2d 74 72 69 61 6e 67 6c 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 31 22 7d 2e 66 61 2d 70 6c 61 6e 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 32 22 7d 2e 66 61 2d 63 61 6c 65 6e 64 61 72 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 33 22 7d 2e 66 61 2d 72 61 6e 64 6f 6d 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 34 22 7d 2e 66 61 2d 63 6f 6d 6d 65 6e 74 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 37 35 22 7d 2e 66 61 2d 6d 61 67 6e 65 74 3a 62 Data Ascii: }.fa-eye-slash:before{content:"\f070"}.fa-warning:before,.fa-exclamation-triangle:before{content:"\f071"}.fa-plane:before{content:"\f072"}.fa-calendar:before{content:"\f073"}.fa-random:before{content:"\f074"}.fa-comment:before{content:"\f075"}.fa-magnet:b
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 2d 70 68 6f 6e 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 35 22 7d 2e 66 61 2d 73 71 75 61 72 65 2d 6f 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 36 22 7d 2e 66 61 2d 62 6f 6f 6b 6d 61 72 6b 2d 6f 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 37 22 7d 2e 66 61 2d 70 68 6f 6e 65 2d 73 71 75 61 72 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 38 22 7d 2e 66 61 2d 74 77 69 74 74 65 72 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 39 22 7d 2e 66 61 2d 66 61 63 65 62 6f 6f 6b 2d 66 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 66 61 63 65 62 6f 6f 6b 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 39 61 22 7d 2e 66 61 2d 67 69 74 68 75 62 3a 62 65 66 6f 72 65 7b Data Ascii: -phone:before{content:"\f095"}.fa-square-o:before{content:"\f096"}.fa-bookmark-o:before{content:"\f097"}.fa-phone-square:before{content:"\f098"}.fa-twitter:before{content:"\f099"}.fa-facebook-f:before,.fa-facebook:before{content:"\f09a"}.fa-github:before{
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 3a 22 5c 66 30 63 36 22 7d 2e 66 61 2d 73 61 76 65 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 66 6c 6f 70 70 79 2d 6f 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 63 37 22 7d 2e 66 61 2d 73 71 75 61 72 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 63 38 22 7d 2e 66 61 2d 6e 61 76 69 63 6f 6e 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 72 65 6f 72 64 65 72 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 62 61 72 73 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 63 39 22 7d 2e 66 61 2d 6c 69 73 74 2d 75 6c 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 63 61 22 7d 2e 66 61 2d 6c 69 73 74 2d 6f 6c 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 63 62 22 7d 2e 66 61 2d 73 74 72 69 6b 65 74 68 72 6f 75 67 68 3a 62 65 Data Ascii: :"\f0c6"}.fa-save:before,.fa-floppy-o:before{content:"\f0c7"}.fa-square:before{content:"\f0c8"}.fa-navicon:before,.fa-reorder:before,.fa-bars:before{content:"\f0c9"}.fa-list-ul:before{content:"\f0ca"}.fa-list-ol:before{content:"\f0cb"}.fa-strikethrough:be
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 39 22 7d 2e 66 61 2d 70 61 73 74 65 3a 62 65 66 6f 72 65 2c 2e 66 61 2d 63 6c 69 70 62 6f 61 72 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 61 22 7d 2e 66 61 2d 6c 69 67 68 74 62 75 6c 62 2d 6f 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 62 22 7d 2e 66 61 2d 65 78 63 68 61 6e 67 65 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 63 22 7d 2e 66 61 2d 63 6c 6f 75 64 2d 64 6f 77 6e 6c 6f 61 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 64 22 7d 2e 66 61 2d 63 6c 6f 75 64 2d 75 70 6c 6f 61 64 3a 62 65 66 6f 72 65 7b 63 6f 6e 74 65 6e 74 3a 22 5c 66 30 65 65 22 7d 2e 66 61 2d 75 73 65 72 2d 6d 64 3a 62 65 66 6f 72 65 7b 63 Data Ascii: :before{content:"\f0e9"}.fa-paste:before,.fa-clipboard:before{content:"\f0ea"}.fa-lightbulb-o:before{content:"\f0eb"}.fa-exchange:before{content:"\f0ec"}.fa-cloud-download:before{content:"\f0ed"}.fa-cloud-upload:before{content:"\f0ee"}.fa-user-md:before{c

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:07 UTC	574	OUT	GET /leaflet@1.9.4/dist/leaflet.css HTTP/1.1 Host: unpkg.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://housity.net sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: style Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	562	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: text/css; charset=utf-8 Transfer-Encoding: chunked Connection: close access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"39d6-7JKfEQDGZCzMXEJyz0zKEiUaml0" via: 1.1 fly.io fly-request-id: 01JG3S9BTXSPV95C2VVRBF4BSB-lga CF-Cache-Status: HIT Age: 1042616 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8febed9b6d504334-EWR
2025-01-08 11:43:08 UTC	807	IN	Data Raw: 33 39 64 36 0d 0a 2f 2a 20 72 65 71 75 69 72 65 64 20 73 74 79 6c 65 73 20 2a 2f 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 70 61 6e 65 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 69 6c 65 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6d 61 72 6b 65 72 2d 69 63 6f 6e 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6d 61 72 6b 65 72 2d 73 68 61 64 6f 77 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 69 6c 65 2d 63 6f 6e 74 61 69 6e 65 72 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 70 61 6e 65 20 3e 20 73 76 67 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 70 61 6e 65 20 3e 20 63 61 6e 76 61 73 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 7a 6f 6f 6d 2d 62 6f 78 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 69 6d 61 67 65 2d 6c 61 79 65 72 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6c 61 79 65 72 20 7b 0d 0a 09 70 6f 73 69 74 69 6f 6e 3a Data Ascii: 39d6/* required styles */.leaflet-pane,.leaflet-tile,.leaflet-marker-icon,.leaflet-marker-shadow,.leaflet-tile-container,.leaflet-pane > svg,.leaflet-pane > canvas,.leaflet-zoom-box,.leaflet-image-layer,.leaflet-layer {position:
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 61 63 6b 20 74 68 61 74 20 70 72 65 76 65 6e 74 73 20 68 77 20 6c 61 79 65 72 73 20 22 73 74 72 65 74 63 68 69 6e 67 22 20 77 68 65 6e 20 6c 6f 61 64 69 6e 67 20 6e 65 77 20 74 69 6c 65 73 20 2a 2f 0d 0a 2e 6c 65 61 66 6c 65 74 2d 73 61 66 61 72 69 20 2e 6c 65 61 66 6c 65 74 2d 74 69 6c 65 2d 63 6f 6e 74 61 69 6e 65 72 20 7b 0d 0a 09 77 69 64 74 68 3a 20 31 36 30 30 70 78 3b 0d 0a 09 68 65 69 67 68 74 3a 20 31 36 30 30 70 78 3b 0d 0a 09 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 20 30 20 30 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6d 61 72 6b 65 72 2d 69 63 6f 6e 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6d 61 72 6b 65 72 2d 73 68 61 64 6f 77 20 7b 0d 0a 09 64 69 73 70 6c 61 79 3a 20 62 6c 6f 63 6b 3b 0d 0a 09 7d 0d 0a 2f Data Ascii: ack that prevents hw layers "stretching" when loading new tiles */.leaflet-safari .leaflet-tile-container {width: 1600px;height: 1600px;-webkit-transform-origin: 0 0;}.leaflet-marker-icon,.leaflet-marker-shadow {display: block;}/
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 6d 73 2d 74 6f 75 63 68 2d 61 63 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0d 0a 09 74 6f 75 63 68 2d 61 63 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0d 0a 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 61 69 6e 65 72 20 7b 0d 0a 09 2d 77 65 62 6b 69 74 2d 74 61 70 2d 68 69 67 68 6c 69 67 68 74 2d 63 6f 6c 6f 72 3a 20 74 72 61 6e 73 70 61 72 65 6e 74 3b 0d 0a 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 61 69 6e 65 72 20 61 20 7b 0d 0a 09 2d 77 65 62 6b 69 74 2d 74 61 70 2d 68 69 67 68 6c 69 67 68 74 2d 63 6f 6c 6f 72 3a 20 72 67 62 61 28 35 31 2c 20 31 38 31 2c 20 32 32 39 2c 20 30 2e 34 29 3b 0d 0a 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 69 6c 65 20 7b 0d 0a 09 66 69 6c 74 65 72 3a 20 69 6e 68 65 72 69 74 3b 0d 0a 09 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 Data Ascii: ms-touch-action: none;touch-action: none;}.leaflet-container {-webkit-tap-highlight-color: transparent;}.leaflet-container a {-webkit-tap-highlight-color: rgba(51, 181, 229, 0.4);}.leaflet-tile {filter: inherit;visibility: hidde
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 74 65 72 2d 65 76 65 6e 74 73 3a 20 6e 6f 6e 65 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 6f 70 20 7b 0d 0a 09 74 6f 70 3a 20 30 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 72 69 67 68 74 20 7b 0d 0a 09 72 69 67 68 74 3a 20 30 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 62 6f 74 74 6f 6d 20 7b 0d 0a 09 62 6f 74 74 6f 6d 3a 20 30 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 6c 65 66 74 20 7b 0d 0a 09 6c 65 66 74 3a 20 30 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 20 7b 0d 0a 09 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 0d 0a 09 63 6c 65 61 72 3a 20 62 6f 74 68 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 72 69 67 68 74 20 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 20 7b 0d 0a 09 66 6c 6f 61 74 3a 20 72 69 67 Data Ascii: ter-events: none;}.leaflet-top {top: 0;}.leaflet-right {right: 0;}.leaflet-bottom {bottom: 0;}.leaflet-left {left: 0;}.leaflet-control {float: left;clear: both;}.leaflet-right .leaflet-control {float: rig
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 6e 3a 20 6e 6f 6e 65 3b 0d 0a 09 20 20 20 20 20 20 20 20 74 72 61 6e 73 69 74 69 6f 6e 3a 20 6e 6f 6e 65 3b 0d 0a 09 7d 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 7a 6f 6f 6d 2d 61 6e 69 6d 20 2e 6c 65 61 66 6c 65 74 2d 7a 6f 6f 6d 2d 68 69 64 65 20 7b 0d 0a 09 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 0d 0a 09 7d 0d 0a 0d 0a 0d 0a 2f 2a 20 63 75 72 73 6f 72 73 20 2a 2f 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 69 6e 74 65 72 61 63 74 69 76 65 20 7b 0d 0a 09 63 75 72 73 6f 72 3a 20 70 6f 69 6e 74 65 72 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 67 72 61 62 20 7b 0d 0a 09 63 75 72 73 6f 72 3a 20 2d 77 65 62 6b 69 74 2d 67 72 61 62 3b 0d 0a 09 63 75 72 73 6f 72 3a 20 20 20 20 2d 6d 6f 7a 2d 67 72 61 62 3b 0d 0a 09 63 75 72 73 6f 72 3a 20 20 20 Data Ascii: n: none; transition: none;}.leaflet-zoom-anim .leaflet-zoom-hide {visibility: hidden;}/* cursors */.leaflet-interactive {cursor: pointer;}.leaflet-grab {cursor: -webkit-grab;cursor: -moz-grab;cursor:
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 0d 0a 2f 2a 20 67 65 6e 65 72 61 6c 20 74 79 70 6f 67 72 61 70 68 79 20 2a 2f 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 61 69 6e 65 72 20 7b 0d 0a 09 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 22 48 65 6c 76 65 74 69 63 61 20 4e 65 75 65 22 2c 20 41 72 69 61 6c 2c 20 48 65 6c 76 65 74 69 63 61 2c 20 73 61 6e 73 2d 73 65 72 69 66 3b 0d 0a 09 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 32 70 78 3b 0d 0a 09 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 37 35 72 65 6d 3b 0d 0a 09 6c 69 6e 65 2d 68 65 69 67 68 74 3a 20 31 2e 35 3b 0d 0a 09 7d 0d 0a 0d 0a 0d 0a 2f 2a 20 67 65 6e 65 72 61 6c 20 74 6f 6f 6c 62 61 72 20 73 74 79 6c 65 73 20 2a 2f 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 62 61 72 20 7b 0d 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 31 70 78 20 35 70 78 20 72 67 Data Ascii: /* general typography /.leaflet-container {font-family: "Helvetica Neue", Arial, Helvetica, sans-serif;font-size: 12px;font-size: 0.75rem;line-height: 1.5;}/ general toolbar styles */.leaflet-bar {box-shadow: 0 1px 5px rg
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 09 7d 0d 0a 0d 0a 2f 2a 20 7a 6f 6f 6d 20 63 6f 6e 74 72 6f 6c 20 2a 2f 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 7a 6f 6f 6d 2d 69 6e 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 7a 6f 6f 6d 2d 6f 75 74 20 7b 0d 0a 09 66 6f 6e 74 3a 20 62 6f 6c 64 20 31 38 70 78 20 27 4c 75 63 69 64 61 20 43 6f 6e 73 6f 6c 65 27 2c 20 4d 6f 6e 61 63 6f 2c 20 6d 6f 6e 6f 73 70 61 63 65 3b 0d 0a 09 74 65 78 74 2d 69 6e 64 65 6e 74 3a 20 31 70 78 3b 0d 0a 09 7d 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 6f 75 63 68 20 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 7a 6f 6f 6d 2d 69 6e 2c 20 2e 6c 65 61 66 6c 65 74 2d 74 6f 75 63 68 20 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 7a 6f 6f 6d 2d 6f 75 74 20 20 7b 0d 0a 09 66 6f 6e Data Ascii: }/* zoom control */.leaflet-control-zoom-in,.leaflet-control-zoom-out {font: bold 18px 'Lucida Console', Monaco, monospace;text-indent: 1px;}.leaflet-touch .leaflet-control-zoom-in, .leaflet-touch .leaflet-control-zoom-out {fon
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 0a 09 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 2e 30 38 33 33 33 65 6d 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 6c 61 79 65 72 73 2d 73 65 70 61 72 61 74 6f 72 20 7b 0d 0a 09 68 65 69 67 68 74 3a 20 30 3b 0d 0a 09 62 6f 72 64 65 72 2d 74 6f 70 3a 20 31 70 78 20 73 6f 6c 69 64 20 23 64 64 64 3b 0d 0a 09 6d 61 72 67 69 6e 3a 20 35 70 78 20 2d 31 30 70 78 20 35 70 78 20 2d 36 70 78 3b 0d 0a 09 7d 0d 0a 0d 0a 2f 2a 20 44 65 66 61 75 6c 74 20 69 63 6f 6e 20 55 52 4c 73 20 2a 2f 0d 0a 2e 6c 65 61 66 6c 65 74 2d 64 65 66 61 75 6c 74 2d 69 63 6f 6e 2d 70 61 74 68 20 7b 20 2f 2a 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 70 61 74 68 2d 67 75 65 73 73 69 6e 67 20 68 65 75 72 69 73 74 69 63 2c 20 73 65 65 20 4c 2e 49 63 6f 6e 2e 44 65 66 61 Data Ascii: font-size: 1.08333em;}.leaflet-control-layers-separator {height: 0;border-top: 1px solid #ddd;margin: 5px -10px 5px -6px;}/* Default icon URLs /.leaflet-default-icon-path { / used only in path-guessing heuristic, see L.Icon.Defa
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 63 68 69 6c 64 29 20 7b 0d 0a 09 62 6f 72 64 65 72 2d 74 6f 70 3a 20 32 70 78 20 73 6f 6c 69 64 20 23 37 37 37 3b 0d 0a 09 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 20 6e 6f 6e 65 3b 0d 0a 09 6d 61 72 67 69 6e 2d 74 6f 70 3a 20 2d 32 70 78 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 73 63 61 6c 65 2d 6c 69 6e 65 3a 6e 6f 74 28 3a 66 69 72 73 74 2d 63 68 69 6c 64 29 3a 6e 6f 74 28 3a 6c 61 73 74 2d 63 68 69 6c 64 29 20 7b 0d 0a 09 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 20 32 70 78 20 73 6f 6c 69 64 20 23 37 37 37 3b 0d 0a 09 7d 0d 0a 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 6f 75 63 68 20 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 72 6f 6c 2d 61 74 74 72 69 62 75 74 69 6f 6e 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 74 6f 75 63 68 20 2e 6c Data Ascii: child) {border-top: 2px solid #777;border-bottom: none;margin-top: -2px;}.leaflet-control-scale-line:not(:first-child):not(:last-child) {border-bottom: 2px solid #777;}.leaflet-touch .leaflet-control-attribution,.leaflet-touch .l
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 6f 6e 74 65 6e 74 2d 77 72 61 70 70 65 72 2c 0d 0a 2e 6c 65 61 66 6c 65 74 2d 70 6f 70 75 70 2d 74 69 70 20 7b 0d 0a 09 62 61 63 6b 67 72 6f 75 6e 64 3a 20 77 68 69 74 65 3b 0d 0a 09 63 6f 6c 6f 72 3a 20 23 33 33 33 3b 0d 0a 09 62 6f 78 2d 73 68 61 64 6f 77 3a 20 30 20 33 70 78 20 31 34 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 34 29 3b 0d 0a 09 7d 0d 0a 2e 6c 65 61 66 6c 65 74 2d 63 6f 6e 74 61 69 6e 65 72 20 61 2e 6c 65 61 66 6c 65 74 2d 70 6f 70 75 70 2d 63 6c 6f 73 65 2d 62 75 74 74 6f 6e 20 7b 0d 0a 09 70 6f 73 69 74 69 6f 6e 3a 20 61 62 73 6f 6c 75 74 65 3b 0d 0a 09 74 6f 70 3a 20 30 3b 0d 0a 09 72 69 67 68 74 3a 20 30 3b 0d 0a 09 62 6f 72 64 65 72 3a 20 6e 6f 6e 65 3b 0d 0a 09 74 65 78 74 2d 61 6c 69 67 6e 3a 20 63 65 6e 74 65 72 3b 0d 0a 09 Data Ascii: ontent-wrapper,.leaflet-popup-tip {background: white;color: #333;box-shadow: 0 3px 14px rgba(0,0,0,0.4);}.leaflet-container a.leaflet-popup-close-button {position: absolute;top: 0;right: 0;border: none;text-align: center;

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:07 UTC	527	OUT	GET /leaflet/dist/leaflet.js HTTP/1.1 Host: unpkg.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	537	IN	HTTP/1.1 302 Found Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: text/plain; charset=utf-8 Transfer-Encoding: chunked Connection: close access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /leaflet@1.9.4/dist/leaflet.js vary: Accept via: 1.1 fly.io fly-request-id: 01JH2V25WQEXVACH91VCV6CK1V-lga CF-Cache-Status: HIT Age: 567 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8febed9b6bc88c60-EWR
2025-01-08 11:43:08 UTC	58	IN	Data Raw: 33 34 0d 0a 46 6f 75 6e 64 2e 20 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 2f 6c 65 61 66 6c 65 74 40 31 2e 39 2e 34 2f 64 69 73 74 2f 6c 65 61 66 6c 65 74 2e 6a 73 0d 0a Data Ascii: 34Found. Redirecting to /leaflet@1.9.4/dist/leaflet.js
2025-01-08 11:43:08 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:08 UTC	664	OUT	GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIk6HLAQiFoM0BCOnFzQEIucrNAQiK080BGI/OzQEYwtjNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	612	IN	HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Wed, 08 Jan 2025 11:43:08 GMT Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin-allow-popups Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding Connection: close Transfer-Encoding: chunked
2025-01-08 11:43:08 UTC	778	IN	Data Raw: 38 30 30 30 0d 0a 0a 20 20 20 20 2f 2f 20 67 6f 2f 6d 73 73 2d 73 65 74 75 70 23 37 2d 6c 6f 61 64 2d 74 68 65 2d 6a 73 2d 6f 72 2d 63 73 73 2d 66 72 6f 6d 2d 79 6f 75 72 2d 69 6e 69 74 69 61 6c 2d 70 61 67 65 0a 20 20 20 20 69 66 28 21 77 69 6e 64 6f 77 5b 27 5f 44 75 6d 70 45 78 63 65 70 74 69 6f 6e 27 5d 29 20 7b 0a 20 20 20 20 20 20 63 6f 6e 73 74 20 5f 44 75 6d 70 45 78 63 65 70 74 69 6f 6e 20 3d 20 77 69 6e 64 6f 77 5b 27 5f 44 75 6d 70 45 78 63 65 70 74 69 6f 6e 27 5d 20 7c 7c 20 66 75 6e 63 74 69 6f 6e 28 65 29 20 7b 0a 20 20 20 20 20 20 20 20 74 68 72 6f 77 20 65 3b 0a 20 20 20 20 20 20 7d 3b 0a 20 20 20 20 20 20 77 69 6e 64 6f 77 5b 27 5f 44 75 6d 70 45 78 63 65 70 74 69 6f 6e 27 5d 20 3d 20 5f 44 75 6d 70 45 78 63 65 70 74 69 6f 6e 3b 0a 20 20 Data Ascii: 8000 // go/mss-setup#7-load-the-js-or-css-from-your-initial-page if(!window['_DumpException']) { const _DumpException = window['_DumpException'] \|\| function(e) { throw e; }; window['_DumpException'] = _DumpException;
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 72 65 53 74 61 63 6b 54 72 61 63 65 29 45 72 72 6f 72 2e 63 61 70 74 75 72 65 53 74 61 63 6b 54 72 61 63 65 28 74 68 69 73 2c 5f 2e 61 61 29 3b 65 6c 73 65 7b 76 61 72 20 63 3d 45 72 72 6f 72 28 29 2e 73 74 61 63 6b 3b 63 26 26 28 74 68 69 73 2e 73 74 61 63 6b 3d 63 29 7d 61 26 26 28 74 68 69 73 2e 6d 65 73 73 61 67 65 3d 53 74 72 69 6e 67 28 61 29 29 3b 62 21 3d 3d 76 6f 69 64 20 30 26 26 28 74 68 69 73 2e 63 61 75 73 65 3d 62 29 7d 3b 63 61 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 61 3d 61 2e 73 70 6c 69 74 28 22 25 73 22 29 3b 66 6f 72 28 76 61 72 20 63 3d 22 22 2c 64 3d 61 2e 6c 65 6e 67 74 68 2d 31 2c 65 3d 30 3b 65 3c 64 3b 65 2b 2b 29 63 2b 3d 61 5b 65 5d 2b 28 65 3c 62 2e 6c 65 6e 67 74 68 3f 62 5b 65 5d 3a 22 25 73 22 29 3b 5f 2e 61 61 2e 63 Data Ascii: reStackTrace)Error.captureStackTrace(this,_.aa);else{var c=Error().stack;c&&(this.stack=c)}a&&(this.message=String(a));b!==void 0&&(this.cause=b)};ca=function(a,b){a=a.split("%s");for(var c="",d=a.length-1,e=0;e<d;e++)c+=a[e]+(e<b.length?b[e]:"%s");_.aa.c
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 73 4f 77 6e 50 72 6f 70 65 72 74 79 2e 63 61 6c 6c 28 65 2c 67 29 7c 7c 28 65 5b 67 5d 3d 21 30 2c 62 5b 63 2b 2b 5d 3d 66 29 7d 62 2e 6c 65 6e 67 74 68 3d 63 7d 3b 44 61 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 66 6f 72 28 76 61 72 20 63 20 69 6e 20 61 29 69 66 28 62 2e 63 61 6c 6c 28 76 6f 69 64 20 30 2c 61 5b 63 5d 2c 63 2c 61 29 29 72 65 74 75 72 6e 21 30 3b 72 65 74 75 72 6e 21 31 7d 3b 45 61 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 5b 5d 2c 63 3d 30 2c 64 3b 66 6f 72 28 64 20 69 6e 20 61 29 62 5b 63 2b 2b 5d 3d 61 5b 64 5d 3b 72 65 74 75 72 6e 20 62 7d 3b 5f 2e 46 61 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 5b 5d 2c 63 3d 30 2c 64 3b 66 6f 72 28 64 20 69 6e 20 61 29 62 5b 63 2b 2b 5d 3d 64 3b 72 65 74 75 72 6e 20 Data Ascii: sOwnProperty.call(e,g)\|\|(e[g]=!0,b[c++]=f)}b.length=c};Da=function(a,b){for(var c in a)if(b.call(void 0,a[c],c,a))return!0;return!1};Ea=function(a){var b=[],c=0,d;for(d in a)b[c++]=a[d];return b};_.Fa=function(a){var b=[],c=0,d;for(d in a)b[c++]=d;return
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 72 69 70 74 22 2c 61 2e 6f 77 6e 65 72 44 6f 63 75 6d 65 6e 74 29 29 26 26 61 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 6e 6f 6e 63 65 22 2c 62 29 7d 3b 5f 2e 57 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 61 3d 5f 2e 74 2e 6e 61 76 69 67 61 74 6f 72 3b 72 65 74 75 72 6e 20 61 26 26 28 61 3d 61 2e 75 73 65 72 41 67 65 6e 74 29 3f 61 3a 22 22 7d 3b 0a 5f 2e 76 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 5f 2e 57 61 28 29 2e 69 6e 64 65 78 4f 66 28 61 29 21 3d 2d 31 7d 3b 5f 2e 5a 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 5f 2e 58 61 3f 21 21 5f 2e 59 61 26 26 5f 2e 59 61 2e 62 72 61 6e 64 73 2e 6c 65 6e 67 74 68 3e 30 3a 21 31 7d 3b 5f 2e 24 61 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 5f 2e 5a 61 Data Ascii: ript",a.ownerDocument))&&a.setAttribute("nonce",b)};_.Wa=function(){var a=_.t.navigator;return a&&(a=a.userAgent)?a:""};_.v=function(a){return _.Wa().indexOf(a)!=-1};_.Za=function(){return _.Xa?!!_.Ya&&_.Ya.brands.length>0:!1};_.$a=function(){return _.Za
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 3d 61 5b 62 5d 3b 69 66 28 63 26 26 63 2e 4d 61 74 68 3d 3d 4d 61 74 68 29 72 65 74 75 72 6e 20 63 7d 74 68 72 6f 77 20 45 72 72 6f 72 28 22 61 22 29 3b 7d 3b 5f 2e 72 62 3d 71 62 28 74 68 69 73 29 3b 0a 77 3d 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 69 66 28 62 29 61 3a 7b 76 61 72 20 63 3d 5f 2e 72 62 3b 61 3d 61 2e 73 70 6c 69 74 28 22 2e 22 29 3b 66 6f 72 28 76 61 72 20 64 3d 30 3b 64 3c 61 2e 6c 65 6e 67 74 68 2d 31 3b 64 2b 2b 29 7b 76 61 72 20 65 3d 61 5b 64 5d 3b 69 66 28 21 28 65 20 69 6e 20 63 29 29 62 72 65 61 6b 20 61 3b 63 3d 63 5b 65 5d 7d 61 3d 61 5b 61 2e 6c 65 6e 67 74 68 2d 31 5d 3b 64 3d 63 5b 61 5d 3b 62 3d 62 28 64 29 3b 62 21 3d 64 26 26 62 21 3d 6e 75 6c 6c 26 26 70 62 28 63 2c 61 2c 7b 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 Data Ascii: =a[b];if(c&&c.Math==Math)return c}throw Error("a");};_.rb=qb(this);w=function(a,b){if(b)a:{var c=_.rb;a=a.split(".");for(var d=0;d<a.length-1;d++){var e=a[d];if(!(e in c))break a;c=c[e]}a=a[a.length-1];d=c[a];b=b(d);b!=d&&b!=null&&pb(c,a,{configurable:!0
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 72 75 63 74 3b 76 61 72 20 62 3d 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 63 2c 64 2c 65 29 7b 63 3d 62 28 63 2c 64 29 3b 65 26 26 52 65 66 6c 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 63 2c 65 2e 70 72 6f 74 6f 74 79 70 65 29 3b 72 65 74 75 72 6e 20 63 7d 7d 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 63 2c 64 2c 65 29 7b 65 3d 3d 3d 76 6f 69 64 20 30 26 26 28 65 3d 63 29 3b 65 3d 74 62 28 65 2e 70 72 6f 74 6f 74 79 70 65 7c 7c 4f 62 6a 65 63 74 2e 70 72 6f 74 6f 74 79 70 65 29 3b 72 65 74 75 72 6e 20 46 75 6e 63 74 69 6f 6e 2e 70 72 6f 74 6f 74 79 70 65 2e 61 70 70 6c 79 2e 63 61 6c 6c 28 63 2c 65 2c 64 29 7c 7c 65 7d 7d 28 29 3b 0a 69 66 28 74 79 70 65 6f 66 20 4f 62 6a 65 Data Ascii: ruct;var b=Reflect.construct;return function(c,d,e){c=b(c,d);e&&Reflect.setPrototypeOf(c,e.prototype);return c}}return function(c,d,e){e===void 0&&(e=c);e=tb(e.prototype\|\|Object.prototype);return Function.prototype.apply.call(c,e,d)\|\|e}}();if(typeof Obje
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 64 2c 65 29 26 26 28 61 5b 65 5d 3d 64 5b 65 5d 29 7d 72 65 74 75 72 6e 20 61 7d 3b 0a 77 28 22 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 7c 7c 44 62 7d 29 3b 5f 2e 65 62 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 61 3d 4e 75 6d 62 65 72 28 74 68 69 73 29 2c 62 3d 5b 5d 2c 63 3d 61 3b 63 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 63 2b 2b 29 62 5b 63 2d 61 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 63 5d 3b 72 65 74 75 72 6e 20 62 7d 3b 77 28 22 52 65 66 6c 65 63 74 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 7b 7d 7d 29 3b 77 28 22 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 22 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 Data Ascii: d,e)&&(a[e]=d[e])}return a};w("Object.assign",function(a){return a\|\|Db});_.eb=function(){for(var a=Number(this),b=[],c=a;c<arguments.length;c++)b[c-a]=arguments[c];return b};w("Reflect",function(a){return a?a:{}});w("Reflect.construct",function(){return
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 79 70 65 2e 47 3d 0a 66 75 6e 63 74 69 6f 6e 28 67 29 7b 76 61 72 20 68 3d 76 6f 69 64 20 30 3b 74 72 79 7b 68 3d 67 2e 74 68 65 6e 7d 63 61 74 63 68 28 6c 29 7b 74 68 69 73 2e 6f 28 6c 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 68 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 6f 61 28 68 2c 67 29 3a 74 68 69 73 2e 73 28 67 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 6f 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 74 68 69 73 2e 42 28 32 2c 67 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 73 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 74 68 69 73 2e 42 28 31 2c 67 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 42 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 68 29 7b 69 66 28 74 68 69 73 2e 67 21 3d 30 29 74 68 72 6f 77 20 45 72 72 6f 72 28 22 69 60 22 2b 67 2b 22 Data Ascii: ype.G=function(g){var h=void 0;try{h=g.then}catch(l){this.o(l);return}typeof h=="function"?this.oa(h,g):this.s(g)};e.prototype.o=function(g){this.B(2,g)};e.prototype.s=function(g){this.B(1,g)};e.prototype.B=function(g,h){if(this.g!=0)throw Error("i`"+g+"
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 74 79 70 65 2e 4c 64 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 68 29 7b 66 75 6e 63 74 69 6f 6e 20 6c 28 29 7b 73 77 69 74 63 68 28 6d 2e 67 29 7b 63 61 73 65 20 31 3a 67 28 6d 2e 6a 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 68 28 6d 2e 6a 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 6a 60 22 2b 6d 2e 67 29 3b 7d 7d 76 61 72 20 6d 3d 74 68 69 73 3b 74 68 69 73 2e 68 3d 3d 0a 6e 75 6c 6c 3f 66 2e 68 28 6c 29 3a 74 68 69 73 2e 68 2e 70 75 73 68 28 6c 29 3b 74 68 69 73 2e 41 3d 21 30 7d 3b 65 2e 72 65 73 6f 6c 76 65 3d 63 3b 65 2e 72 65 6a 65 63 74 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 6e 65 77 20 65 28 66 75 6e 63 74 69 6f 6e 28 68 2c 6c 29 7b 6c 28 67 29 7d 29 7d 3b 65 2e 72 61 63 65 3d 66 75 6e Data Ascii: type.Ld=function(g,h){function l(){switch(m.g){case 1:g(m.j);break;case 2:h(m.j);break;default:throw Error("j`"+m.g);}}var m=this;this.h==null?f.h(l):this.h.push(l);this.A=!0};e.resolve=c;e.reject=function(g){return new e(function(h,l){l(g)})};e.race=fun
2025-01-08 11:43:08 UTC	1390	IN	Data Raw: 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6d 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6e 3d 6e 65 77 20 61 28 5b 5b 6c 2c 32 5d 2c 5b 6d 2c 33 5d 5d 29 3b 69 66 28 6e 2e 67 65 74 28 6c 29 21 3d 32 7c 7c 6e 2e 67 65 74 28 6d 29 21 3d 33 29 72 65 74 75 72 6e 21 31 3b 6e 2e 64 65 6c 65 74 65 28 6c 29 3b 6e 2e 73 65 74 28 6d 2c 34 29 3b 72 65 74 75 72 6e 21 6e 2e 68 61 73 28 6c 29 26 26 6e 2e 67 65 74 28 6d 29 3d 3d 34 7d 63 61 74 63 68 28 70 29 7b 72 65 74 75 72 6e 21 31 7d 7d 28 29 29 72 65 74 75 72 6e 20 61 3b 0a 76 61 72 20 66 3d 22 24 6a 73 63 6f 6d 70 5f 68 69 64 64 65 6e 5f 22 2b 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 3b 65 28 22 66 72 65 65 7a 65 22 29 3b 65 28 22 70 Data Ascii: eal)return!1;try{var l=Object.seal({}),m=Object.seal({}),n=new a([[l,2],[m,3]]);if(n.get(l)!=2\|\|n.get(m)!=3)return!1;n.delete(l);n.set(m,4);return!n.has(l)&&n.get(m)==4}catch(p){return!1}}())return a;var f="$jscomp_hidden_"+Math.random();e("freeze");e("p

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:08 UTC	604	OUT	GET /color/2x/great-britain-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	643	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: image/png Content-Length: 2826 Connection: close access-control-allow-origin: * icon-id: t3NE3BsOAQwq icon-size: 96 icon-format: png last-modified: Sun, 05 Jan 2025 10:49:01 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EgwBw7WqEQH3UL4CAAwB1GY4EQG3CAIAAA X-77-NZT-Ray: 4c1562246330ae19cc647e67efad9615 X-77-Cache: HIT X-77-Age: 179792 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:08 UTC	2826	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 0a bc 49 44 41 54 78 9c ed 9d 69 70 13 e7 19 c7 35 21 d0 4e bf b4 9d 76 5a 7a 77 3a fd c4 c7 58 6b 4b b2 bd 2b 63 d2 38 e1 f0 ae a8 1a b7 a1 c3 40 49 71 43 8f 34 9d cc 30 43 02 6d 87 0c 47 0f 92 36 17 9d b4 65 26 3d 52 07 30 c7 ae 6c 30 f8 c2 e1 30 36 36 60 30 06 bb 32 f6 ae e5 03 1f b2 25 d9 d2 ee fa e9 bc f6 8a a8 92 ac 63 b5 d2 ae c4 fe 67 de 19 5b b6 f6 7d 9f e7 f7 de d7 1a 0c ba 74 e9 d2 a5 4b 97 2e 5d ba 74 e9 d2 a5 21 01 c0 72 00 78 02 00 b6 b3 26 ec 75 d6 64 ac e6 4c d8 35 d6 84 dd e7 4c c6 09 d6 64 e4 51 58 fc 19 7d 86 fe 66 ac 46 ff 8b be 23 7d 77 b9 da 76 64 8d ec f6 aa 65 c5 36 Data Ascii: PNGIHDR``w8pHYsIDATxip5!NvZzw:XkK+c8@IqC40CmG6e&=R0l0066`02%cg[}tK.]t!rx&udL5LdQX}fF#}wvde6

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:08 UTC	597	OUT	GET /color/2x/spain2-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	643	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: image/png Content-Length: 2903 Connection: close access-control-allow-origin: * icon-id: ly7tzANRt33n icon-size: 96 icon-format: png last-modified: Sat, 04 Jan 2025 04:24:48 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EgwBw7WqEQH3dSUEAAwBisclxAG3sgUAAA X-77-NZT-Ray: 4c1562241b30f41ecc647e6748a0cf1b X-77-Cache: HIT X-77-Age: 271733 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:08 UTC	2903	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 0b 09 49 44 41 54 78 9c ed 5d 09 70 14 55 1a fe c9 9a e9 c9 39 61 72 01 12 04 65 57 4c 77 c0 35 ca a2 40 40 01 21 ac 49 40 4c 96 02 14 91 5b 42 44 11 56 02 0b a6 70 31 a8 20 24 10 62 c8 41 8e 49 32 93 8b 04 92 4c 2e 33 13 30 82 c4 03 0d 11 42 77 50 5c 57 c4 63 95 3d 6a b7 2c f9 b6 ba 41 31 96 e8 98 74 d2 73 f4 57 f5 55 75 cf 4c ff af df f7 f5 3b ba df f4 7b 44 2a 54 a8 50 a1 42 85 0a 15 2a 54 a8 50 61 47 10 38 0a 3e 1b 4a 33 78 96 d6 09 2c 65 f3 2c d5 0b 1c 9d 12 38 fa 8c 67 e9 4b 81 23 88 bc ba fd 99 c0 51 bb f4 1b 96 b2 bb 58 7a 5a 3a 76 34 05 29 9d 0f 87 c1 f9 71 e4 21 b0 14 25 b0 f4 0a Data Ascii: PNGIHDR``w8pHYsIDATx]pU9areWLw5@@!I@L[BDVp1 $bAI2L.30BwP\Wc=j,A1tsWUuL;{DTPBTPaG8>J3x,e,8gK#QXzZ:v4)q!%

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:08 UTC	533	OUT	GET /leaflet@1.9.4/dist/leaflet.js HTTP/1.1 Host: unpkg.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:08 UTC	577	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:08 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"24060-WmQP+GPnkCqMrCzmujfIezBnd2E" via: 1.1 fly.io fly-request-id: 01JG3TNCCGA8WP5RJTGM2HWE0C-lga CF-Cache-Status: HIT Age: 1041174 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8febed9f3fbc4276-EWR
2025-01-08 11:43:08 UTC	792	IN	Data Raw: 37 64 36 30 0d 0a 2f 2a 20 40 70 72 65 73 65 72 76 65 0a 20 2a 20 4c 65 61 66 6c 65 74 20 31 2e 39 2e 34 2c 20 61 20 4a 53 20 6c 69 62 72 61 72 79 20 66 6f 72 20 69 6e 74 65 72 61 63 74 69 76 65 20 6d 61 70 73 2e 20 68 74 74 70 73 3a 2f 2f 6c 65 61 66 6c 65 74 6a 73 2e 63 6f 6d 0a 20 2a 20 28 63 29 20 32 30 31 30 2d 32 30 32 33 20 56 6c 61 64 69 6d 69 72 20 41 67 61 66 6f 6e 6b 69 6e 2c 20 28 63 29 20 32 30 31 30 2d 32 30 31 31 20 43 6c 6f 75 64 4d 61 64 65 0a 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 65 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f Data Ascii: 7d60/* @preserve * Leaflet 1.9.4, a JS library for interactive maps. https://leafletjs.com * (c) 2010-2023 Vladimir Agafonkin, (c) 2010-2011 CloudMade */!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports):"function"==typeo
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 65 74 75 72 6e 22 5f 6c 65 61 66 6c 65 74 5f 69 64 22 69 6e 20 74 7c 7c 28 74 2e 5f 6c 65 61 66 6c 65 74 5f 69 64 3d 2b 2b 44 29 2c 74 2e 5f 6c 65 61 66 6c 65 74 5f 69 64 7d 66 75 6e 63 74 69 6f 6e 20 6a 28 74 2c 65 2c 69 29 7b 76 61 72 20 6e 2c 6f 2c 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 6e 3d 21 31 2c 6f 26 26 28 72 2e 61 70 70 6c 79 28 69 2c 6f 29 2c 6f 3d 21 31 29 7d 2c 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 6e 3f 6f 3d 61 72 67 75 6d 65 6e 74 73 3a 28 74 2e 61 70 70 6c 79 28 69 2c 61 72 67 75 6d 65 6e 74 73 29 2c 73 65 74 54 69 6d 65 6f 75 74 28 73 2c 65 29 2c 6e 3d 21 30 29 7d 3b 72 65 74 75 72 6e 20 72 7d 66 75 6e 63 74 69 6f 6e 20 48 28 74 2c 65 2c 69 29 7b 76 61 72 20 6e 3d 65 5b 31 5d 2c 65 3d 65 5b 30 5d 2c 6f 3d 6e 2d 65 3b 72 65 74 75 72 6e Data Ascii: eturn"_leaflet_id"in t\|\|(t._leaflet_id=++D),t._leaflet_id}function j(t,e,i){var n,o,s=function(){n=!1,o&&(r.apply(i,o),o=!1)},r=function(){n?o=arguments:(t.apply(i,arguments),setTimeout(s,e),n=!0)};return r}function H(t,e,i){var n=e[1],e=e[0],o=n-e;return
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 72 65 74 75 72 6e 20 58 3d 65 2b 69 2c 77 69 6e 64 6f 77 2e 73 65 74 54 69 6d 65 6f 75 74 28 74 2c 69 29 7d 76 61 72 20 24 3d 77 69 6e 64 6f 77 2e 72 65 71 75 65 73 74 41 6e 69 6d 61 74 69 6f 6e 46 72 61 6d 65 7c 7c 59 28 22 52 65 71 75 65 73 74 41 6e 69 6d 61 74 69 6f 6e 46 72 61 6d 65 22 29 7c 7c 4a 2c 51 3d 77 69 6e 64 6f 77 2e 63 61 6e 63 65 6c 41 6e 69 6d 61 74 69 6f 6e 46 72 61 6d 65 7c 7c 59 28 22 43 61 6e 63 65 6c 41 6e 69 6d 61 74 69 6f 6e 46 72 61 6d 65 22 29 7c 7c 59 28 22 43 61 6e 63 65 6c 52 65 71 75 65 73 74 41 6e 69 6d 61 74 69 6f 6e 46 72 61 6d 65 22 29 7c 7c 66 75 6e 63 74 69 6f 6e 28 74 29 7b 77 69 6e 64 6f 77 2e 63 6c 65 61 72 54 69 6d 65 6f 75 74 28 74 29 7d 3b 66 75 6e 63 74 69 6f 6e 20 78 28 74 2c 65 2c 69 29 7b 69 66 28 21 69 7c 7c Data Ascii: return X=e+i,window.setTimeout(t,i)}var $=window.requestAnimationFrame\|\|Y("RequestAnimationFrame")\|\|J,Q=window.cancelAnimationFrame\|\|Y("CancelAnimationFrame")\|\|Y("CancelRequestAnimationFrame")\|\|function(t){window.clearTimeout(t)};function x(t,e,i){if(!i\|\|
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 2e 6f 70 74 69 6f 6e 73 29 3a 7b 7d 2c 6c 28 6f 2e 6f 70 74 69 6f 6e 73 2c 74 2e 6f 70 74 69 6f 6e 73 29 29 2c 6f 2e 5f 69 6e 69 74 48 6f 6f 6b 73 3d 5b 5d 2c 6f 2e 63 61 6c 6c 49 6e 69 74 48 6f 6f 6b 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 74 68 69 73 2e 5f 69 6e 69 74 48 6f 6f 6b 73 43 61 6c 6c 65 64 29 7b 6e 2e 63 61 6c 6c 49 6e 69 74 48 6f 6f 6b 73 26 26 6e 2e 63 61 6c 6c 49 6e 69 74 48 6f 6f 6b 73 2e 63 61 6c 6c 28 74 68 69 73 29 2c 74 68 69 73 2e 5f 69 6e 69 74 48 6f 6f 6b 73 43 61 6c 6c 65 64 3d 21 30 3b 66 6f 72 28 76 61 72 20 74 3d 30 2c 65 3d 6f 2e 5f 69 6e 69 74 48 6f 6f 6b 73 2e 6c 65 6e 67 74 68 3b 74 3c 65 3b 74 2b 2b 29 6f 2e 5f 69 6e 69 74 48 6f 6f 6b 73 5b 74 5d 2e 63 61 6c 6c 28 74 68 69 73 29 7d 7d 2c 65 7d 2c 65 74 2e 69 6e Data Ascii: .options):{},l(o.options,t.options)),o._initHooks=[],o.callInitHooks=function(){if(!this._initHooksCalled){n.callInitHooks&&n.callInitHooks.call(this),this._initHooksCalled=!0;for(var t=0,e=o._initHooks.length;t<e;t++)o._initHooks[t].call(this)}},e},et.in
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 74 69 6f 6e 28 74 2c 65 2c 69 29 7b 76 61 72 20 6e 2c 6f 2c 73 3b 69 66 28 74 68 69 73 2e 5f 65 76 65 6e 74 73 26 26 28 6e 3d 74 68 69 73 2e 5f 65 76 65 6e 74 73 5b 74 5d 29 29 69 66 28 31 3d 3d 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 29 7b 69 66 28 74 68 69 73 2e 5f 66 69 72 69 6e 67 43 6f 75 6e 74 29 66 6f 72 28 6f 3d 30 2c 73 3d 6e 2e 6c 65 6e 67 74 68 3b 6f 3c 73 3b 6f 2b 2b 29 6e 5b 6f 5d 2e 66 6e 3d 75 3b 64 65 6c 65 74 65 20 74 68 69 73 2e 5f 65 76 65 6e 74 73 5b 74 5d 7d 65 6c 73 65 22 66 75 6e 63 74 69 6f 6e 22 21 3d 74 79 70 65 6f 66 20 65 3f 63 6f 6e 73 6f 6c 65 2e 77 61 72 6e 28 22 77 72 6f 6e 67 20 6c 69 73 74 65 6e 65 72 20 74 79 70 65 3a 20 22 2b 74 79 70 65 6f 66 20 65 29 3a 21 31 21 3d 3d 28 65 3d 74 68 69 73 2e 5f 6c 69 73 74 Data Ascii: tion(t,e,i){var n,o,s;if(this._events&&(n=this._events[t]))if(1===arguments.length){if(this._firingCount)for(o=0,s=n.length;o<s;o++)n[o].fn=u;delete this._events[t]}else"function"!=typeof e?console.warn("wrong listener type: "+typeof e):!1!==(e=this._list
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 30 29 3b 72 65 74 75 72 6e 20 74 68 69 73 7d 2c 61 64 64 45 76 65 6e 74 50 61 72 65 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 5f 65 76 65 6e 74 50 61 72 65 6e 74 73 3d 74 68 69 73 2e 5f 65 76 65 6e 74 50 61 72 65 6e 74 73 7c 7c 7b 7d 2c 74 68 69 73 2e 5f 65 76 65 6e 74 50 61 72 65 6e 74 73 5b 68 28 74 29 5d 3d 74 2c 74 68 69 73 7d 2c 72 65 6d 6f 76 65 45 76 65 6e 74 50 61 72 65 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 5f 65 76 65 6e 74 50 61 72 65 6e 74 73 26 26 64 65 6c 65 74 65 20 74 68 69 73 2e 5f 65 76 65 6e 74 50 61 72 65 6e 74 73 5b 68 28 74 29 5d 2c 74 68 69 73 7d 2c 5f 70 72 6f 70 61 67 61 74 65 45 76 65 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 66 6f 72 28 76 61 72 Data Ascii: 0);return this},addEventParent:function(t){return this._eventParents=this._eventParents\|\|{},this._eventParents[h(t)]=t,this},removeEventParent:function(t){return this._eventParents&&delete this._eventParents[h(t)],this},_propagateEvent:function(t){for(var
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 29 3a 6e 75 6c 6c 3a 6e 75 6c 6c 3d 3d 74 3f 74 3a 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 74 26 26 22 6c 61 74 22 69 6e 20 74 3f 6e 65 77 20 76 28 74 2e 6c 61 74 2c 22 6c 6e 67 22 69 6e 20 74 3f 74 2e 6c 6e 67 3a 74 2e 6c 6f 6e 2c 74 2e 61 6c 74 29 3a 76 6f 69 64 20 30 3d 3d 3d 65 3f 6e 75 6c 6c 3a 6e 65 77 20 76 28 74 2c 65 2c 69 29 7d 70 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 63 6c 6f 6e 65 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 6e 65 77 20 70 28 74 68 69 73 2e 78 2c 74 68 69 73 2e 79 29 7d 2c 61 64 64 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 63 6c 6f 6e 65 28 29 2e 5f 61 64 64 28 6d 28 74 29 29 7d 2c 5f 61 64 64 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 78 2b Data Ascii: ):null:null==t?t:"object"==typeof t&&"lat"in t?new v(t.lat,"lng"in t?t.lng:t.lon,t.alt):void 0===e?null:new v(t,e,i)}p.prototype={clone:function(){return new p(this.x,this.y)},add:function(t){return this.clone()._add(m(t))},_add:function(t){return this.x+
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 74 2e 79 3d 3d 3d 74 68 69 73 2e 79 7d 2c 63 6f 6e 74 61 69 6e 73 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 3d 6d 28 74 29 2c 4d 61 74 68 2e 61 62 73 28 74 2e 78 29 3c 3d 4d 61 74 68 2e 61 62 73 28 74 68 69 73 2e 78 29 26 26 4d 61 74 68 2e 61 62 73 28 74 2e 79 29 3c 3d 4d 61 74 68 2e 61 62 73 28 74 68 69 73 2e 79 29 7d 2c 74 6f 53 74 72 69 6e 67 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 22 50 6f 69 6e 74 28 22 2b 69 28 74 68 69 73 2e 78 29 2b 22 2c 20 22 2b 69 28 74 68 69 73 2e 79 29 2b 22 29 22 7d 7d 2c 66 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 65 78 74 65 6e 64 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 2c 69 3b 69 66 28 74 29 7b 69 66 28 74 20 69 6e 73 74 61 6e 63 65 6f 66 20 70 7c 7c 22 6e 75 6d 62 65 72 22 3d Data Ascii: t.y===this.y},contains:function(t){return t=m(t),Math.abs(t.x)<=Math.abs(this.x)&&Math.abs(t.y)<=Math.abs(this.y)},toString:function(){return"Point("+i(this.x)+", "+i(this.y)+")"}},f.prototype={extend:function(t){var e,i;if(t){if(t instanceof p\|\|"number"=
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 74 68 69 73 2e 6d 61 78 29 7d 2c 70 61 64 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 2e 6d 69 6e 2c 69 3d 74 68 69 73 2e 6d 61 78 2c 6e 3d 4d 61 74 68 2e 61 62 73 28 65 2e 78 2d 69 2e 78 29 2a 74 2c 74 3d 4d 61 74 68 2e 61 62 73 28 65 2e 79 2d 69 2e 79 29 2a 74 3b 72 65 74 75 72 6e 20 5f 28 6d 28 65 2e 78 2d 6e 2c 65 2e 79 2d 74 29 2c 6d 28 69 2e 78 2b 6e 2c 69 2e 79 2b 74 29 29 7d 2c 65 71 75 61 6c 73 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 21 21 74 26 26 28 74 3d 5f 28 74 29 2c 74 68 69 73 2e 6d 69 6e 2e 65 71 75 61 6c 73 28 74 2e 67 65 74 54 6f 70 4c 65 66 74 28 29 29 26 26 74 68 69 73 2e 6d 61 78 2e 65 71 75 61 6c 73 28 74 2e 67 65 74 42 6f 74 74 6f 6d 52 69 67 68 74 28 29 29 29 7d 7d 2c 73 2e 70 72 6f 74 6f Data Ascii: this.max)},pad:function(t){var e=this.min,i=this.max,n=Math.abs(e.x-i.x)t,t=Math.abs(e.y-i.y)t;return _(m(e.x-n,e.y-t),m(i.x+n,i.y+t))},equals:function(t){return!!t&&(t=_(t),this.min.equals(t.getTopLeft())&&this.max.equals(t.getBottomRight()))}},s.proto
2025-01-08 11:43:08 UTC	1369	IN	Data Raw: 73 2e 5f 6e 6f 72 74 68 45 61 73 74 2e 6c 61 74 7d 2c 63 6f 6e 74 61 69 6e 73 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 74 3d 28 22 6e 75 6d 62 65 72 22 3d 3d 74 79 70 65 6f 66 20 74 5b 30 5d 7c 7c 74 20 69 6e 73 74 61 6e 63 65 6f 66 20 76 7c 7c 22 6c 61 74 22 69 6e 20 74 3f 77 3a 67 29 28 74 29 3b 76 61 72 20 65 2c 69 2c 6e 3d 74 68 69 73 2e 5f 73 6f 75 74 68 57 65 73 74 2c 6f 3d 74 68 69 73 2e 5f 6e 6f 72 74 68 45 61 73 74 3b 72 65 74 75 72 6e 20 74 20 69 6e 73 74 61 6e 63 65 6f 66 20 73 3f 28 65 3d 74 2e 67 65 74 53 6f 75 74 68 57 65 73 74 28 29 2c 69 3d 74 2e 67 65 74 4e 6f 72 74 68 45 61 73 74 28 29 29 3a 65 3d 69 3d 74 2c 65 2e 6c 61 74 3e 3d 6e 2e 6c 61 74 26 26 69 2e 6c 61 74 3c 3d 6f 2e 6c 61 74 26 26 65 2e 6c 6e 67 3e 3d 6e 2e 6c 6e 67 26 26 69 2e Data Ascii: s._northEast.lat},contains:function(t){t=("number"==typeof t[0]\|\|t instanceof v\|\|"lat"in t?w:g)(t);var e,i,n=this._southWest,o=this._northEast;return t instanceof s?(e=t.getSouthWest(),i=t.getNorthEast()):e=i=t,e.lat>=n.lat&&i.lat<=o.lat&&e.lng>=n.lng&&i.

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:09 UTC	598	OUT	GET /color/2x/germany-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:09 UTC	642	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:09 GMT Content-Type: image/png Content-Length: 1494 Connection: close access-control-allow-origin: * icon-id: hTMPE6ntTofO icon-size: 96 icon-format: png last-modified: Mon, 30 Dec 2024 09:52:47 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EgwBw7WqEQH3kfIAAAwBJRPCLgG3IAQAAA X-77-NZT-Ray: 4c156224e052c948cd647e67bc71cc11 X-77-Cache: HIT X-77-Age: 62097 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:09 UTC	1494	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 05 88 49 44 41 54 78 9c ed 9c dd 6f 15 45 18 c6 df b4 b2 d3 82 11 d4 44 10 3f f0 7f e0 46 d3 5d 0a ed 4e 29 a1 c4 f8 71 62 77 1a 68 ec 4c 4f 63 22 10 4d d4 cb de 72 a1 92 46 63 a8 7f 80 31 18 af f8 08 46 c8 99 6d 94 10 83 1a d3 02 5a 90 8f 0b 43 2b 52 13 2e 48 00 ed 6b 66 0b 06 8c a5 9c d3 d9 33 b3 3d ef 93 3c 49 73 7a ce b6 f3 fc 66 66 df 7d f7 9c 03 40 22 91 48 24 12 89 44 22 91 48 1e a9 73 fb f6 c7 bb 7a 25 8f 85 7a 8f 27 f2 53 2e e4 11 2e d4 69 2e d4 54 2c e4 4c 9c c8 bf 33 0b 39 63 1e 9b fb 9d 3c 62 9e 6b 5e 63 5e db 55 92 8f b9 1e 47 61 d4 53 2e 2f ef 12 aa 27 4e e4 c7 5c c8 49 2e 14 Data Ascii: PNGIHDR``w8pHYsIDATxoED?F]N)qbwhLOc"MrFc1FmZC+R.Hkf3=<Iszff}@"H$D"Hsz%z'S..i.T,L39c<bk^c^UGaS./'N\I.

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:09 UTC	597	OUT	GET /color/2x/france-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:09 UTC	643	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:09 GMT Content-Type: image/png Content-Length: 1468 Connection: close access-control-allow-origin: * icon-id: 3muzEmi4dpD5 icon-size: 96 icon-format: png last-modified: Sat, 04 Jan 2025 22:28:18 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EgwBw7WqEQH3AEAEAAwB1GY4EQG3wAAAAA X-77-NZT-Ray: 4c156224f53bf54ecd647e67d6573619 X-77-Cache: HIT X-77-Age: 278528 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:09 UTC	1468	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 05 6e 49 44 41 54 78 9c ed 9d db 6f 14 55 1c c7 7f 35 72 11 7c 11 f0 12 14 d0 10 5f 78 ed 4b 69 67 cf 8f d2 16 30 01 f7 9c d5 d5 f8 22 6f 06 09 01 45 e3 df a0 f1 09 45 0d 44 4d 24 f1 c5 07 82 e5 9c e5 e2 a5 a2 3e 8a 60 62 4b 41 b1 29 37 2f 33 9d 39 53 5f bc 44 8f 39 bb 54 09 5a db 9d 99 dd b9 ec ef 93 fc 5e da dd 99 cc f7 b3 e7 cc cc ce ec 6f 00 08 82 20 08 82 20 08 82 20 32 c4 f4 f4 f4 0a 37 08 36 ba be de e9 05 e1 7e cf 0f 3f 74 83 f0 ac e7 87 17 5d 3f 9c 72 7d fd 6b a3 c2 a9 fa df 82 f0 ac eb 87 1f d8 d7 da f7 d8 f7 da 65 a4 bd 1d b9 e1 d2 25 73 db 94 d6 9b 3d 5f bf ec f9 e1 19 d7 d7 7f Data Ascii: PNGIHDR``w8pHYsnIDATxoU5r\|_xKig0"oEEDM$>`bKA)7/39S_D9TZ^o 276~?t]?r}ke%s=_

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	367	OUT	GET /color/2x/germany-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	658	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/png Content-Length: 1494 Connection: close access-control-allow-origin: * icon-id: hTMPE6ntTofO icon-size: 96 icon-format: png last-modified: Mon, 30 Dec 2024 09:52:47 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EwwBz9PTGQH3Ou8AAAwBuUwKCQH3jQEAAAwBJRPCLgG3wAIAAA X-77-NZT-Ray: 43862e248983f475ce647e6764ffb50e X-77-Cache: HIT X-77-Age: 61242 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:10 UTC	1494	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 05 88 49 44 41 54 78 9c ed 9c dd 6f 15 45 18 c6 df b4 b2 d3 82 11 d4 44 10 3f f0 7f e0 46 d3 5d 0a ed 4e 29 a1 c4 f8 71 62 77 1a 68 ec 4c 4f 63 22 10 4d d4 cb de 72 a1 92 46 63 a8 7f 80 31 18 af f8 08 46 c8 99 6d 94 10 83 1a d3 02 5a 90 8f 0b 43 2b 52 13 2e 48 00 ed 6b 66 0b 06 8c a5 9c d3 d9 33 b3 3d ef 93 3c 49 73 7a ce b6 f3 fc 66 66 df 7d f7 9c 03 40 22 91 48 24 12 89 44 22 91 48 1e a9 73 fb f6 c7 bb 7a 25 8f 85 7a 8f 27 f2 53 2e e4 11 2e d4 69 2e d4 54 2c e4 4c 9c c8 bf 33 0b 39 63 1e 9b fb 9d 3c 62 9e 6b 5e 63 5e db 55 92 8f b9 1e 47 61 d4 53 2e 2f ef 12 aa 27 4e e4 c7 5c c8 49 2e 14 Data Ascii: PNGIHDR``w8pHYsIDATxoED?F]N)qbwhLOc"MrFc1FmZC+R.Hkf3=<Iszff}@"H$D"Hsz%z'S..i.T,L39c<bk^c^UGaS./'N\I.

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	596	OUT	GET /color/2x/italy-circular.png HTTP/1.1 Host: img.icons8.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	643	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/png Content-Length: 1471 Connection: close access-control-allow-origin: * icon-id: PW8KZnP7qXzO icon-size: 96 icon-format: png last-modified: Wed, 25 Dec 2024 18:26:01 version: 0.0.29 from-mongo-cache: true from-redis-cache: false not-found-platform: false cache-control: public, max-age=302400 Strict-Transport-Security: max-age=15724800; includeSubDomains X-77-NZT: EgwBw7WqEQH3QWwDAAwBnJIhHwG3ZgAAAA X-77-NZT-Ray: 4c156224063a538bce647e67a03f7625 X-77-Cache: HIT X-77-Age: 224321 Server: CDN77-Turbo X-77-POP: frankfurtDE Accept-Ranges: bytes
2025-01-08 11:43:10 UTC	1471	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 60 00 00 00 60 08 06 00 00 00 e2 98 77 38 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 05 71 49 44 41 54 78 9c ed 9d 4b 6c dc 44 18 c7 ff 41 f4 41 cb 85 b4 3c 54 68 0b aa b8 f4 c0 25 34 33 9b 38 8d fa 2e 87 aa 50 08 08 09 c1 a1 68 3d 49 5f 50 10 d7 5e 41 9c 02 01 94 b6 99 69 23 71 e1 80 10 12 54 94 87 28 70 2d 2d 12 09 6d a1 44 e9 8b 87 1d 7b 1c 2e 3c 04 83 bc 9b a0 2a 10 92 b5 bd eb c7 7e 3f e9 bb 24 bb 5e ed ff b7 33 1e af bd 9f 01 82 20 08 82 20 08 82 20 88 0c 31 39 39 b9 dc f1 fd 8d 8e a7 fb 5c 3f 18 70 bd e0 23 c7 0f ce ba 5e 70 d1 f1 82 09 c7 d3 bf 55 2b 98 a8 fc cd 0f ce 3a 5e f0 61 f8 d8 f0 39 e1 73 c3 6d a4 fd 3e 72 c3 a5 4b e6 a6 09 ad b7 b9 9e 7e d9 f5 82 33 8e a7 Data Ascii: PNGIHDR``w8pHYsqIDATxKlDAA<Th%438.Ph=I_P^Ai#qT(p--mD{.<*~?$^3 199\?p#^pU+:^a9sm>rK~3

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	683	OUT	GET /icons/location-dot.svg HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:10 UTC	950	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/svg+xml Content-Length: 248 Connection: close Cache-Control: public, max-age=604800 expires: Thu, 12 Dec 2024 18:28:58 GMT etag: "f8-66b23fb9-8260f;;;" last-modified: Tue, 06 Aug 2024 15:22:33 GMT x-turbo-charged-by: LiteSpeed Age: 91021 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YyIaOsbFVYOcX5Ko%2FGfvAY%2BwiqW%2FfpYICQb7fCuj8xmuC05CvyqCbQ%2ByA7rGAHGRotm23N62iNDkGgCPbNx01i2fCwKlUbydIxlwgAbUYT24hTq0z%2FrIj7uoEm9v"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febedaadc8d4204-EWR server-timing: cfL4;desc="?proto=TCP&rtt=2091&min_rtt=2087&rtt_var=791&sent=3&recv=6&lost=0&retrans=0&sent_bytes=2824&recv_bytes=1261&delivery_rate=1376709&cwnd=234&unsent_bytes=0&cid=e9fdf555b83e3f3c&ts=135&x=0"
2025-01-08 11:43:10 UTC	248	IN	Data Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 38 34 20 35 31 32 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 31 35 2e 37 20 34 39 39 2e 32 43 32 36 37 20 34 33 35 20 33 38 34 20 32 37 39 2e 34 20 33 38 34 20 31 39 32 43 33 38 34 20 38 36 20 32 39 38 20 30 20 31 39 32 20 30 53 30 20 38 36 20 30 20 31 39 32 63 30 20 38 37 2e 34 20 31 31 37 20 32 34 33 20 31 36 38 2e 33 20 33 30 37 2e 32 63 31 32 2e 33 20 31 35 2e 33 20 33 35 2e 31 20 31 35 2e 33 20 34 37 2e 34 20 30 7a 4d 31 39 32 20 31 32 38 61 36 34 20 36 34 20 30 20 31 20 31 20 30 20 31 32 38 20 36 34 20 36 34 20 30 20 31 20 31 20 30 2d 31 32 38 7a 22 2f 3e 3c 2f 73 76 67 3e Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 384 512"><path d="M215.7 499.2C267 435 384 279.4 384 192C384 86 298 0 192 0S0 86 0 192c0 87.4 117 243 168.3 307.2c12.3 15.3 35.1 15.3 47.4 0zM192 128a64 64 0 1 1 0 128 64 64 0 1 1 0-128z"/></svg>

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://www.hillviewlodge.hotelrent.top

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 173

Chrome Cache Entry: 174

Chrome Cache Entry: 175

Chrome Cache Entry: 176

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Chrome Cache Entry: 179

Chrome Cache Entry: 180

Chrome Cache Entry: 181

Chrome Cache Entry: 182

Chrome Cache Entry: 183

Chrome Cache Entry: 184

Chrome Cache Entry: 185

Chrome Cache Entry: 186

Chrome Cache Entry: 187

Chrome Cache Entry: 188

Chrome Cache Entry: 189

Chrome Cache Entry: 190

Chrome Cache Entry: 191

Chrome Cache Entry: 192

Chrome Cache Entry: 193

Windows Analysis Report
http://www.hillviewlodge.hotelrent.top

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	677	OUT	GET /images/hotel.jpg HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:10 UTC	1093	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/webp Content-Length: 112166 Connection: close Age: 314354 Cache-Control: public, max-age=604800 Cf-Bgj: imgq:85,h2pri Cf-Polished: qual=85, origFmt=jpeg, origSize=212165 Content-Disposition: inline; filename="hotel.webp" Vary: Accept etag: "33cc5-66044bac-2e0def;;;" expires: Fri, 20 Dec 2024 13:29:21 GMT last-modified: Wed, 27 Mar 2024 16:39:08 GMT x-turbo-charged-by: LiteSpeed CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cf3jUa%2BB8YHDafJlL4GnFQ1jDVmPTRqu2wDh4%2F66g06yZUCcW8Xy6EnwOgz0LgbRwyTvXCdSb8K1zaLNcohWl5z9iua7hvWxGXHKFZGKLfiHXR0mxWfyL7rH6yr%2B"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febedab6a1c43d4-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1709&min_rtt=1705&rtt_var=647&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2822&recv_bytes=1255&delivery_rate=1680092&cwnd=224&unsent_bytes=0&cid=56dbcfedde389d30&ts=158&x=0"
2025-01-08 11:43:10 UTC	276	IN	Data Raw: 52 49 46 46 1e b6 01 00 57 45 42 50 56 50 38 20 12 b6 01 00 10 e7 09 9d 01 2a 00 08 84 03 3e 49 24 8e 45 a2 a8 a6 a7 23 f2 1a 21 10 09 09 67 6d bf fc 24 7b d1 3d 89 80 bc 60 f9 6c f9 99 a0 0f 55 df e9 ec 28 79 5f fe 3d 72 7c 37 ff 6f a0 3f a5 af 2a 59 e0 c1 cd f9 f4 af 9c e0 4f a2 fb bf 5f 8f f9 7b 1b f6 9f 32 ae 9b fe 5b c5 7f f1 fc 3e fd 97 fd b7 b0 47 ec 07 97 17 80 de e6 7b 06 78 45 f3 bb f6 e3 a8 1f fe af 4e 0f d3 ff e1 74 5e ea 5f ed ac 08 ad c9 be 97 71 f4 f9 c7 f3 3f c7 ff bd fd d7 ab e6 6b 9c ff 9f ff b5 f7 cb ff e1 ed 03 fb 8f fc 1e 8e 5f 40 1f f7 ba 4e ff f5 ef 37 fa ee ff 34 ff d3 d5 7d e8 eb eb 37 a5 43 f4 4f fd de 7a be 87 fe 97 82 7f a4 7b de ff 4b ed c5 87 bf 8c ff 73 cd cf eb 5f ba f3 d7 ff 37 8c bf b4 7f 73 e8 3b fb 47 92 3f f7 78 99 70 Data Ascii: RIFFWEBPVP8 >I$E#!gm${=`lU(y_=r\|7o?YO_{2[>G{xENt^_q?k_@N74}7COz{Ks_7s;G?xp
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: d4 fd c5 f8 22 fe b9 fe a3 d6 4f c6 3f ed 9f f8 3d 90 3f 6b c7 b7 ec 5e 22 5e b1 7f 41 58 03 b8 2f 03 13 1b f9 6c 97 fd 1a 63 4a fd a2 20 12 64 41 fb 88 0b 6b 37 5b 43 32 0e f2 36 96 b6 3d 45 51 72 b6 bf a3 07 59 3e 1b 1f 80 90 c7 cb 7f 20 2f 93 36 1d 67 e9 cb fc ab 25 a7 8c a3 11 d1 fd 7a 05 b0 4d 6f ae 4a 55 95 27 43 0f ae d1 63 8d 46 6d 64 d3 c8 2e 83 0d b3 7c 0a bf df 90 af b6 a5 7c 8b 32 ab 13 a7 b5 d3 21 ea be 28 cc e0 38 f4 af 7c a0 27 7d 93 10 62 65 82 98 17 dd f2 fe e0 2a 21 ea 59 de ee f0 5d 2b aa 2a 51 c6 8c ea b4 08 38 57 ac 8d 76 af d8 44 bc 1a 9e 1e c2 68 38 9b 4f 5d 0d 79 da 96 5b 01 13 5e 8a b5 bc e6 9d 41 6b 4a a1 96 19 f7 10 89 b0 bf 48 7d db a4 92 d2 f5 67 de 45 53 55 22 7e c1 28 ed 9f 71 71 1c e2 2d e8 28 0f 8c 28 f9 a7 5f 3b 7a c0 e5 Data Ascii: "O?=?k^"^AX/lcJ dAk7[C26=EQrY> /6g%zMoJU'CcFmd.\|\|2!(8\|'}be!Y]+Q8WvDh8O]y[^AkJH}gESU"~(qq-((_;z
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 0f 47 90 71 5d b8 e2 19 fc 2b f8 8f ad 5d f3 ac bf 00 f4 09 b2 39 74 ca 2d 83 2d 03 51 7d 6d bf e9 e7 20 1d ec e5 71 47 bf 6f b7 43 86 60 5b f0 1e 01 0f 97 9e dc 0f 92 37 83 3c 18 bc 8b ab ee f2 5a 6a af 28 f9 ce ba 9f a1 95 6e 59 d3 83 7d 67 ad 58 25 88 4e d5 2a 33 95 9d 34 39 fb fe fd 2b 48 0f 07 b5 cf 38 a2 d9 85 3c aa ac 36 af 16 77 dd 51 3a 24 8b be f7 2b ea c5 9a 5b ef 17 e3 00 5b d3 54 46 13 5e 3f 25 73 09 22 7b 49 96 5e 48 d8 8c c6 30 2b 82 c6 ef f3 ab bf 37 be 1f ff fb 5b f8 b0 1b 51 ec f6 ac 18 94 ce 86 85 3f d6 be 19 6b cc db fc b9 08 12 6e 87 67 2c 08 21 22 c6 d9 2b 9e 64 d5 96 76 37 af 51 8a 18 49 2d 48 2b 44 53 85 28 4c e9 80 59 d2 fa 85 f8 40 a9 33 c8 6e 96 f5 73 25 ff ff e8 f3 42 0d 70 d5 d6 ec 4d 20 4b 1f 56 6d 02 2e b8 dc 9a f6 96 38 23 Data Ascii: Gq]+]9t--Q}m qGoC`[7<Zj(nY}gX%N*349+H8<6wQ:$+[[TF^?%s"{I^H0+7[Q?kng,!"+dv7QI-H+DS(LY@3ns%BpM KVm.8#
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: f1 9c 9d 4c 21 29 28 96 f5 23 78 d6 24 35 b9 f1 57 b6 a5 47 33 99 3e cf fb 32 40 bd 78 a6 dc 08 9e 8e ed 1b 95 3c dd 64 bd c1 c9 5a cc 9e d1 47 49 f6 cd 1c 76 d7 3e a8 1f 10 01 c0 89 1b 16 76 35 c0 6e e7 d9 a9 20 09 bc 9f 38 68 a4 d9 2e 29 77 44 de aa c5 d8 a5 e1 f8 ef 97 04 f3 10 67 05 4b 7d 34 ac b7 43 ef 4a cb ab 52 98 5f 53 44 66 e0 c9 fc fb 28 70 f8 9e b6 4f d8 7d 95 fc 04 92 6d 4d 22 8f b8 a3 cd e8 28 f3 a5 a2 35 af 63 c3 35 62 ac bb 28 1f 7b 86 33 79 11 1f 29 c8 36 23 45 66 46 44 42 f5 51 af 6c 63 4e 8b f7 af 2e 11 ec 05 c7 4e 95 50 b3 f1 90 75 10 8b 7c da 59 fd aa 01 26 cc 22 03 93 39 8c de 2c 78 fc 72 5e 44 8e 0b 99 71 9a ed 2c 32 1f 8a 25 ac 6a c6 a3 09 91 0c 36 c3 df 51 92 e2 7f 6b 24 e3 94 b5 a5 bc 32 5e 88 78 b0 bb 47 6b c8 a3 a1 63 a1 cb 8d Data Ascii: L!)(#x$5WG3>2@x<dZGIv>v5n 8h.)wDgK}4CJR_SDf(pO}mM"(5c5b({3y)6#EfFDBQlcN.NPu\|Y&"9,xr^Dq,2%j6Qk$2^xGkc
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 30 98 0f 0b a4 7f e2 ae af b6 8f ee e2 29 b2 21 c3 ad 1e 2d c4 69 0a c3 78 66 8f 97 66 18 e1 12 2e 35 3d 66 c0 9b 68 a7 3b 3c 26 15 3d 74 c7 cc 19 8c 33 14 79 23 a5 57 0a e6 b0 23 f4 34 b8 b1 86 d4 7f 81 56 38 7a 06 23 5b 1d 4e 56 3f a0 ff cb 0d 83 9c 06 08 00 3d d5 a5 98 4e 2f 84 ed e4 e9 2e 94 94 80 28 c7 13 8b 4b 33 b3 af 31 2d 0b 77 bc 06 96 34 aa 42 33 9d 60 2b 35 d7 0c cc b9 0c f4 f5 e4 a0 87 3d 28 42 dc 06 67 75 16 09 a3 83 9a 30 bb 1e e8 70 30 4c 02 4a 2b 8d f9 11 c4 1f 62 58 f3 ee bc 93 e4 ba 69 d6 05 5a 6c 5c d0 3a 73 a2 77 53 61 10 51 c3 e5 14 15 91 50 7e 12 31 69 c8 23 4f 22 95 98 78 22 42 08 a1 c3 57 e2 45 7c 82 37 5a 34 2a d4 b4 9a 71 e1 e6 ac bb e5 ca 83 23 09 4f e6 b9 0f 66 90 9a 38 a2 47 00 ea 38 b3 01 ef 4c 8f 81 68 d4 43 6f c9 70 df 67 Data Ascii: 0)!-ixff.5=fh;<&=t3y#W#4V8z#[NV?=N/.(K31-w4B3`+5=(Bgu0p0LJ+bXiZl\:swSaQP~1i#O"x"BWE\|7Z4*q#Of8G8LhCopg
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 2e 0b 6c 48 bc 26 15 4b c9 3e cf 0a a4 35 f6 9c aa b7 99 2b 93 ea 9b 51 72 5a dd b1 e0 91 69 4c f5 27 f1 b2 dc 55 79 2c 11 7e f5 2a b9 64 03 86 ef a4 32 83 6e 16 a1 f0 c2 3f cd 3e 08 02 ee fe ec 4f 8e 69 b5 88 27 f9 3b 3b a0 46 d8 2f 3d d5 fe 2a 8d ec 33 84 dd f9 97 b1 67 eb bd fb cc 28 f8 a4 51 0e 6d 94 5d 24 fc 6e d2 68 fa 9a 6a 08 55 c7 ba f9 62 9c 65 a1 5a d8 04 0a d3 53 23 07 d2 33 eb 68 bb 5d 19 be ea 89 75 5e 1d 44 20 2d a5 23 ba 43 3e 9f fb 02 9a 4d ef 69 e8 5e 5c fe 2e b9 8a b2 fa 82 8d 92 2f ae 32 f0 48 05 cc 83 ca 4b 5e 98 13 a2 73 bb d1 b3 02 13 36 67 c0 c2 50 c2 cc 3c 3d af 32 5f 5e 7a 42 a0 2b e2 9e ac 8b 03 37 50 62 d7 78 70 53 95 f9 98 70 18 20 e1 fc ee f5 c5 d7 3a d9 c4 6b 28 a7 fe eb b1 ac e6 9a d2 f1 e6 56 d4 ea c0 b0 a4 a4 31 7b d7 b0 Data Ascii: .lH&K>5+QrZiL'Uy,~d2n?>Oi';;F/=3g(Qm]$nhjUbeZS#3h]u^D -#C>Mi^\./2HK^s6gP<=2_^zB+7PbxpSp :k(V1{
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 08 20 08 32 b0 19 24 00 c7 c6 56 e6 79 09 c4 8f b0 ec e4 5b a7 da 88 ad dd dc 94 c1 c0 e3 28 01 6a 57 3e 03 fa 0e ea 56 97 b3 f3 2e 61 b5 24 a9 0c cb 7a 0e a3 20 5b 10 79 4b 4a 65 c0 9d 8b b2 5a 67 b1 2c 39 66 a9 6a 7d b9 3a 72 02 be 0a 78 db cc e2 ae f7 75 28 f1 cc 34 71 a1 c1 9b f6 d0 7c 1f f1 f6 a3 65 3b 6e c6 11 ba 10 aa c3 dd 85 22 5b 66 13 13 b4 a2 45 29 f6 9f a1 15 9b 7e 7f b7 ac 91 3a 95 fa 58 94 da 23 db ee 12 58 60 9d e3 02 c7 82 b1 49 ee d8 1e a8 6f 21 2f 56 81 6f 6a 07 98 d2 47 94 4d 01 e4 d9 72 1d fc d6 9e 36 ea 8a 2c 4c 82 e8 49 25 7e 8b 8a 4f ce a8 ed dd dc 60 be 0d 7f da 4b 63 f5 e1 c2 b8 eb b1 12 f2 c2 68 2a b3 4c ab 42 22 f4 e2 db c3 c6 66 c0 6c df ef b7 56 6c 9c 05 c5 e1 64 78 15 67 e1 81 0f 98 53 fe b6 7d 7d 4c a5 bf 0b 3c e1 89 9d 7b Data Ascii: 2$Vy[(jW>V.a$z [yKJeZg,9fj}:rxu(4q\|e;n"[fE)~:X#X`Io!/VojGMr6,LI%~O`Kch*LB"flVldxgS}}L<{
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 78 79 80 f4 89 7d 4f ee eb 4a d1 a9 13 1b a9 d1 bf 65 24 93 cc 8f 88 de ac 1b f1 b8 8f 09 ba f7 cc d1 de a8 13 c2 b7 ec 2c 35 b4 09 10 cc 45 2b 54 aa 79 de 94 42 3d be 11 bf ba ff 7a ab 45 a4 a8 2e 24 05 31 df 33 03 fc 77 37 a1 4b 3d bf 9b 5b c0 a3 e2 6e 14 67 29 60 3d e5 12 d2 6b b3 e0 5c 8d c7 42 3a fd 2b 0a 8e b0 d7 8d 5f e8 83 4d 8a 94 93 3b a2 b7 2a a5 8e d6 5e 9d 22 96 f2 8b e1 2c 03 09 5d 9b c9 2c d5 57 aa d0 0b c1 01 e7 dd db cc 81 43 3c c6 a0 f2 e2 01 c8 ce e3 91 3f e5 95 9a 8b f4 6f 5f 7b 97 26 4b 5d 0b 04 bd d3 c1 a9 74 13 18 6c 87 9b a1 11 bf 3c ef 1e d2 9c 13 ee d1 b5 b2 15 db b1 bf 5a f6 6a a5 8b 9a 86 4f c1 32 8b d6 7f d5 52 59 aa 5a 10 91 bb 0d d2 6f 44 4f c5 8a 82 b6 e9 0b 49 73 f0 f2 47 bb 98 0a 96 55 a8 27 f9 00 d7 f1 98 c1 f4 4e dc 14 Data Ascii: xy}OJe$,5E+TyB=zE.$13w7K=[ng)`=k\B:+_M;*^",],WC<?o_{&K]tl<ZjO2RYZoDOIsGU'N
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: ce d7 32 78 32 f9 e1 7a ad da 6b c1 3e bb 3f 86 1b f8 6c a9 35 fd b1 02 dd 11 22 18 f8 5d de cd 18 30 ce a2 21 cc 91 1a f6 c1 85 14 9e 09 a4 e5 71 8f 54 ed 14 c9 b0 66 c9 31 9e 5f 31 6f cc 7f e0 e9 77 c9 02 61 2e 08 91 04 18 59 98 39 59 a5 ba 4a 07 9d 9f a8 6b 1b f8 cc 73 43 9c d3 0e c5 a2 71 03 ba 52 b0 e4 00 60 e6 1c a3 d6 42 67 3b a1 d0 2f cd 74 38 24 97 2f 7f 51 85 a3 9d 9a 7e 3a 32 0f e2 c3 8e bf 37 93 71 f7 c1 68 51 4c 95 d9 4a 64 7f 4c c0 20 b0 03 0d 67 b7 44 e4 97 6e d3 d5 fa 32 f9 ba c5 5a a9 87 0e 97 32 05 a8 d6 50 f6 1f 55 9a f2 b6 a9 42 4f 7f b2 78 71 36 3b 46 a9 9d 56 1f 2e cc 03 96 a6 b7 b5 93 1a 12 04 7e 01 71 94 4b 1e 52 5b 87 80 f3 ea a5 c7 c9 a4 15 b0 5c 2e b4 21 9d 68 47 de 7f ab 20 71 30 73 a1 18 95 44 b9 54 cd d3 47 20 2f 6b 03 31 02 Data Ascii: 2x2zk>?l5"]0!qTf1_1owa.Y9YJksCqR`Bg;/t8$/Q~:27qhQLJdL gDn2Z2PUBOxq6;FV.~qKR[\.!hG q0sDTG /k1
2025-01-08 11:43:10 UTC	1369	IN	Data Raw: 0f d3 96 62 fc 7b 6f 3d 5a 47 7f 7b ef 86 74 34 55 00 2f c7 9e 45 b5 dd e1 7a a4 a3 ff fd c3 9b 3f da 03 23 8d 4c 28 0d f4 e9 8d b4 78 fc 56 81 55 d3 50 1e 0a 48 9d 09 aa 95 77 53 b6 52 d0 d4 96 ce 45 e6 05 67 bd 95 b4 dd 45 1c 23 5e d6 2b 52 ff 8a 37 31 7e 67 b2 40 a3 8d 4f a9 ad fb e4 68 d9 c1 3f 62 23 bf e4 d2 6f 74 6c 1b 84 5a a4 30 ac 3d 0f 21 ba 12 c2 c6 61 af 34 eb 92 23 ca 0a 72 32 02 ce 35 5d 1e 4d 61 95 8a f0 12 4c c5 31 94 fd 84 0f ff 19 d9 36 ed d7 af 37 64 01 a6 2e 30 b4 b0 1e 50 0c eb ec 16 9a 01 ac ee 7f 8a 48 f2 30 3f 8a f3 07 08 75 49 9e b4 08 4c ab 12 8c e5 e2 29 86 e6 72 47 98 ec 0c 89 4f 8d e9 70 47 42 22 30 63 b2 97 d6 c3 e1 fa c1 a6 3e c8 d8 00 6a 53 bd a3 54 c1 b8 c4 59 1f 69 b1 49 28 66 2d 89 b0 18 f4 9f fa 6e c0 60 c8 ae b1 f1 cf Data Ascii: b{o=ZG{t4U/Ez?#L(xVUPHwSREgE#^+R71~g@Oh?b#otlZ0=!a4#r25]MaL167d.0PH0?uIL)rGOpGB"0c>jSTYiI(f-n`

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	676	OUT	GET /icons/hotel.svg HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:10 UTC	949	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/svg+xml Content-Length: 1062 Connection: close Cache-Control: public, max-age=604800 expires: Wed, 25 Dec 2024 23:08:09 GMT etag: "426-66b23fb9-8260e;;;" last-modified: Tue, 06 Aug 2024 15:22:33 GMT x-turbo-charged-by: LiteSpeed Age: 314355 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bbRDAErJIA5KFVfSSnfJsmD0Z2q970CyXuEt9URNSw%2B1JbqTs8YdWF45hTVrQ8i1TrWD6FhpVmHSYG6nbjBk307KvSg%2FBhpusBUH9xti9qr4bkxFGO49i%2BPCYwgk"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febedab49ff6a56-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1570&min_rtt=1565&rtt_var=598&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2822&recv_bytes=1254&delivery_rate=1811414&cwnd=224&unsent_bytes=0&cid=71cfb7f87f2bedc3&ts=143&x=0"
2025-01-08 11:43:10 UTC	420	IN	Data Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 35 31 32 20 35 31 32 22 3e 3c 70 61 74 68 20 64 3d 22 4d 30 20 33 32 43 30 20 31 34 2e 33 20 31 34 2e 33 20 30 20 33 32 20 30 4c 34 38 30 20 30 63 31 37 2e 37 20 30 20 33 32 20 31 34 2e 33 20 33 32 20 33 32 73 2d 31 34 2e 33 20 33 32 2d 33 32 20 33 32 6c 30 20 33 38 34 63 31 37 2e 37 20 30 20 33 32 20 31 34 2e 33 20 33 32 20 33 32 73 2d 31 34 2e 33 20 33 32 2d 33 32 20 33 32 6c 2d 31 37 36 20 30 20 30 2d 34 38 63 30 2d 32 36 2e 35 2d 32 31 2e 35 2d 34 38 2d 34 38 2d 34 38 73 2d 34 38 20 32 31 2e 35 2d 34 38 20 34 38 6c 30 20 34 38 4c 33 32 20 35 31 32 63 2d 31 37 2e 37 20 30 2d 33 32 2d 31 34 2e 33 Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M0 32C0 14.3 14.3 0 32 0L480 0c17.7 0 32 14.3 32 32s-14.3 32-32 32l0 384c17.7 0 32 14.3 32 32s-14.3 32-32 32l-176 0 0-48c0-26.5-21.5-48-48-48s-48 21.5-48 48l0 48L32 512c-17.7 0-32-14.3
2025-01-08 11:43:10 UTC	642	IN	Data Raw: 30 2d 31 36 20 37 2e 32 2d 31 36 20 31 36 6c 30 20 33 32 63 30 20 38 2e 38 20 37 2e 32 20 31 36 20 31 36 20 31 36 6c 33 32 20 30 63 38 2e 38 20 30 20 31 36 2d 37 2e 32 20 31 36 2d 31 36 6c 30 2d 33 32 63 30 2d 38 2e 38 2d 37 2e 32 2d 31 36 2d 31 36 2d 31 36 6c 2d 33 32 20 30 7a 6d 31 31 32 20 31 36 6c 30 20 33 32 63 30 20 38 2e 38 20 37 2e 32 20 31 36 20 31 36 20 31 36 6c 33 32 20 30 63 38 2e 38 20 30 20 31 36 2d 37 2e 32 20 31 36 2d 31 36 6c 30 2d 33 32 63 30 2d 38 2e 38 2d 37 2e 32 2d 31 36 2d 31 36 2d 31 36 6c 2d 33 32 20 30 63 2d 38 2e 38 20 30 2d 31 36 20 37 2e 32 2d 31 36 20 31 36 7a 4d 31 31 32 20 31 39 32 63 2d 38 2e 38 20 30 2d 31 36 20 37 2e 32 2d 31 36 20 31 36 6c 30 20 33 32 63 30 20 38 2e 38 20 37 2e 32 20 31 36 20 31 36 20 31 36 6c 33 32 20 Data Ascii: 0-16 7.2-16 16l0 32c0 8.8 7.2 16 16 16l32 0c8.8 0 16-7.2 16-16l0-32c0-8.8-7.2-16-16-16l-32 0zm112 16l0 32c0 8.8 7.2 16 16 16l32 0c8.8 0 16-7.2 16-16l0-32c0-8.8-7.2-16-16-16l-32 0c-8.8 0-16 7.2-16 16zM112 192c-8.8 0-16 7.2-16 16l0 32c0 8.8 7.2 16 16 16l32

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	676	OUT	GET /icons/child.svg HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:10 UTC	946	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/svg+xml Content-Length: 406 Connection: close Cache-Control: public, max-age=604800 expires: Sat, 21 Dec 2024 08:48:30 GMT etag: "196-66b23fb9-82609;;;" last-modified: Tue, 06 Aug 2024 15:22:33 GMT x-turbo-charged-by: LiteSpeed Age: 387218 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0wG%2BHbfLWX96z5g0c9RDfNfmnvNslRj8mUsfjeszoKj6XrOyi75sKOVwKB0gd%2F9sMEzTI5cjLyESNjVj1FMTw5KNIsdQWh73Rr1kkSyQRyh4jrRgLby8mg8PlqrL"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febedab7cfb5e82-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1552&min_rtt=1544&rtt_var=595&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2823&recv_bytes=1254&delivery_rate=1813664&cwnd=216&unsent_bytes=0&cid=07aea632f3ed924e&ts=148&x=0"
2025-01-08 11:43:10 UTC	406	IN	Data Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 32 30 20 35 31 32 22 3e 3c 70 61 74 68 20 64 3d 22 4d 39 36 20 36 34 61 36 34 20 36 34 20 30 20 31 20 31 20 31 32 38 20 30 41 36 34 20 36 34 20 30 20 31 20 31 20 39 36 20 36 34 7a 6d 34 38 20 33 32 30 6c 30 20 39 36 63 30 20 31 37 2e 37 2d 31 34 2e 33 20 33 32 2d 33 32 20 33 32 73 2d 33 32 2d 31 34 2e 33 2d 33 32 2d 33 32 6c 30 2d 31 39 32 2e 32 4c 35 39 2e 31 20 33 32 31 63 2d 39 2e 34 20 31 35 2d 32 39 2e 32 20 31 39 2e 34 2d 34 34 2e 31 20 31 30 53 2d 34 2e 35 20 33 30 31 2e 39 20 34 2e 39 20 32 38 37 6c 33 39 2e 39 2d 36 33 2e 33 43 36 39 2e 37 20 31 38 34 20 31 31 33 2e 32 20 31 36 30 20 31 Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 320 512"><path d="M96 64a64 64 0 1 1 128 0A64 64 0 1 1 96 64zm48 320l0 96c0 17.7-14.3 32-32 32s-32-14.3-32-32l0-192.2L59.1 321c-9.4 15-29.2 19.4-44.1 10S-4.5 301.9 4.9 287l39.9-63.3C69.7 184 113.2 160 1

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	675	OUT	GET /icons/user.svg HTTP/1.1 Host: housity.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/?&tag=summerend Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: PHPSESSID=d9b52d35b26525d8e8d399e212ffa7ff; tag=summerend; lang=en-US
2025-01-08 11:43:10 UTC	944	IN	HTTP/1.1 200 OK Date: Wed, 08 Jan 2025 11:43:10 GMT Content-Type: image/svg+xml Content-Length: 263 Connection: close Cache-Control: public, max-age=604800 expires: Thu, 02 Jan 2025 14:36:42 GMT etag: "107-66b23fb9-8246b;;;" last-modified: Tue, 06 Aug 2024 15:22:33 GMT x-turbo-charged-by: LiteSpeed Age: 548135 CF-Cache-Status: HIT Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TB926jcnDVM0SEJ5TzsssHYjz2imwNAklgbKwsOMZ3bNcSwa2JPs0%2FHNyccr0WFwvCFW4q0jtJC3jtiHk5J0wGJORgn5zQAAvoy21G2VljSgjo171MjHzAAugjo8"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8febedab7aaa5e7a-EWR server-timing: cfL4;desc="?proto=TCP&rtt=1705&min_rtt=1700&rtt_var=647&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2823&recv_bytes=1253&delivery_rate=1678160&cwnd=218&unsent_bytes=0&cid=d6e6b40b0c9b48b8&ts=145&x=0"
2025-01-08 11:43:10 UTC	263	IN	Data Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 34 34 38 20 35 31 32 22 3e 3c 70 61 74 68 20 64 3d 22 4d 32 32 34 20 32 35 36 41 31 32 38 20 31 32 38 20 30 20 31 20 30 20 32 32 34 20 30 61 31 32 38 20 31 32 38 20 30 20 31 20 30 20 30 20 32 35 36 7a 6d 2d 34 35 2e 37 20 34 38 43 37 39 2e 38 20 33 30 34 20 30 20 33 38 33 2e 38 20 30 20 34 38 32 2e 33 43 30 20 34 39 38 2e 37 20 31 33 2e 33 20 35 31 32 20 32 39 2e 37 20 35 31 32 6c 33 38 38 2e 36 20 30 63 31 36 2e 34 20 30 20 32 39 2e 37 2d 31 33 2e 33 20 32 39 2e 37 2d 32 39 2e 37 43 34 34 38 20 33 38 33 2e 38 20 33 36 38 2e 32 20 33 30 34 20 32 36 39 2e 37 20 33 30 34 6c 2d 39 31 2e 34 20 30 7a 22 Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 448 512"><path d="M224 256A128 128 0 1 0 224 0a128 128 0 1 0 0 256zm-45.7 48C79.8 304 0 383.8 0 482.3C0 498.7 13.3 512 29.7 512l388.6 0c16.4 0 29.7-13.3 29.7-29.7C448 383.8 368.2 304 269.7 304l-91.4 0z"

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	688	OUT	GET /xdata/images/hotel/max1024x768/267982119.jpg?k=15e6d6d600996cf06394da0f93d309faecf842d2a4c1ce33e9a7f48274c7fb9e&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	550	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Sat, 04 Jan 2025 07:24:58 GMT ETag: "f8400fbf94cf38f49d32d6f5075771d7eba79aca" Content-Language: 146419 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Hit from cloudfront Via: 1.1 7b85fc567b776c0d31c5ac07cc6c2ae6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: yvOV_4SzAVmbrmaftaCoYHHSBTxeexFmTRWPl_7BunAyQMtfwt8Qmg== Age: 361092
2025-01-08 11:43:10 UTC	16384	IN	Data Raw: 31 32 64 39 32 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 03 00 04 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 Data Ascii: 12d92JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222"}!1AQa"
2025-01-08 11:43:10 UTC	16384	IN	Data Raw: a0 6c 6c 7f 08 e9 9f e5 5c 95 dc a3 16 a0 ec 75 51 51 94 93 92 36 4d ac a2 c4 45 0c 9b 5c a6 15 c9 ce 3d fd eb a4 f0 d7 87 25 d4 c2 7d a7 7f 92 80 06 6c 60 b9 f6 ac 7f 01 78 47 5c fb 64 72 5f b0 97 48 6c 95 cb 60 91 d8 e3 d2 bd 1f 54 d5 a2 d3 10 da d9 00 d7 1b 7a 7f 0c 63 1c 13 fe 15 c9 57 1c f9 2c b7 ea 74 c7 0a 94 b5 db a1 71 a1 b7 f2 7f b3 23 31 87 55 07 cb e0 92 be b8 af 33 f1 06 8b f6 2b e6 10 65 01 25 90 1e 99 ee 08 ab 2d 35 de 9d a8 2e b9 13 bc d7 31 39 f3 f2 73 e6 46 7a 8c 7b 0e 6b b1 d5 6d ed f5 ed 21 2e ed f0 c1 d0 49 13 8f 5c 74 cd 73 e1 6b f2 cf 5d 8d 31 14 db 89 e5 29 38 b9 81 da 37 fb af b5 d7 18 e4 75 fc 29 d2 c6 98 8e 07 0a 7e 6e 06 33 90 6a cd cd b6 c9 42 ec 0b 97 c1 e3 04 35 47 75 06 f8 4e fe 19 39 56 07 9f 4e 2b d9 49 a3 ce ba 18 6d a3 Data Ascii: ll\uQQ6ME\=%}l`xG\dr_Hl`TzcW,tq#1U3+e%-5.19sFz{km!.I\tsk]1)87u)~n3jB5GuN9VN+Im
2025-01-08 11:43:10 UTC	16384	IN	Data Raw: c7 1d 4d 4b b0 e0 80 73 c6 30 47 4a 94 b5 2b 99 da c3 4a ed 24 a9 38 3d ab 3b 5d 8f 76 93 2e 7a ee 42 0f 70 72 30 45 68 07 2a a4 48 40 0a 09 24 8c 70 2b 2f 52 8d ee f4 f9 67 92 53 1a a8 df 14 63 be 39 19 f5 e6 94 b6 1c 3e 23 41 e3 64 8d 54 31 65 04 73 8a 93 74 48 a4 93 f5 18 e7 f2 a4 89 cd c4 11 be 40 47 40 d9 cf a8 a8 18 22 c9 c4 84 2e 07 27 92 4d 3e 82 b5 d9 30 c2 b1 94 8f 98 f4 5e 9f ad 24 2a 73 b8 e4 73 dc f5 cd 30 24 81 bc d9 14 b7 1d 33 d0 7a 81 eb 53 23 c6 a0 ed 04 83 cf 4a 69 89 a1 d2 e3 6e c1 d5 f8 cf a7 bd 43 04 6c 11 61 c8 18 1f 31 fa 52 ef 69 67 f9 46 15 47 73 de a4 91 96 18 1a 42 08 23 a6 39 c9 ed 49 b0 49 d8 ad 2a ad d5 c9 8d 82 b4 50 f5 53 d0 b7 bf d0 57 05 e2 7b 6b 75 d7 a2 9a 08 84 69 24 79 e0 60 12 0e 09 02 bb a0 92 7d 9f 68 fb ed 92 ec Data Ascii: MKs0GJ+J$8=;]v.zBpr0EhH@$p+/RgSc9>#AdT1estH@G@".'M>0^$ss0$3zS#JinCla1RigFGsB#9II*PSW{kui$y`}h
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 1a 8a 44 54 8c bc 43 07 d0 1c 7e 94 e3 37 61 4a 0a fa 9a 4d e3 3d 44 4f 1c 92 4c c4 27 0d 19 5c 03 ee 71 5b 16 1e 3a 0d 23 2c 8b 1b 96 1f 26 d6 c5 71 f1 5c 29 75 2c a0 e7 a6 79 a8 ee 6d 62 32 2c 91 14 07 39 c0 e2 b6 8d 7a 8b 44 cc 9e 1e 9c b5 68 f4 e4 f1 b5 bc 31 21 96 07 0d 90 1c 2e 08 1e fd 73 fa 56 c5 b7 8a 34 99 a6 08 b7 43 73 0c 82 c8 40 c7 d6 bc 82 1b 68 e4 70 18 b2 93 d7 6b 1c ff 00 f5 ea 77 82 58 08 d9 71 28 55 3f 29 61 fe 78 a6 b1 53 ea 4b c1 41 ec 7b 5c 1a 9d 9d ca 3b c7 71 13 aa 9c 12 ac 30 2a d8 3b 94 15 03 07 9e bd 6b c1 de ea e6 29 b7 b1 4d 8c 3e 61 d0 1f 7a 75 ce b9 ab 5b 08 e4 86 69 47 92 72 9b 24 24 62 b4 58 ab f4 32 78 36 b6 67 bb 81 b7 80 72 4f e9 43 37 bd 78 f6 83 f1 07 56 8e 49 7e d5 2f 9a 1f 91 e6 af dd 3e 95 d3 db 7c 43 8a 45 8b ce Data Ascii: DTC~7aJM=DOL'\q[:#,&q\)u,ymb2,9zDh1!.sV4Cs@hpkwXq(U?)axSKA{\;q0*;k)M>azu[iGr$$bX2x6grOC7xVI~/>\|CE
2025-01-08 11:43:11 UTC	11675	IN	Data Raw: b8 6e 17 83 8e 70 d5 6a ca ea e2 e7 52 ba 13 5f ec 79 d3 93 20 1b 1f d7 70 22 a8 49 0e d9 09 89 d4 8d d8 e0 71 58 ce 2d 6e 76 50 9d d5 99 a5 02 b9 7e 54 e3 d6 ad a2 21 23 04 02 33 c1 18 cd 64 43 2b 2c 9b 0b 83 9f 7a bd 1b 33 1c 86 61 8f 43 58 34 75 a9 76 24 9c 18 f9 1c 0f 63 5c d6 b1 29 17 87 ef 0e 01 e7 f1 ae 9b 79 2a 52 65 dc a7 8c 91 5c c7 88 2c 66 8e 74 99 41 36 f8 20 be 7e 50 79 ea 7b 55 52 5a d8 8a ed f2 dc cc 5f df 48 14 12 58 9c 00 0f 27 f2 af 6a f0 8e 9f fd 89 26 99 a7 42 f1 f9 d2 e6 6b a2 58 06 e5 78 5c 77 c5 71 bf 0e bc 31 1d eb 1d 5e e1 a1 68 62 24 42 ac 72 59 fb 71 e9 5d f5 8f 87 f5 0f f8 49 2c f5 16 9e 07 44 ff 00 5a db b0 c7 af 41 5d 50 4a f7 67 9d 52 4d e8 8a be 23 b6 be 6d 5e ea 4b 51 21 56 b4 18 d8 4f 50 45 74 7a 2d db d9 f8 4e d2 6d 40 Data Ascii: npjR_y p"IqX-nvP~T!#3dC+,z3aCX4uv$c\)y*Re\,ftA6 ~Py{URZ_HX'j&BkXx\wq1^hb$BrYq]I,DZA]PJgRM#m^KQ!VOPEtz-Nm@
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 63 37 64 38 0d 0a 1b 7a 73 54 9b c2 3a cc 19 1f 67 0f fe e9 ae 6a 0f b5 47 04 7e 47 88 b5 28 1b 1d 0b e4 67 f1 ab f6 ba b7 8b 21 c9 b5 f1 14 97 4a bd 43 40 ac 47 d6 97 b3 a6 5a ad 51 16 a4 f0 fe ab 17 26 d2 5c 8f 4e d5 4d ec af 62 24 4b 6d 2a 9e c4 ae 6a f7 fc 26 5e 33 b2 1f be 92 c2 61 9c 0f 32 16 4c 93 ef d2 b4 3f e1 38 f1 2c 71 ef 9f c3 d6 77 09 8e 4c 77 00 1f ca 8f 65 17 d4 7f 58 9f 54 73 8d 04 a4 81 22 ba 9f f7 6a de 8f 1c 8d ae 5a 46 1b 69 13 0c 30 07 fc e6 b6 57 e2 0c 5d 2f bc 2b 32 60 74 42 ae 4f d2 a7 b2 f1 87 87 2f ef ed ad e2 d2 ae ed 6e a4 95 76 3b c1 80 0e 7d 73 4e 34 ec ee 98 a7 59 b5 aa 33 7c 23 a2 4f 37 89 af 64 9a 46 6b 58 2e 19 f0 4f 05 83 70 29 be 29 64 7f 10 5d 98 ce 70 dd bd 71 4d 4d 57 4f d0 3c 5b 72 8b e2 04 8e 07 9d da e2 29 63 65 Data Ascii: c7d8zsT:gjG~G(g!JC@GZQ&\NMb$Km*j&^3a2L?8,qwLweXTs"jZFi0W]/+2`tBO/nv;}sN4Y3\|#O7dFkX.Op))d]pqMMWO<[r)ce
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: b1 01 54 76 01 b9 e0 fa 54 26 35 70 5b 00 7a 1c 56 86 90 ca 35 5b 66 39 1b 5b 1f a5 34 1b 1d 7e a7 79 3c 9a 25 c8 4b 77 0a 57 04 9c 0c 57 43 1c ac cc 13 05 40 8d 70 4f 43 f2 8a c2 d4 06 74 7b b6 f2 8c a0 af 2e 1b 18 1d ce 2b a1 8f 77 d9 11 9b 03 e4 5c 1f 6c 0a ce 4e d1 34 82 f7 d0 88 f8 6f de 3e 06 6a 2b 89 77 e3 d8 f1 ef 4a b2 72 41 20 b7 a0 a6 48 11 b8 63 f3 76 15 85 d9 ba 48 a9 3d ba 12 64 2c 73 e8 7a 57 31 e2 19 5d 4a 5b c0 ca 4b 1f 98 ef 1f 2f b7 5a eb 64 66 d9 b5 0a 92 3b 62 bc d3 59 46 1a f5 ce ee bb c7 6c 62 b7 a3 67 23 0a ed c6 36 43 05 9c 83 52 66 c2 e3 7f f7 87 af d6 bd 31 a1 96 5d 23 57 86 25 dd 23 43 1e 06 40 cf ca 2b c9 a7 2c ba 94 c7 3f c4 7f 9d 7a 85 ec 84 78 77 55 23 8d d6 b1 1f fc 74 55 d6 d8 e4 8f 53 88 16 17 d6 eb 79 1b 42 41 64 e9 90 Data Ascii: TvT&5p[zV5[f9[4~y<%KwWWC@pOCt{.+w\lN4o>j+wJrA HcvH=d,szW1]J[K/Zdf;bYFlbg#6CRf1]#W%#C@+,?zxwU#tUSyBAd
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 92 38 f1 d4 2e ec 74 ed 59 ae f3 a5 d3 b2 a0 6c 2f 08 87 76 c1 fd de 2a 79 6e 3b db 73 65 ae a2 80 a4 02 74 90 29 c0 55 5e 59 86 71 f4 eb cd 55 b8 ba 55 91 9e 65 11 5c 10 49 f9 00 c9 1e b8 c7 1f 85 46 d3 88 74 fb 49 96 2d 92 c4 d9 66 29 f3 36 7b 03 9e 98 a6 dc 46 d3 30 4c 97 9b 70 21 dc 72 c3 ae 08 f4 a7 61 5c 79 be 59 08 7d e5 c0 53 94 27 e5 e0 f4 1f 95 56 95 84 17 1b a4 46 58 f7 6e 0a 79 55 ef 56 16 d9 da da 6f 2e 32 19 00 de be f8 eb 8c 55 86 b2 6d 44 b2 ca aa aa 14 15 2c 3e f1 ed f8 e0 d0 ad 71 95 a4 ba 20 dc cc fb 54 33 29 4d c7 2a dd a9 b1 ce 0c 0f 16 d4 55 76 c4 8c 46 32 bd 9b db 9c 54 77 a9 20 b7 00 85 d8 cd e5 49 b0 e0 82 01 db c7 4c 7f 85 5c b8 86 2b 34 59 6e 80 68 e4 8c c4 f8 07 e6 61 ce 47 3e c2 9d 95 84 ae 59 fb 24 8f 04 73 2b 3b c7 23 7c e6 Data Ascii: 8.tYl/vyn;set)U^YqUUe\IFtI-f)6{F0Lp!ra\yY}S'VFXnyUVo.2UmD,>q T3)MUvF2Tw IL\+4YnhaG>Y$s+;#\|
2025-01-08 11:43:11 UTC	2016	IN	Data Raw: e8 d9 da b5 9c 49 08 da 0e 3a ed 07 bd 29 8d 0b 13 2c 6a 40 c0 ce 39 aa d6 7a fd bd d2 05 93 09 20 e3 d8 d6 98 0b 37 70 47 51 8f e7 5c 8f 9a 3b 83 93 2b 04 81 fe 6f b2 8e 38 0d 9a 99 0c 39 0c 61 c8 51 d3 27 f2 34 e9 61 88 26 df 9b 9f 4a 81 63 11 0f 95 8f 1c 0f 7f ad 2b 87 b4 b0 1b 38 af 4c a5 a1 19 61 9f 9b 81 8c f4 ab 02 da 06 80 a3 47 95 38 03 1c e3 e9 51 20 66 e7 71 db d3 8e 2a 55 75 8d 31 96 39 e3 02 8b b0 f6 8c 8d ec 61 77 fd e5 bc 6e a4 00 1d 87 23 15 42 13 e6 c2 d1 a2 8d ca 70 a3 1d b3 5a c9 32 94 39 04 12 08 03 a5 65 e9 ea 02 33 83 8e 48 15 a4 1b 7b 90 e5 76 6b d8 5b b2 c1 b5 d7 a7 42 0e 08 ad a5 77 6b 7d b9 1d 00 e0 7e b5 99 66 a5 20 dc 70 4f eb 57 e3 91 b0 01 21 57 b7 15 a2 1f 42 50 36 4e c0 92 db 87 ca 0f 38 a8 2e 66 30 1f 95 f0 a3 91 4f 79 18 Data Ascii: I:),j@9z 7pGQ\;+o89aQ'4a&Jc+8LaG8Q fq*Uu19awn#BpZ29e3H{vk[Bwk}~f pOW!WBP6N8.f0Oy
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 34 36 38 39 0d 0a 94 83 53 bf 51 93 33 8f 53 ef 4b ea ec 7b a3 b5 24 81 92 71 c0 c8 c5 21 0e 01 6e b9 e7 8e c2 b8 e5 d5 ef bb ca 5b 07 3c 8a 95 b5 eb d0 48 00 72 38 a4 e8 48 9b 1d 60 57 f2 d4 92 57 27 a9 a9 1b 26 20 0b 70 32 41 f5 ae 6e 3f 11 9f 2d 15 d1 b7 0e be 99 a9 0f 88 d0 ae 0a 37 5a 9f 63 31 f2 9b d0 36 d2 40 c1 38 e6 9a ce 41 c8 0d 92 7d 2b 0d 3c 48 bb c1 31 60 0e a4 75 34 f3 e2 58 5d c9 d8 fc 1e 3b 64 51 ec a5 d8 2c 6d ef 61 8c 1c 03 8c 13 43 c8 c5 0f 07 76 71 8f 5a c9 5f 10 5a 4a a0 18 d8 73 91 9e d4 ef ed bb 36 24 b1 39 1d 38 a9 f6 72 ec 34 69 ab 85 27 8e 48 c0 18 e9 e8 69 b2 dc c8 06 d4 c6 e1 f7 89 eb 8a a2 9a dd 96 4f ce fc 75 e3 83 4e 6d 5b 4f e0 89 86 4f a8 a3 91 ae 82 2d 8b 87 38 28 b9 04 72 41 a7 09 24 e7 03 24 0e 84 55 35 d4 6c 77 16 33 Data Ascii: 4689SQ3SK{$q!n[<Hr8H`WW'& p2An?-7Zc16@8A}+<H1`u4X];dQ,maCvqZ_ZJs6$98r4i'HiOuNm[OO-8(rA$$U5lw3

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	688	OUT	GET /xdata/images/hotel/max1024x768/403535926.jpg?k=edb6aea00676401723dcbc70c5f165069870f4206fcbbd4fcd6fe3a1f2453b17&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:11 UTC	538	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Wed, 08 Jan 2025 11:43:10 GMT ETag: "a4282a580339d760b4a2962876773b9f918577fc" Content-Language: 112301 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Miss from cloudfront Via: 1.1 964525de46241eae6ff9f5fb91498662.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: iIou49n9Ajj6f1Nn7A_NHjl-027RoN23gv--YxNLD5QB5cYtYS-WDw==
2025-01-08 11:43:11 UTC	15846	IN	Data Raw: 36 35 66 61 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 02 ab 04 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 Data Ascii: 65faJFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222"}!1AQa"q
2025-01-08 11:43:11 UTC	10268	IN	Data Raw: 5e df a5 74 41 28 c6 cc cd b6 69 b6 97 bf fd 2f ed b1 cd 6a ca 65 64 6e 72 7a 91 8c d5 dd 3e 28 e3 49 2e 3e d0 8c e4 03 b7 81 b4 1f 6a ce d1 ee a4 48 2e 15 ad d5 bc b1 bc 12 a4 fd 7f 0a 96 da 41 3c 72 dd 7d 96 34 3d 5b 96 00 1e 83 19 a9 9d ca 4d 74 37 6d 1e 32 c4 c7 80 1b 93 b7 d7 de b4 c2 a4 aa 4b a6 e0 07 4c 66 b0 b4 65 0b 07 94 fb bc d2 77 31 3d c9 27 fc 2b 7e 16 5c f9 6a c0 c8 06 48 ee 05 0b 6b 1a c7 62 ab c7 69 ac ab 43 f7 42 30 66 00 60 83 da b9 cb bb 59 e1 ba 30 b1 89 d8 10 5b 69 00 ff 00 fa f1 5d 8c a6 1b 48 a5 9c 80 b8 1b 9c 81 c9 c7 f3 ae 5e 5d 3d 2f 6e 0c f1 c8 4c d3 36 4b 67 8c 1e df 95 67 24 ae 44 d1 4a 1d 32 4b e2 63 43 1a 31 1c 1d dc 93 9e 9f fe aa b7 79 a2 45 69 32 cd 2d c3 ec 58 f2 23 27 9f 7f e9 57 e1 b4 93 4a d5 e3 2f b6 2b 4d db 43 16 Data Ascii: ^tA(i/jednrz>(I.>jH.A<r}4=[Mt7m2KLfew1='+~\jHkbiCB0f`Y0[i]H^]=/nL6Kgg$DJ2KcC1yEi2-X#'WJ/+MC
2025-01-08 11:43:11 UTC	8398	IN	Data Raw: 32 30 63 36 0d 0a dc 7b e3 b5 6d 63 06 74 09 e2 2f 38 b0 bb b2 82 54 1d f1 83 fa e6 89 25 f0 fc e0 34 f6 0f 01 27 ef 46 7f c2 b2 21 41 2c 38 0d 86 3d 78 cd 42 c5 15 4c 6c df bc 53 9c 52 4c 0d a6 d1 b4 4b 8e 6d b5 46 88 9e d2 1f f1 c5 31 bc 25 73 b7 74 17 30 5c 2f 6e 48 35 8d b1 71 9c e7 d2 a6 8a 59 22 3f bb 91 94 7f b2 48 a7 71 58 92 7d 0b 53 87 ad 9c 84 0e e9 86 1f a5 67 c9 1c 91 1c 4b 13 a1 ff 00 69 48 ad b8 75 7b f8 7e ed cb 9f 66 e6 ad af 88 ae 48 c4 f0 c3 28 f7 5c 51 70 b1 ca f0 7a 1a 72 6e 53 95 c8 27 b8 ae 9c de e8 d7 03 17 3a 62 a9 3f c5 1f f9 14 cf ec ed 02 e0 fe ea e6 6b 76 f4 27 8f d6 9d c5 63 98 05 d3 a1 2a 7d b8 a7 ce e8 e6 32 83 04 20 0d ee 45 74 4f e1 91 2f 36 da 84 32 ff 00 bc 3f c2 a8 4d e1 8d 52 21 91 0a 48 07 f7 18 51 a0 9a 31 cf 7a 4e Data Ascii: 20c6{mct/8T%4'F!A,8=xBLlSRLKmF1%st0\/nH5qY"?HqX}SgKiHu{~fH(\QpzrnS':b?kv'c*}2 EtO/62?MR!HQ1zN
2025-01-08 11:43:11 UTC	8951	IN	Data Raw: 32 32 65 66 0d 0a 6e dc 3f cf ad 57 16 53 da 3c b1 58 c6 a0 32 64 3b c8 48 dd e8 07 6a 86 de ec ec 53 f3 37 e1 56 92 ed 0b f3 b9 48 1d e8 69 33 4d c8 6c b4 42 6f 2d f5 29 62 11 dc e3 f7 83 3f 2f 4c 70 3b 7a d7 50 0a 01 d7 39 eb 58 86 f3 b7 cd ed e9 40 bd f5 dd e9 54 ac 86 a3 63 74 14 09 b5 76 81 8c 00 29 14 aa e4 16 03 bd 63 7d b7 9e 8d f8 51 f6 d2 46 76 9a 2e 3b 1b 5e 6a 01 d6 91 a7 5c f5 ac 51 74 cf d2 33 d2 93 ed 0f ff 00 3c e9 73 0e c6 c1 b8 4f 51 4d 69 e3 c7 35 95 e6 48 79 d9 8f c2 91 a4 95 50 b0 4e 07 3d 28 b8 58 be 5c 3b 60 e5 7d 29 92 d8 c7 c3 b3 9e 0e 78 18 aa 36 f7 8f 2b a8 68 99 41 6c 64 8a b5 7f 78 d1 85 89 63 2c cd ef 8a 13 02 d7 9e a1 78 a4 fb 48 f4 ae 52 7d 72 e8 bb 2a 5b aa ed 38 e4 93 50 1d 62 fc 3e 31 1e d1 d4 f3 56 a2 c8 72 48 ec be d6 Data Ascii: 22efn?WS<X2d;HjS7VHi3MlBo-)b?/Lp;zP9X@Tctv)c}QFv.;^j\Qt3<sOQMi5HyPN=(X\;`})x6+hAldxc,xHR}r*[8Pb>1VrH
2025-01-08 11:43:11 UTC	12794	IN	Data Raw: 33 31 66 32 0d 0a 5b 69 b0 b5 94 04 6e 04 c6 bd 1b da a4 3a 5f 1f 2c cc 3e b8 ae c5 17 63 9b 99 18 7f 64 94 1f dd dd ce bf f0 2c ff 00 3a 90 47 7e 83 8b cd df ef c6 0d 6b 8d 26 7c f1 3a 7e 2b 48 da 75 c8 e8 d0 b7 e2 45 16 1f 32 32 4b ea 28 32 3e cf 27 d5 4a d5 8b 29 ae 65 95 96 78 11 00 19 05 18 9c fe 95 6c d9 dc af 26 34 23 fd 97 14 b1 44 e8 d9 65 2b db b1 a9 96 c3 4d 36 4a a2 ac 5a 7f ae 6f a5 24 0a 08 39 19 ab 11 28 0e 48 18 e2 b3 46 8c a7 ac 4a f1 5b a3 24 46 42 5b 90 3e 95 8a 75 26 5f bf 6f 32 fd 06 6b 73 56 96 38 e2 8f cc 75 50 5b 8c 9c 73 59 82 48 9c 7c ae a7 e8 6b 48 ec 44 b7 2b 0d 56 1e e6 45 ff 00 79 69 c3 52 b7 6e b3 2f e3 53 95 46 18 eb 51 3d b4 4d d5 14 fd 45 51 23 7c f8 24 e8 62 3f 88 a3 6c 4d fc 0b f8 1a 8d ec 2d 8f 58 57 f0 e2 a2 6d 36 00 Data Ascii: 31f2[in:_,>cd,:G~k&\|:~+HuE22K(2>'J)exl&4#De+M6JZo$9(HFJ[$FB[>u&_o2ksV8uP[sYH\|kHD+VEyiRn/SFQ=MEQ#\|$b?lM-XWm6
2025-01-08 11:43:11 UTC	6404	IN	Data Raw: 31 38 66 63 0d 0a 9e 32 42 83 8e 38 aa d7 27 fd 0d 47 a1 15 34 44 f9 6a 3d 06 69 30 33 6e 46 e9 1f 23 a1 a0 93 08 0d 8f 94 1e 47 b1 a6 dd 31 5b 87 f4 e2 a4 73 98 fb 9f 97 34 30 29 ea 7f 20 04 63 ae 41 aa b1 b2 ad c8 90 74 70 5f f9 7f f5 ea 7b b1 ba d8 02 dd 06 53 3f ca aa 44 77 05 c7 44 cf e4 47 f8 81 f9 d6 33 5d 4c e5 b9 b3 f6 94 8e e6 47 6e 56 34 1f 99 ff 00 22 88 a3 39 17 32 0c cb 27 fe 3a 3d 2b 2e da 63 2c 84 b7 dd df 9e 7b f6 02 b5 26 ba 54 e3 3d 06 6a d1 68 b2 a4 6f fc 71 59 9e 22 6f f4 1b 7f 75 6f e6 2a d4 73 6e 88 3b 71 96 aa 5a ff 00 3a 7d ae 3d 1f ff 00 42 15 6b 71 bd 8e 7e 30 0f 1f ad 5a 8e 43 b1 95 4f cb 80 0f bd 57 83 01 72 54 fa 13 56 23 0a 10 86 c7 e7 56 41 28 6d ac 32 48 f6 a9 8b af 60 00 1e b5 4d 48 32 0c e3 22 ad ee 1b 39 41 f5 a6 84 c4 Data Ascii: 18fc2B8'G4Dj=i03nF#G1[s40) cAtp_{S?DwDG3]LGnV4"92':=+.c,{&T=jhoqY"ouo*sn;qZ:}=Bkq~0ZCOWrTV#VA(m2H`MH2"9A
2025-01-08 11:43:11 UTC	12800	IN	Data Raw: 33 31 66 38 0d 0a f6 43 58 a4 8c 9a d9 d3 b1 f6 58 bd 3e d2 3f f4 03 58 c4 4f 61 d6 d9 69 2e 54 63 27 81 9f c6 ac 1f 0b ea 66 35 75 48 d9 59 03 82 ad 9e bd a9 34 f5 8c de 4b bb a1 71 9f cc d6 e5 a4 3b ad a2 3b 9b e5 49 6d c8 dd 8e 8d c1 fc 31 57 ca 9e e0 8c 48 bc 2d 7a 5a 41 21 0b b5 0b 61 54 9e 71 c0 ae 63 51 f0 cd c6 ab a8 41 63 71 6f 24 12 4b 1c 8d 1b b2 73 95 19 fc ab d2 b5 49 a4 b7 d3 9e 21 23 0c 32 c6 08 eb c2 8c 9c d7 27 04 b2 cd e2 4d 11 dd e5 6c db cd f7 df 3e bf e1 49 45 5c 77 3c 7e fa c6 e3 4c b9 31 4c 8c a4 72 33 dc 56 85 a5 ec 77 b6 c2 ce f0 8d c0 62 29 4f 55 f6 3e d5 e8 9a 86 89 06 b5 a4 ac 52 00 b2 a8 f9 24 c7 23 da bc bf 54 d2 6e b4 6b c3 0d c2 15 e7 e5 3d 88 f6 a9 69 4f 47 b8 9a 71 d5 10 5d db c9 69 3e 08 23 9e 2b a0 8f 52 6d 67 4b 8e 19 Data Ascii: 31f8CXX>?XOai.Tc'f5uHY4Kq;;Im1WH-zZA!aTqcQAcqo$KsI!#2'Ml>IE\w<~L1Lr3Vwb)OU>R$#Tnk=iOGq]i>#+RmgK
2025-01-08 11:43:11 UTC	12131	IN	Data Raw: 32 66 35 62 0d 0a 1f 5a d1 f3 bc 95 16 cb 13 94 09 b9 40 3d f1 cd 63 08 36 5e 24 e2 e1 7c b2 fb 8a 1e 3b d6 f4 f7 7a 53 44 c6 29 64 12 15 c0 c7 af 7a 39 43 99 1a 83 c7 17 41 be 7b 38 09 f6 c8 ac 57 f1 24 91 78 a8 6a 69 68 37 90 01 8d 4f 07 e5 c7 5a cd 6f f8 fb 23 e9 50 3f fc 7d 83 dc e6 a5 b6 52 49 1d 14 3e 2f 6b 71 a6 16 b1 f9 ac 9d f0 4a 9f 98 30 23 1d 3d ff 00 4a 95 3c 6e 12 db 52 b7 fb 18 db 78 ee fd 0f c9 b8 01 e9 f8 d7 3e fb 95 7b 8f c2 90 13 83 eb 8a 39 98 59 1d 14 de 39 4b 8d 2e c6 d0 da 1f f4 69 22 7d d8 38 6d 98 f6 ef 8a 67 88 fc 55 65 ac 69 cb 6f 1e 9c d6 ee 65 0f e6 15 fa fb 7b d7 2c 92 90 70 79 e6 9d 70 e1 91 71 eb 43 94 ac 1c a8 ef ac 3c 67 a5 5b d8 5b 45 26 96 19 e2 89 50 b6 d5 e4 80 06 6a f2 7c 42 d3 94 61 6c a5 51 e8 36 ff 00 8d 79 c2 91 Data Ascii: 2f5bZ@=c6^$\|;zSD)dz9CA{8W$xjih7OZo#P?}RI>/kqJ0#=J<nRx>{9Y9K.i"}8mgUeioe{,pypqC<g[[E&Pj\|BalQ6y
2025-01-08 11:43:11 UTC	15347	IN	Data Raw: 33 62 65 62 0d 0a 63 76 18 0a e9 6c 75 69 3e cf 0c 66 16 2c 46 01 28 46 7f 1a b7 7b 0c f7 fa 55 d4 2e 8b 1b 34 64 29 cf 7c 54 38 b5 a9 4a 57 d0 e2 ed 34 25 7d 2d 35 03 77 2f 2b 92 85 46 2a 29 30 22 39 a9 34 7b c9 ce 8b 71 6d 21 f9 51 82 81 e9 48 b6 b2 de c9 f6 78 00 2e 47 7a 71 ee c1 95 34 ed 02 3d 70 4c de 73 a3 a1 c0 da 32 3f 1a 95 bc 01 75 9f f8 fc 88 ff 00 c0 4d 6b 78 2e 0b a8 35 1b db 79 a3 d8 23 38 70 4f 7a ed fc b5 f4 15 12 5a 8d 3b 68 78 f5 c7 87 67 b5 d4 e2 b3 77 8d 9d d7 e5 61 9c 57 a0 5b 68 50 7f 66 43 0d c4 31 bb 22 60 9c 56 47 88 7c e4 f1 6d 88 58 b8 23 e5 3e be b5 d7 4b 70 b6 d1 20 61 92 47 41 d6 87 d0 67 31 7f a1 d9 d8 e9 97 7e 5c 7f 2b 21 24 13 9c 1c 55 6f 0c e9 91 b6 90 8e d9 c9 e7 d2 af 78 96 fd 2d f4 79 f6 db 9c c9 c1 27 f5 a9 fc 2a fb Data Ascii: 3bebcvlui>f,F(F{U.4d)\|T8JW4%}-5w/+F)0"94{qm!QHx.Gzq4=pLs2?uMkx.5y#8pOzZ;hxgwaW[hPfC1"`VG\|mX#>Kp aGAg1~\+!$Uox-y'
2025-01-08 11:43:11 UTC	9434	IN	Data Raw: 32 34 64 32 0d 0a 92 e2 46 cf 56 26 ba 8f 07 69 b3 de 5c 3b c5 c0 5c 64 9a d6 3a 5a e4 cf 56 ec 7a 75 9d d4 a5 11 4b 03 9a b3 74 b2 34 79 55 c9 aa 16 ba 6d dc 32 21 69 14 a8 eb 5b 43 a5 13 6a f7 42 8a 76 d4 ca 82 73 e7 2c 6d 19 1c f7 15 a6 cb 95 cd 2b 05 ea 71 47 51 50 dd c6 95 8c 62 4c 97 0c aa 0e 73 5a 16 d6 c6 33 bd 8f 3e 95 61 63 40 72 00 04 d3 e9 b9 5f 40 51 b0 51 45 15 23 0a 28 a2 80 0a 31 45 14 00 62 92 96 8a 00 6e d1 e9 49 b1 41 c8 14 ea 28 01 31 49 8a 75 25 00 34 d2 11 4e 34 94 00 dc 53 4a d4 94 98 a4 32 22 99 15 87 ad 69 cb 73 6c ea c3 20 8a e8 48 aa 1a 81 cc 2d f4 a4 ca 8b d4 f0 7d 42 1f b2 5e cb 0f 60 dc 55 32 49 38 15 b9 e2 98 3c bd 51 9b fb d5 86 80 6e ce 2b 48 bb a2 26 b5 2f da 69 c6 7c 67 35 34 ba 1c ab ca e6 b5 f4 52 a5 57 22 ba 31 04 6e Data Ascii: 24d2FV&i\;\d:ZVzuKt4yUm2!i[CjBvs,m+qGQPbLsZ3>ac@r_@QQE#(1EbnIA(1Iu%4N4SJ2"isl H-}B^`U2I8<Qn+H&/i\|g54RW"1n

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	688	OUT	GET /xdata/images/hotel/max1024x768/103458436.jpg?k=d899d024426a44b719c2433b7f6a68d645a2737f2703ff05ee587174bc6fe812&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	537	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Wed, 08 Jan 2025 11:43:10 GMT ETag: "1f6f996d1973024ec1fb39a458d7e1bb5645936f" Content-Language: 49002 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Miss from cloudfront Via: 1.1 64c8688da1fd73389eb91af90ae83792.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: UY52gHKDMm7VUAEZ6SPgpssiaYSyg1LSzlX0sxxb6m5qS9_RUTfDzg==
2025-01-08 11:43:10 UTC	15847	IN	Data Raw: 38 33 37 37 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 01 5b 04 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 Data Ascii: 8377JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222["}!1AQa"q
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 23 2a 45 44 a4 c4 db 4e 71 53 d3 64 53 c1 1d 45 08 46 c5 84 a9 79 09 b5 9d e3 0c 17 11 3b f2 71 dd 7f 0c 64 7d 31 de 97 cb 96 fb cb 49 d9 51 e2 90 db 49 23 b7 0a 18 60 31 3f 5f e5 ef 58 2c ed 1b 06 52 55 94 82 0e 7a 1f 6a eb 6c 24 87 52 b1 9d 76 98 de ea 00 98 50 4e 65 43 c0 03 f2 fc eb 29 ae 5d 51 6b 53 9b dc b1 07 8d f2 62 6e 1d 40 19 04 77 1f 43 4f d4 61 7b 7b 85 c3 e7 ce 8d 5c 60 7a f5 fd 73 53 6a 2a 81 e1 92 38 ca 19 a2 59 1b 27 bf 43 ff 00 8f 03 4b 2e 27 d3 62 97 0e d2 c4 36 6e 63 9c ae 4f f2 e3 f3 aa 4f 66 49 44 61 10 63 83 dc 9a 55 22 38 64 94 af 2c 36 27 e3 d4 fe 5f ce 90 e3 ab 1d c7 d2 ae ac 08 10 4f 73 cc 31 7c bb 06 72 ed d7 03 fa d5 37 61 1d 87 c3 4d 76 df c3 96 97 f3 dc e4 49 73 b5 23 e3 3c 0c e4 fe 67 15 89 e2 4d 73 fb 4f 58 b8 36 f2 06 84 Data Ascii: #EDNqSdSEFy;qd}1IQI#`1?_X,RUzjl$RvPNeC)]QkSbn@wCOa{{\`zsSj8Y'CK.'b6ncOOfIDacU"8d,6'_Os1\|r7aMvIs#<gMsOX6
2025-01-08 11:43:11 UTC	1432	IN	Data Raw: 76 56 76 93 a2 db f9 d1 0c 42 a4 28 cf 24 93 d7 9a c9 f1 46 ef 36 db 28 a9 c3 74 39 27 a7 5a 4a 6d e8 37 1b 6a 64 ee 2f 1a 16 e1 8e 47 d7 15 34 a0 f9 4f 56 34 dd 39 b5 0b 53 b7 1f 23 77 a6 5c c0 d1 c7 72 32 0f 95 f2 9f ae 7f fa d5 5d 84 ba 95 6d 2d da 6d 52 18 b9 02 49 14 1f d2 bd 2d ce d9 d4 70 05 70 89 63 33 c5 14 f0 ae 1f a8 6c f3 56 e1 b9 d6 52 e9 5a e2 77 31 83 d9 01 fe 95 a2 9a 48 8e 57 73 ad d4 6d be d9 a3 dd c1 bb 6e e0 08 38 ce 30 c0 ff 00 4a c6 82 c2 38 e0 55 77 24 01 c9 20 0a b1 1c d3 cb 16 e6 95 f6 9f e1 da 01 3f 85 28 88 93 b9 cf 03 a0 c7 03 fc 6b 96 72 bb 36 8c 74 22 16 28 46 79 da 07 47 e4 9f f0 a9 c4 2a 9d a3 fa 05 c5 12 24 98 18 6e be a2 88 91 d3 92 80 8f f7 aa 2f 72 ac 91 ce c0 3e 74 3e ae 3f 9d 76 d6 b0 97 b4 04 9e 54 02 47 a6 4e 2b 8f Data Ascii: vVvB($F6(t9'ZJm7jd/G4OV49S#w\r2]m-mRI-ppc3lVRZw1HWsmn80J8Uw$ ?(kr6t"(FyG*$n/r>t>?vTGN+
2025-01-08 11:43:11 UTC	849	IN	Data Raw: 33 34 61 0d 0a 3f d8 ac ed db 3c dc 73 b7 1f 9f f2 a9 ae fc 69 72 f9 10 46 91 0f 5f bc 6b 06 f3 5b bc bc c8 96 e1 dc 1e d9 e3 f2 a3 98 a5 16 3a e6 cb 58 98 ff 00 c4 d3 c4 e5 7d 61 b5 e0 9f c4 7f 5a 21 b9 b6 b0 8f c9 43 3d da 67 3b 6e dc 3a e7 d4 03 d2 b3 24 99 8f 7c 54 5c 96 e4 d4 5c bb 1b 57 9e 29 d4 27 8c af 9e 63 4c 60 2c 63 1c 56 1c b7 52 ca df 33 92 4f 39 27 34 d9 7a 80 2a 31 d4 d0 3b 58 6b 12 5b d4 9a 7c f1 62 e0 44 3a e1 47 e9 4b 02 ef 97 38 ee 00 a7 4d 75 6b 1e ad 23 5c 5c 47 12 a9 e3 71 a0 47 47 63 6e 22 d3 5d 7f bc a7 3f 96 2b c8 7c 69 6a b0 6a f0 dc a8 c7 da 62 cb 7f bc a7 69 fd 02 d7 ad 27 88 74 05 80 a9 d4 d7 ee e3 88 98 ff 00 4a f3 df 19 43 15 d6 82 97 d0 b0 90 5b dd 10 1b 1f c0 e3 fc 40 ab 0e a7 0b 4b 4d cf 34 66 a4 a1 d4 b4 94 50 07 63 e0 Data Ascii: 34a?<sirF_k[:X}aZ!C=g;n:$\|T\\W)'cL`,cVR3O9'4z*1;Xk[\|bD:GK8Muk#\\GqGGcn"]?+\|ijjbi'tJC[@KM4fPc
2025-01-08 11:43:11 UTC	14513	IN	Data Raw: 33 38 61 39 0d 0a d3 56 d0 95 57 53 cf ca 8a 8e 24 02 67 c0 eb cf 02 bd 2d bc 2b a3 e4 13 62 3f ef b6 ff 00 1a 60 f0 de 92 ac 48 b0 8b f5 ff 00 1a 85 4d 96 ea a3 cf 0c 64 e7 0b 59 2a ad 1e ab 75 0b b7 96 1f 6b ae 4f 6c 73 8f c6 bd 61 f4 4d 34 7f cc 3e 1f fb e6 b2 ee fc 37 a5 5d cf 99 74 f8 48 4e 9f 20 ef 57 18 ae a4 4a 6d ec 79 cd b8 17 5a 8b ca b2 66 24 51 18 6d df 78 f7 c5 6a 2d bc 65 7f d6 03 ef ba ba f8 74 6b 1b 77 d8 96 50 a8 1d 30 82 ac 7d 96 18 d7 09 6f 18 fa 20 15 4d 21 29 b3 cd 2f 63 22 f3 6c 28 5f 8c fc a3 35 ad 61 64 f2 c1 ba 54 31 30 e3 0c 9d 7d eb a8 9e 22 5f 3b 40 fa 0a ac d1 63 ff 00 d5 5b c6 ab e5 48 c2 51 bb b9 8d 71 a5 ab c2 e9 e6 01 b8 63 21 6b 34 68 70 21 f9 9d d8 fe 55 d2 49 1d 53 75 e7 a8 a5 29 36 34 ac 63 9d 2a d5 7f e5 99 ff 00 be Data Ascii: 38a9VWS$g-+b?`HMdYukOlsaM4>7]tHN WJmyZf$Qmxj-etkwP0}o M!)/c"l(_5adT10}"_;@c[HQqc!k4hp!UISu)64c
2025-01-08 11:43:11 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	688	OUT	GET /xdata/images/hotel/max1024x768/107841181.jpg?k=3e679d59265403a41b5ada6fbfc92d5abd529fd41fbb85462c8bff33eed9c78e&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	548	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Tue, 07 Jan 2025 09:10:32 GMT ETag: "98619a3fd79789793aecc1b818514a277368343c" Content-Language: 98157 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Hit from cloudfront Via: 1.1 04d30d89cfeb7f513dc1f5b2d3c605d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: NqDJ3gfIokwIe1CM9onKbRXtvBIQl9ccGqRf6GDMv1Z8eaJ7rwRyLg== Age: 95558
2025-01-08 11:43:10 UTC	16384	IN	Data Raw: 38 62 62 36 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 02 a9 04 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 Data Ascii: 8bb6JFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222"}!1AQa"q
2025-01-08 11:43:10 UTC	16384	IN	Data Raw: ad 5d 14 d6 d6 39 56 2a 50 95 af 74 72 7f 2d 3e 18 5e 79 36 46 85 8d 69 ea 76 51 45 18 92 15 2b ce 0a 8a a5 65 72 6d 6e 03 ed 25 4f 07 35 8f 25 a5 66 75 aa bc d0 bc 48 5e 19 12 4f 2d a3 c3 fa 52 cb 6b 71 0a 86 95 0a 03 d3 35 bb 26 5a e6 0b a8 c6 e1 d0 91 e9 52 dc 42 b7 51 6c 97 76 de b9 cd 6b ec 56 a6 1f 5a 69 ad 3d 4e 5f 1e ac 6a c5 b5 84 b7 6a c5 30 00 e3 2c 7b d1 15 a9 b8 ba 30 c3 ea 70 49 c7 15 b5 05 bc 7a 6c 04 49 38 19 39 e7 fa 54 42 9d de bb 1a 55 ad ca bd dd d9 cf c9 1f 93 21 46 51 91 4c dd e9 8f c0 57 47 14 56 57 ce ce 02 b9 e8 49 53 58 d7 56 af 0c ce 0a 30 4c f0 69 4a 93 8e a8 74 ab a9 fb af 46 45 6f 70 d6 d3 ac a1 77 63 b1 a9 ee 75 59 a7 5d 8a 3c a4 ef 83 c9 fc 69 d6 16 11 dd 89 37 31 05 7a 60 55 59 63 68 65 68 c8 c1 06 8f 7e 31 d0 76 a7 39 eb Data Ascii: ]9V*Ptr->^y6FivQE+ermn%O5%fuH^O-Rkq5&ZRBQlvkVZi=N_jj0,{0pIzlI89TBU!FQLWGVWISXV0LiJtFEopwcuY]<i71z`UYcheh~1v9
2025-01-08 11:43:10 UTC	3006	IN	Data Raw: 32 7a 9a 7c f2 6f 62 4f d2 a2 0c 31 9c 8c d4 4b 73 58 2b 22 39 09 47 3c f0 6a 1e f9 e0 d3 9d cb 35 37 a7 d7 bf 15 9b 35 43 18 67 a5 20 f4 c5 23 e7 38 14 f8 d0 e7 3e 94 ae 51 3a 1d a0 0c f6 a7 0c 83 9a 68 07 bd 38 02 70 7b d5 12 29 df d7 34 cc 95 fa 1a 90 03 8a 63 03 9c 10 0d 20 14 03 b5 c8 3c 60 71 f8 8a 5c 92 b9 cd 34 73 1b f4 ed 4c c1 19 e9 43 d8 16 e3 c9 e3 bf d6 9a 49 1c 67 8a 6f 39 c0 22 98 db 8f a5 4d 91 77 1c 4b 77 1f a5 30 93 c6 06 28 25 bd 38 a6 1c f6 06 95 86 29 ec 79 a0 31 e7 93 f9 d3 72 d8 e6 9a 0b 83 ce 69 58 63 cb f3 8a 0c 87 b9 a8 d9 db d0 d2 6e 63 d7 3f 4a 56 19 20 23 d4 d3 19 b9 c6 68 2d 81 ef 51 16 6c e6 9a 06 39 9b dc d3 ec a4 c5 ea 1f af f2 35 58 b9 6c d4 d6 79 5b 95 24 76 27 f4 35 70 dc ca 7b 08 1c 86 27 3d e9 e5 77 e3 9a aa c5 b7 1e Data Ascii: 2z\|obO1KsX+"9G<j575Cg #8>Q:h8p{)4c <`q\4sLCIgo9"MwKw0(%8)y1riXcnc?JV #h-Ql95Xly[$v'5p{'=w
2025-01-08 11:43:10 UTC	12794	IN	Data Raw: 33 31 66 32 0d 0a 39 0c 50 a8 65 03 9c 71 5d 11 9f 34 52 65 db 96 5c cb 6b 1c 4f 8c 6d 24 b7 d1 61 76 fe 29 87 1e 9c 1a e4 62 63 c6 6b d0 bc 7d 01 3a 13 4c ec c3 f7 a9 b1 58 74 1c e6 bc d5 58 8c 73 5e ae 19 72 c6 c7 05 59 39 bb b3 52 27 dd 2a f7 c2 9c 9f ca b4 62 95 42 65 8d 66 e9 d6 d7 77 b7 1e 55 a4 0f 2c 81 0b 90 83 3c 0c 64 d4 bf 32 39 59 01 0c a7 04 1e 31 5d 47 3b 45 f6 98 31 c8 34 8d 2e 31 55 72 0e 3a 8a 6b 39 e9 4a e1 62 e0 9b 19 f7 a8 99 f2 71 55 f7 67 a0 a3 70 4e 69 32 d1 36 00 18 c0 a8 d8 8f 41 50 fd a1 4f 19 a6 99 38 eb 52 51 15 ca ed 39 1d ea a1 27 9c f3 f8 d5 c6 3b 8f 3c d4 06 1e 49 2d f8 0a 89 26 69 16 40 7e 6e 70 2a 58 f0 30 48 a7 30 00 60 62 9b c9 15 3c a5 f3 22 50 c3 19 e6 82 72 46 0d 34 02 38 20 e6 8c f3 c0 aa b1 37 43 f6 96 19 3d 29 09 Data Ascii: 31f29Peq]4Re\kOm$av)bck}:LXtXs^rY9R'bBefwU,<d29Y1]G;E14.1Ur:k9JbqUgpNi26APO8RQ9';<I-&i@~npX0H0`b<"PrF48 7C=)
2025-01-08 11:43:10 UTC	3599	IN	Data Raw: 65 30 38 0d 0a 3f 85 49 e0 f8 ca 69 93 61 46 3c d3 d7 e8 2a 7f 1f c6 5b 52 56 51 b0 00 49 15 2f 83 ad 27 9b 49 72 80 90 65 3c 9e 07 6a ea 94 1a a3 64 73 aa 89 d6 e6 7d 8d 4f 4e 9f 9d 79 d6 b1 19 93 5b ba 3e 8e 6b d3 27 b6 9a d8 81 27 46 e0 10 72 0d 3f 46 f0 0d b4 d3 cb 7f ab a3 48 d2 b9 65 80 36 00 1d b7 63 af d2 a7 09 07 ce f4 1e 2a ac 54 2f 73 cf 7c 36 96 d6 9a e4 13 5e 6e f2 42 b7 40 4f 24 71 5d e4 97 5a 2c f2 2f 91 76 b0 76 60 ca c0 7e b5 bf 71 e0 ad 06 44 2a 34 e4 5e 3a ab b0 c7 eb 5c 4e b9 f0 f2 fa d4 3c da 54 b2 4c 9d 7c a2 d8 71 f4 3d 0d 76 54 a0 a5 b9 c5 4e b3 5f 0b 2a 78 e5 2d 17 4d 80 db df 43 3b 6f fb a8 c0 9c 62 b3 7c 07 74 d6 ba 8d cb 04 56 cc 60 72 7d eb 02 ee 0b d8 18 a5 da cc 39 e0 49 9e b5 b9 e0 e5 dd 7b 75 8e 48 45 e3 3e f5 94 e2 a9 d3 Data Ascii: e08?IiaF<[RVQI/'Ire<jds}ONy[>k''Fr?FHe6cT/s\|6^nB@O$q]Z,/vv`~qD4^:\N<TL\|q=vTN_x-MC;ob\|tV`r}9I{uHE>
2025-01-08 11:43:11 UTC	12800	IN	Data Raw: 33 31 66 38 0d 0a 44 03 3b 2d 20 1d 72 79 ff 00 0a a9 73 7f 69 08 dd 34 8d ff 00 6d 25 c0 3f 80 c5 51 ff 00 84 82 cd 78 b7 d8 c7 d2 24 dc 7f 95 3e 56 06 c7 98 64 23 17 12 bf fd 73 4c 0f ce 99 22 a9 e1 a1 c8 ff 00 a6 f2 67 f4 e6 b1 5f 56 bd 98 fe ee d2 52 3b 19 18 28 a6 6c d4 e7 3c c9 0c 59 ec a0 b1 fd 78 a2 c1 a9 b7 e6 ec 5d a9 24 71 fb 46 95 a1 a6 e8 d7 da bf 30 47 2b c5 9c 19 65 7d a9 fa 75 fc 2b 43 c3 3e 07 8f 6c 77 da c4 d2 dc 31 c1 4b 63 f2 a0 f7 60 3a fd 3a 7d 6b bf 52 8a a1 11 42 a8 18 00 0c 00 2b a2 14 53 d5 99 4a a5 b4 47 29 6b e0 4b 68 f0 d3 dc fc c7 96 10 c6 06 7f 13 93 5a d1 78 6b 48 84 01 f6 41 2f fd 75 62 c3 f2 27 1f a5 6a e4 d3 4d 6a a1 15 d0 86 db 19 1c 71 db a0 8e 18 d2 34 1c 6d 45 0a 3f 4a 76 68 34 d3 54 4d 85 cd 35 82 b0 21 80 20 f5 07 Data Ascii: 31f8D;- rysi4m%?Qx$>Vd#sL"g_VR;(l<Yx]$qF0G+e}u+C>lw1Kc`::}kRB+SJG)kKhZxkHA/ub'jMjq4mE?Jvh4TM5!
2025-01-08 11:43:11 UTC	6404	IN	Data Raw: 31 38 66 63 0d 0a 8f a0 e6 a6 4b 49 9b a8 54 19 c7 cd 57 63 f9 31 b4 92 14 67 03 8c 8a b1 2c 63 6f 98 8a 30 47 cd f4 a5 7b 30 28 25 82 71 be 46 63 9c 1d a3 80 6a d4 76 90 f9 39 8e 35 12 2f 5d c7 71 a6 f2 17 0c c4 e0 73 ee 2a 48 c9 46 dc 83 91 dc f7 14 30 1b f4 c9 ed 8f e9 4a 81 81 c8 3b 4f 6e 3f 4a b1 24 20 8f 37 7e 55 87 38 15 16 07 f7 73 eb ee 3d 68 d1 88 7b 22 cc 9b d4 64 8e 08 a6 2a e0 7a 67 f3 a7 c7 21 8d fa f1 df dc 7a d4 b2 42 a5 7c c8 c6 e5 3d 7f c6 92 d0 64 08 c1 18 15 c9 38 fc ea 79 23 59 07 99 18 eb d4 54 7b 4e 09 cf 1d c0 ef ef 4f 8d fc b7 c8 19 c8 e9 ea 3d 68 6b b0 ae 43 b4 77 27 27 d2 9f 1b 14 63 8e 17 bf bd 5a 96 db 72 ef 8f bf 51 50 ec c9 e7 92 68 4a e3 11 e1 0e be 64 79 23 b8 1d ab b3 f8 79 1f ef 6f 9f 6e 3e 55 03 f5 ae 4a 2c a1 c8 c6 0f Data Ascii: 18fcKITWc1g,co0G{0(%qFcjv95/]qsHF0J;On?J$ 7~U8s=h{"dzg!zB\|=d8y#YT{NO=hkCw''cZrQPhJdy#yon>UJ,
2025-01-08 11:43:11 UTC	12792	IN	Data Raw: 33 31 66 30 0d 0a 7d 2a 78 f3 1b ee 0c 72 39 15 15 bb a1 01 4f 06 ac 15 f9 77 7f 7a 90 36 2b 15 6e 48 fa d4 4e 8b 8f 94 fe 62 9c 41 ed 50 c9 9a 60 34 a6 0f 4a 50 31 cd 34 13 9e 69 d9 ef 4a c3 0e bd 7f 3a 79 03 1f d6 93 23 d2 9d d4 7a 1a 04 0a 29 ea 9f e7 34 8a 08 35 3a 29 3c 50 04 62 3e 3b 7e 74 ed 83 02 ac 88 b8 f9 87 1d a9 cb 1e ec 62 81 15 7c bc 8e 40 a4 30 29 1f 77 9a bc 23 38 3d 09 f6 a3 67 4c 50 17 66 69 b6 51 d0 91 4c 30 30 04 82 0d 69 18 f0 72 7b d4 4f 1e 79 00 d1 61 f3 32 86 d6 1d 47 e5 49 f9 8a b6 63 22 a2 75 f6 a5 61 f3 f7 21 dd df 14 ec 9c 1e 69 0a e7 af 3f d2 99 82 bc 52 e5 63 e7 37 93 5f bf 8e 4d a8 dd 7b bc 8e df cc d2 ea 10 5c 9d 4b 6c ca 86 59 14 30 58 47 0d c7 51 8a cb b9 99 a2 9b ee 9f 62 0e 2a 48 75 19 fc d2 fe 61 56 23 06 43 f3 36 3d Data Ascii: 31f0}xr9Owz6+nHNbAP`4JP14iJ:y#z)45:)<Pb>;~tb\|@0)w#8=gLPfiQL00ir{Oya2GIc"ua!i?Rc7_M{\KlY0XGQbHuaV#C6=
2025-01-08 11:43:11 UTC	6404	IN	Data Raw: 31 38 66 63 0d 0a 36 c2 01 3e b5 8e c1 a3 93 1d 29 5c 65 b0 71 82 2b 42 de 70 c9 b4 9a cd 52 76 fa 66 a4 8d 8a f5 20 d5 08 e2 b5 68 d6 1d 56 e6 2d a0 01 21 db 8e c0 92 47 f3 ac eb 8f 2c c8 d1 7f 10 1c f3 9a d6 f1 5a 88 f5 40 e3 e5 2f 18 62 7e 99 1f e1 5c f5 b3 99 5b 22 32 bb d8 1c 1e a0 57 0d 4a 71 d5 b4 7a 54 6b cd 72 c2 2c bb 03 b4 00 0d 99 ad 7b 49 b0 c1 d2 3f 2c 77 39 fe 75 17 d9 96 6b 7c af df 5e 31 8a 8e 29 7c a7 03 cb 07 b7 4c d4 42 4e 9b b4 b6 3a 6a c2 38 88 b9 43 74 5d d5 2f 7e d7 1c 10 ec 24 83 c6 08 1b 87 a7 51 50 4f 69 17 d9 8a 24 61 48 39 00 1e 01 f7 f5 a8 6f 6e dd 26 80 79 27 72 e7 00 03 93 c8 ec 01 f5 a9 e4 b9 06 3c 95 3b b1 f4 c5 6f b9 e6 bd 08 2c 95 1a 0f b4 4a db 5b 76 02 9e c4 70 69 93 5f aa 4b 2d d4 ec 36 e7 0a 5f b6 3d bb 9a a7 0c de Data Ascii: 18fc6>)\eq+BpRvf hV-!G,Z@/b~\["2WJqzTkr,{I?,w9uk\|^1)\|LBN:j8Ct]/~$QPOi$aH9on&y'r<;o,J[vpi_K-6_=
2025-01-08 11:43:11 UTC	7653	IN	Data Raw: 31 64 64 64 0d 0a 96 3d 09 18 03 e8 2a 94 99 68 23 38 c9 ab 8e c4 58 9d 8a 09 97 20 17 3f 95 2a 3b 9b 86 4e aa 01 e2 98 f9 69 63 c0 e7 1e 9d 2a 5c 7e fc 36 46 e3 c0 00 56 84 d9 0f d3 89 59 9d 41 00 fa 13 8e 3e b5 6a e1 43 c4 c0 1c e3 a9 55 e3 f3 aa d0 32 0b 9c 15 1d f3 9e 9f a5 5d b8 2e d0 b2 f4 cf 4c e1 47 e0 05 66 f7 02 8b 10 21 52 a3 76 3a 16 a2 47 62 e8 41 23 3c e0 1f c7 fa d3 46 5a df 00 64 83 52 32 af 94 85 ce 31 e9 de b5 16 cc 5f f5 57 5d 72 0f 19 a9 ac f7 a4 cc a5 58 86 e3 68 38 26 a1 79 76 b2 32 a0 c9 c6 4f 7a 51 f2 dd a3 11 91 df 3d 0d 29 24 1a 97 ae d4 8b 76 24 47 f2 9c 85 41 90 3e a7 d6 b3 dc ef 80 30 3d 0e 0f f9 fc ab 55 90 94 28 fc 26 38 dd f2 8f c1 7f 0a ce 8e 30 a8 d1 b6 0e 79 c0 35 34 fb 00 d6 3f ea df 9c f7 e2 a4 d9 89 f7 97 50 a7 b1 ef Data Ascii: 1ddd=h#8X ?;Nic*\~6FVYA>jCU2].LGf!Rv:GbA#<FZdR21_W]rXh8&yv2OzQ=)$v$GA>0=U(&80y54?P

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	687	OUT	GET /xdata/images/hotel/max1024x768/10124664.jpg?k=7f862f908c381accab293deda3650446ec9eff6bf0e2d18a6d5dae4bd9cda3d6&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:10 UTC	537	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Wed, 08 Jan 2025 11:43:10 GMT ETag: "6559f0f2eda6588305035f868851f53afc414bd4" Content-Language: 65915 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Miss from cloudfront Via: 1.1 d8ec42efeb409ac816e90eb0236c1f4a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: Wn7-sxtrpHs1qeJx313Q_NR3i31gVqNHfGIoOxCXJljochwXN7eIGA==
2025-01-08 11:43:10 UTC	15572	IN	Data Raw: 33 63 63 63 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 03 00 04 00 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 Data Ascii: 3cccJFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222"}!1AQa"q
2025-01-08 11:43:11 UTC	15998	IN	Data Raw: 33 65 37 36 0d 0a d2 8e eb 8a 69 68 db a1 fc e9 34 3b 91 96 91 be ee 29 be 6b 2b 61 c7 15 38 51 8c 8a 63 a1 27 d6 a4 61 21 0c be bc 71 59 53 40 5d 59 50 0c a9 dd 5a 38 29 90 41 c5 40 ea 54 e7 b1 ad a2 ee 8c e5 a3 2a ba 85 97 6e 3b 0a 92 34 e3 39 a4 ba 52 b2 67 d4 0a 7c 04 15 e4 f4 ae 79 33 54 5e 89 48 41 ed 53 6e 3b 6a 28 e6 40 b8 20 d4 82 48 88 c1 cd 64 68 88 8b 1c f5 a6 ef f9 aa 6d 89 8c 86 ce 7d 6a 39 23 c7 22 a5 8d 31 86 4c 9e 94 6e 04 f2 b4 df c2 82 08 19 c5 16 18 15 43 da 93 62 fa d3 1c 9a 40 c7 6d 2b 05 c9 42 29 e8 6a 37 80 64 60 d3 15 ce ea 79 73 91 45 ac 17 1c 22 34 be 51 1d e9 cb b8 d2 95 27 bd 20 21 92 36 64 c6 2a b9 89 81 19 cd 5c 25 85 31 9b 3c 91 42 6d 09 91 a3 c9 1f dd 62 3e 86 b4 2d b5 ab cb 7c 7e f0 b2 fa 1a a4 71 81 4d 20 62 9a 9c 96 c2 Data Ascii: 3e76ih4;)k+a8Qc'a!qYS@]YPZ8)A@Tn;49Rg\|y3T^HASn;j(@ Hdhm}j9#"1LnCb@m+B)j7d`ysE"4Q' !6d\%1<Bmb>-\|~qM b
2025-01-08 11:43:11 UTC	2950	IN	Data Raw: 62 37 66 0d 0a d4 02 e2 68 e5 0f 11 da 47 7a 9f cb 15 03 81 9a a4 ec 26 69 d9 dd dc 5c 5b 5e f9 d2 b3 7e e5 bb f4 ac 47 1b b3 91 cd 6c e9 a0 0d 3f 51 73 da 02 07 e3 58 ae 71 d6 ae 6d b4 8c e2 92 6e c6 8e 92 a2 18 ee ae 9b a4 71 36 3e bd 05 61 31 da 47 a6 6b 7e f2 45 b2 f0 dc 71 e0 f9 b7 52 67 8f ee af ff 00 5c 8a e6 d1 d8 ce ac c0 63 39 db 54 e3 b2 25 3b dd 9d 95 a1 ff 00 45 88 7f b2 29 65 34 d8 5b f7 4b 81 8e 07 4a 6c a7 35 2c 82 22 69 33 83 48 69 33 52 32 5c d3 09 e6 82 69 a0 d3 00 cd 28 38 a4 a3 bd 52 01 d9 a7 83 51 53 85 02 25 06 9e 2a 20 69 e0 d0 04 94 a2 9b db 34 a1 a8 02 4c d2 83 9a 66 69 68 11 20 3c 52 d3 45 2e 68 01 69 73 4d cd 2d 00 2d 2d 37 34 b4 00 a4 d1 49 46 68 10 53 4d 29 a6 13 40 c6 b1 a8 da 9c c6 a3 26 90 c8 de ab b1 a9 9c d4 0d 48 65 ab Data Ascii: b7fhGz&i\[^~Gl?QsXqmnq6>a1Gk~EqRg\c9T%;E)e4[KJl5,"i3Hi3R2\i(8RQS%* i4Lfih <RE.hisM---74IFhSM)@&He
2025-01-08 11:43:11 UTC	16384	IN	Data Raw: 33 66 66 61 0d 0a c7 26 9c 19 4f 7a 57 43 e6 67 29 a9 69 77 bf d9 76 70 0b 77 66 56 66 60 a3 38 f4 a6 5b 69 57 d1 69 57 63 ec ef e6 c8 a1 00 c7 38 ae c5 24 e8 09 a9 83 1c f0 73 5a 5d 11 76 8f 30 93 c3 fa a2 20 26 d2 42 a7 d0 66 a8 49 63 73 04 a1 64 86 45 20 f3 95 35 ec 22 42 3b 0a 77 ee a5 04 49 1a 9f 5c 8c d3 49 07 3b 38 18 ce 22 51 9e c2 9b 21 e2 bb b6 d2 34 f9 87 36 f1 8f 7c 62 aa cd e1 3d 3e 50 36 ef 8c fb 1a af 65 7d 99 1c e8 e1 cb 0c f1 49 bb b5 74 97 1e 09 60 c3 c9 bb 24 7f b4 2b 3e 6f 08 ea 31 8c a3 a3 e3 b0 38 ac dd 39 22 d4 d3 33 37 52 16 a9 66 d1 b5 28 7e f4 12 7e 03 35 56 4b 4b b8 8f ef 23 91 7e a2 97 2b 2b 42 5c e2 9c 0d 52 26 55 eb 90 7d e8 12 b8 1d 68 b0 5b b1 78 1a 78 35 9f e7 b8 3d 69 e2 e1 e8 15 99 a0 0d 39 4d 50 17 2f 8e 94 f1 72 de 94 Data Ascii: 3ffa&OzWCg)iwvpwfVf`8[iWiWc8$sZ]v0 &BfIcsdE 5"B;wI\I;8"Q!46\|b=>P6e}It`$+>o189"37Rf(~~5VKK#~++B\R&U}h[xx5=i9MP/r
2025-01-08 11:43:11 UTC	15050	IN	Data Raw: 0d 0a 33 61 63 30 0d 0a c9 ef 81 9c 52 3c f9 f9 54 73 f9 9a 00 76 07 24 92 69 86 50 bd 0f e5 54 ae af 3c 91 f3 10 3d 73 c9 15 9e fa c2 28 c9 5c 67 a3 39 e3 f2 a1 b1 a4 6b 3d d8 e5 54 f4 ea 57 04 8f cf 81 50 35 d4 2a 43 3c 83 3e 9f 7c fe 7d 05 63 fd a6 e2 eb 88 a1 fa c8 e3 03 f0 15 6e d3 43 b9 ba 20 cc 59 97 d7 3b 53 ff 00 af 4d 4d 5b 42 1c 75 d4 49 b5 35 67 22 15 f3 24 f5 fb c4 7f 41 55 d6 3b db a7 00 b1 4c ff 00 0a f2 7f 3e 95 bb 1e 8f 6b 01 c3 9c e3 b2 8c 0a b4 4a 46 98 8d 55 07 b0 c5 3e 59 cb 7d 01 ca 11 d8 cb b4 d0 d1 7e 79 78 63 dc fc cd f9 d6 94 30 da db 86 75 89 4c 80 61 59 b9 35 13 cf 85 3d 6a b3 4c cd d6 b4 8d 38 a2 1d 46 c7 9f 9e 56 24 f3 c5 4b 1e 53 81 d2 a1 80 6f 27 9e 49 e9 57 0a 15 6c 60 d5 10 48 77 6d 03 ad 3d 73 b4 70 00 14 c6 c9 c0 c1 34 Data Ascii: 3ac0R<Tsv$iPT<=s(\g9k=TWP5*C<>\|}cnC Y;SMM[BuI5g"$AU;L>kJFU>Y}~yxc0uLaY5=jL8FV$KSo'IWl`Hwm=sp4
2025-01-08 11:43:11 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2025-01-08 11:43:10 UTC	688	OUT	GET /xdata/images/hotel/max1024x768/203496834.jpg?k=fa67cc89472be77fdadb868c530862b42398c4a46552f090772d21b6174ef6cb&o=&hp=1 HTTP/1.1 Host: cf.bstatic.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://housity.net/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2025-01-08 11:43:11 UTC	537	IN	HTTP/1.1 200 OK Content-Type: image/jpeg Transfer-Encoding: chunked Connection: close Server: nginx Date: Wed, 08 Jan 2025 11:43:10 GMT ETag: "b6f72ffeb498adc962d11f1e6c55aa250a60dc1f" Content-Language: 30064 Cache-Control: max-age=2592000 access-control-allow-origin: * x-xss-protection: 1; mode=block timing-allow-origin: * X-Cache: Miss from cloudfront Via: 1.1 9eb1733bea847c3a8f4910adebcc8146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P8 X-Amz-Cf-Id: eMmLi9oNkA9FjJaEoh5c-ZuOWjuidJ_Jl_vI5d4g2B9SVRCed-dF4Q==
2025-01-08 11:43:11 UTC	15572	IN	Data Raw: 33 63 63 63 0d 0a ff d8 ff e0 00 10 4a 46 49 46 00 01 02 00 00 01 00 01 00 00 ff db 00 43 00 08 06 06 07 06 05 08 07 07 07 09 09 08 0a 0c 14 0d 0c 0b 0b 0c 19 12 13 0f 14 1d 1a 1f 1e 1d 1a 1c 1c 20 24 2e 27 20 22 2c 23 1c 1c 28 37 29 2c 30 31 34 34 34 1f 27 39 3d 38 32 3c 2e 33 34 32 ff db 00 43 01 09 09 09 0c 0b 0c 18 0d 0d 18 32 21 1c 21 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 32 ff c0 00 11 08 01 77 01 f4 03 01 22 00 02 11 01 03 11 01 ff c4 00 1f 00 00 01 05 01 01 01 01 01 01 00 00 00 00 00 00 00 00 01 02 03 04 05 06 07 08 09 0a 0b ff c4 00 b5 10 00 02 01 03 03 02 04 03 05 05 04 04 00 00 01 7d 01 02 03 00 04 11 05 12 21 31 41 06 13 51 61 07 22 71 Data Ascii: 3cccJFIFC $.' ",#(7),01444'9=82<.342C2!!22222222222222222222222222222222222222222222222222w"}!1AQa"q
2025-01-08 11:43:11 UTC	14508	IN	Data Raw: 33 38 61 34 0d 0a 14 8c 71 9e 3a 53 91 81 b7 97 e9 40 14 f1 cd 2a 0f 9c 7d 69 48 ef 48 bf 78 7d 68 20 f3 cd 1d 7f e2 e6 c6 73 f7 a2 93 3e dc d3 e6 f1 76 b6 fa ad dc 16 e6 d5 22 b7 90 a0 05 79 38 f5 aa 3e 1c 95 e4 f8 bd 7b 1b 1c a4 4a e1 7d aa 8c 6c 46 ad ab 38 1f f2 dd eb 68 ab 92 dd 8f 4f d2 6e a5 bd d3 20 b9 99 55 65 90 65 82 f4 15 7b 38 35 99 a0 83 fd 87 67 ee 99 ad 2e d5 0f 70 43 85 38 1c ad 34 7b 54 a8 a5 b8 03 26 a4 a4 26 45 14 a4 73 e9 45 03 b1 f1 da 79 b3 10 8b cf b0 a9 d6 d6 e2 3c 12 08 ed 5d 1e a3 a2 41 a7 c7 1b c4 32 e4 64 e3 a6 2b 2e 1d c4 99 66 6c aa b6 02 fa d6 e6 f0 a5 cd 1b 99 c6 46 46 23 f5 ae 8f c3 3a 76 97 75 76 26 d4 37 ad bc 78 27 60 eb 4f b4 d3 ec 50 a5 e5 c8 46 51 92 ea 79 00 7a 9f 7a ae e8 f2 ca ed 12 ed 86 31 92 23 e0 6d ec 6a 2a Data Ascii: 38a4q:S@}iHHx}h s>v"y8>{J}lF8hOn Uee{85g.pC84{T&&EsEy<]A2d+.flFF#:vuv&7x'`OPFQyzz1#mj
2025-01-08 11:43:11 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0