| cdn.cookielaw.org/scripttemplates/otSDKStub.js | 104.19.177.52 | 200 OK | 6.8 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/otSDKStub.js IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (21099) Hash371fe1fde25dc853add509f5d9fe57ac b6219c34246fa4a3f1f35c64bbd708dc04c463ca 92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: application/javascript
content-length: 6839
content-encoding: gzip
content-md5: Pg1MHDpg+UGdovxhidM4Kg==
last-modified: Mon, 22 Apr 2024 06:06:15 GMT
etag: 0x8DC629251693167
x-ms-request-id: c4891f4a-201e-0075-77cf-9452af000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 84948
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7581c031c02-OSL
X-Firefox-Spdy: h2
|
|
| assets.adobedtm.com/launch-EN979d0cb11a7a4d40955d513a23c2dc63.min.js | 23.38.200.237 | 200 OK | 115 kB |
URL GET HTTP/2assets.adobedtm.com/launch-EN979d0cb11a7a4d40955d513a23c2dc63.min.js IP23.38.200.237:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subjectassets.adobedtm.com Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32765) Size115 kB (114937 bytes) Hash5bb683d4bad2ea98250974620cf50846 641004682b8d16e5b6f5d62d631a52feabfbb5a1 625c1465adb4b07fa9d8169372fb50a356a9cf2b8f3ed94682fbe0130c1ba4f8
GET /launch-EN979d0cb11a7a4d40955d513a23c2dc63.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "5bb683d4bad2ea98250974620cf50846:1711570901.927806"
last-modified: Wed, 27 Mar 2024 20:21:42 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 114937
cache-control: max-age=3600
expires: Tue, 23 Apr 2024 18:43:03 GMT
date: Tue, 23 Apr 2024 17:43:03 GMT
access-control-allow-origin: https://www.loewshotels.com
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| resources.digital-cloud-west.medallia.com/wdcwest/175638/onsite/embed.js | 151.101.245.230 | 200 OK | 533 B |
URL GET HTTP/2resources.digital-cloud-west.medallia.com/wdcwest/175638/onsite/embed.js IP151.101.245.230:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerSSL Corporation Subject*.digital-cloud-west.medallia.com FingerprintE2:5F:3B:56:92:97:BE:0B:85:79:D6:38:43:88:CA:E4:A2:30:E6:E7 ValidityWed, 01 Nov 2023 14:29:33 GMT - Sun, 01 Dec 2024 14:29:33 GMT
File typeJavaScript source, ASCII text, with very long lines (594) Hash263cd738d44e632bb51e36f08b9eaa5b 015bcdd9196ca8d58830dbcfdce594671838adbc f6fe0a0aae73ce84a996a66309f6b66491f93bb88577ebcb03d9e9a528b7c748
GET /wdcwest/175638/onsite/embed.js HTTP/1.1
Host: resources.digital-cloud-west.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: ucuSGO4EH+LCWZilnkmBVAEH/470h36te8f1MjgrV4BFt4+xh8iUFdzt0ztpiz39x9a7mg7Zlu0=
x-amz-request-id: WPKK4VGQ6JJN48E7
last-modified: Tue, 26 Mar 2024 15:21:37 GMT
etag: "263cd738d44e632bb51e36f08b9eaa5b"
x-amz-server-side-encryption: AES256
x-amz-version-id: nEa5qGWEQh4t69tNeofaqcHwtoOgBo13
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
content-encoding: gzip
accept-ranges: bytes
date: Tue, 23 Apr 2024 17:43:03 GMT
via: 1.1 varnish
age: 1311580
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 8
x-timer: S1713894184.812027,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 533
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/user.svg | 54.205.89.152 | 200 OK | 622 B |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/user.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeSVG Scalable Vector Graphics image Hasha732894525b018756e25d2e6b62b52d5 b5dfe4c6baed782d38ea09306b99585693c72a31 9fd9543bec6fc971816c417f3b1eda42da367affa258b1d23cd7b8a46200a431
GET /skins/skin-prodloews/assets/desktop/images/user.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/svg+xml
content-length: 622
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-26e"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/logo-on-photo.png | 54.205.89.152 | 200 OK | 15 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/logo-on-photo.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 324 x 322, 8-bit colormap, non-interlaced Hash6585f71cbb54e316782291d91c5e26d1 7b8f20d4baa353bb7a8365719dcfb92fa5db5b72 55165f60ac3a33378060e8e676c2af77a86ba1c6b6ac7ebeaf6288997caa05f1
GET /skins/skin-prodloews/assets/desktop/images/logo-on-photo.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 14581
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-38f5"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/location-icon.png | 54.205.89.152 | 200 OK | 1.6 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/location-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit colormap, non-interlaced Hashaff050f6192e0bd4c13daf0b021b3d7b 9b462fc102f66a99d7954dbbfb3de05335a6c9e9 653e0999213e0b9a1cd9f2d5107d21a7d9a402475670f29b6c26a57c127f7c27
GET /skins/skin-prodloews/assets/desktop/images/icons/location-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 1571
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-623"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/time-icon.png | 54.205.89.152 | 200 OK | 1.8 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/time-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit colormap, non-interlaced Hashcd5e71d1c2d09fd88a1d11f22fadd13c 274b51fd25d23c5f3a64683e1569e313c94b5678 1777565d8216c60b557de24c245d4c732ecf3a51f9f1ce13d26491563f29fdac
GET /skins/skin-prodloews/assets/desktop/images/icons/time-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 1756
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-6dc"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/phone-icon.png | 54.205.89.152 | 200 OK | 646 B |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/phone-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit colormap, non-interlaced Hash364432a0266dc136ae94e81aa9a8d913 2e3faff02fca32e8d97b0a8747f76d660d88c256 4d6d90ce49f90c0674bedf27a78cf6c34e0b8e46bb7b24ec74335fb8bcd09d8f
GET /skins/skin-prodloews/assets/desktop/images/icons/phone-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 646
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-286"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/sms-icon.png | 54.205.89.152 | 200 OK | 693 B |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/sms-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit colormap, non-interlaced Hashfbec05f25e9d9b425c6f6f28c31b89f3 e2f5fac2f1cb9ece52ef4dfd813152e5f5f4441f b98610f549e6061cee713c8ec813218a33f43926fd26af2145512179d0d66bd1
GET /skins/skin-prodloews/assets/desktop/images/icons/sms-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 693
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-2b5"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/email-icon.png | 54.205.89.152 | 200 OK | 1.1 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/email-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit colormap, non-interlaced Hash8be7a1c0066b62e6427b3e414beb814a a66147337de63966598651b1b0b22c4706a53cad 5e209e183a37ff8618cea17e4d5ebf1635c279d8c17b344b9f1de11853614e32
GET /skins/skin-prodloews/assets/desktop/images/icons/email-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 1074
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-432"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/faq-icon.png | 54.205.89.152 | 200 OK | 1.7 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/icons/faq-icon.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 47 x 50, 8-bit/color RGBA, non-interlaced Hash348c56329e9fbae0561f913e1bf41fe8 dbf1cbc5d2e008626234b5d8102ef6d3fdd6f4b4 5e7b32f8cefaaa235a7df372ef0fa7e2b9953770c24a42b26466acf82581b753
GET /skins/skin-prodloews/assets/desktop/images/icons/faq-icon.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: image/png
content-length: 1742
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-6ce"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/616dc3603fc26.jpg/400x500/fit;c:125,0,685,700/80/27276ca7117b15aa97a07583737f265c.jpg | 143.204.55.107 | 200 OK | 16 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/616dc3603fc26.jpg/400x500/fit;c:125,0,685,700/80/27276ca7117b15aa97a07583737f265c.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 400x500, components 3 Hash133cd323513374917a84a7b2a3789529 e863b1c0be51d5b8e82fea4ca79bf93d7778d6fc 393d89c843a6c55728ff666c45d4b0a9c30931b094599d73860183acd6e3cac8
GET /loewshotels.com-2466770763/cms/cache/v2/616dc3603fc26.jpg/400x500/fit;c:125,0,685,700/80/27276ca7117b15aa97a07583737f265c.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16494
date: Fri, 15 Mar 2024 09:25:36 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 26 Oct 2023 13:51:46 GMT
x-amz-version-id: HsykANHudIINcauN_7uwADTBwuXk1RXf
etag: "133cd323513374917a84a7b2a3789529"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HrRgW_-uzhlJcqPJ_skIibiL5i_kHkyM-9OLd9DQgXAv6dL8HE41lA==
age: 3399448
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c2afc5f09c7.jpg | 143.204.55.107 | 200 OK | 518 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c2afc5f09c7.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 975x650, components 3 Size518 kB (518323 bytes) Hashb1a38c1161a3a41013a16c1a39a95794 92d4b4f295f16a498bf9908c9e503c06902befe6 ef82cca8680886dacfae9b5ebe3cb549bf7f939e268a87cf455183f5cdbcaf2d
GET /loewshotels.com-2466770763/cms/imagepool/59c2afc5f09c7.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 518323
date: Sun, 31 Mar 2024 05:13:01 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Tue, 04 Dec 2018 23:02:19 GMT
x-amz-version-id: 57zmKQoIo9UqekUqv.SlVeYNu0sEHqto
etag: "b1a38c1161a3a41013a16c1a39a95794"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q5kdW5HCQvKoTL_E03wCWDZAH6ZpR-tAmdS5Rv5iGee28B-6Ysf_MQ==
age: 2032202
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c50482e1a35.jpg | 143.204.55.107 | 200 OK | 304 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c50482e1a35.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 72x72, segment length 16, baseline, precision 8, 1470x975, components 3 Size304 kB (304442 bytes) Hash3dbe46102d098cb72879d64c99947bea cf91ba96ef61afe819b54755b80a6961f1605ee1 54a27a0209f4f9d476407f44d1647897b4d0f7bcdb910c3ba9b7b2627791d372
GET /loewshotels.com-2466770763/cms/imagepool/59c50482e1a35.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 304442
date: Sun, 07 Apr 2024 02:32:46 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Tue, 04 Dec 2018 23:02:20 GMT
x-amz-version-id: NrCvqbkGDXAFtNY_iUozi4S3BmNjyQqK
etag: "3dbe46102d098cb72879d64c99947bea"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _9w7Mo1Q9uEHbaxArTNoMgn_VwpIU1VhYJMjcaVFRg3DDdg1g4kpXQ==
age: 1437018
X-Firefox-Spdy: h2
|
|
| unpkg.com/leaflet@1.9.4/dist/leaflet.css | 104.17.247.203 | 200 OK | 714 kB |
URL GET HTTP/2unpkg.com/leaflet@1.9.4/dist/leaflet.css IP104.17.247.203:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File typeASCII text, with CRLF line terminators Size714 kB (713908 bytes) Hashc02c12fe5e21d2493070649584ca38b7 ec929f1100c6642ccc5c4272cf4cca12251a9a5d a7837102824184820dfa198d1ebcd109ff6d0ff9a2672a074b9a1b4d147d04c6
GET /leaflet@1.9.4/dist/leaflet.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"39d6-7JKfEQDGZCzMXEJyz0zKEiUaml0"
via: 1.1 fly.io
fly-request-id: 01HFX63QH24YJNEV6HYNDWPVC9-arn
cf-cache-status: HIT
age: 13181381
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7585a3a569b-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5731f93b5e43a.jpg | 143.204.55.107 | 200 OK | 1.2 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5731f93b5e43a.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 3000x2200, components 3 Size1.2 MB (1210704 bytes) Hash69f77dbb29f38aaa8c1635ef832fd236 93f5e569bdfc2631ce560e3c81b932ae95a86ba5 56fbcde497c6a5747cc60c5951956ddfef0a42c19146ec01367494137409a929
GET /loewshotels.com-2466770763/cms/imagepool/5731f93b5e43a.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1210704
date: Mon, 08 Apr 2024 10:15:34 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:42 GMT
x-amz-version-id: budp0icAWk64KhZMNd9oUXF_npvcMfRe
etag: "69f77dbb29f38aaa8c1635ef832fd236"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mRbpqZob7md3BG8369EX--qxHauSSP42uYDEGZXmWzY1Am76ERX2Hg==
age: 1322850
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4d3a213025.jpg | 143.204.55.107 | 200 OK | 816 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4d3a213025.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 2560x2338, components 3 Size816 kB (816273 bytes) Hash175c86aa8d1629fa1a6a9ab193672a7a 5c48092dafaf81552acd4046620291276a67bc77 1dfe40c193b47ea59b26b1d88143215fe02757f712f31263e3369b354197a18a
GET /loewshotels.com-2466770763/cms/imagepool/55d4d3a213025.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 816273
date: Thu, 04 Apr 2024 09:45:21 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:00:58 GMT
x-amz-version-id: Yiz0.9jmCn6BWA803MBClALqPEazM6Jj
etag: "175c86aa8d1629fa1a6a9ab193672a7a"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jGOBLXTBW20YjRnByzCSVjheEoqvTv1A0NAd-BA0Z9QHTgXJZSItbg==
age: 1670263
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/tinysort/3.2.8/tinysort.min.js | 104.17.25.14 | 200 OK | 1.9 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/tinysort/3.2.8/tinysort.min.js IP104.17.25.14:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4305) Hash1e77d29ce4c5f78a0e520fbe5c4a0088 c92a933b2554f5d643d0d08f983ac12bc013ae8c 5fccf4b8b64dec989d6295cf25e3af5dbc7a5ba965875ff07f0eff9c98ed4def
GET /ajax/libs/tinysort/3.2.8/tinysort.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 1910
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "643528bc-776"
last-modified: Tue, 11 Apr 2023 09:30:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3531194
expires: Sun, 13 Apr 2025 17:43:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VPE0YhTVwzVH5%2B%2Fye%2FW2iTKRIGk82hNzHRFSzp6Q1It6PcHMaATPxW4LJklYF6f%2B84V3%2FgHwppJTTOBHLiZtEpixyBkCI4Ewhq46McgWi3b7irK9xIUxrC7nt7Kno0rYqbfRn%2FX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 878fa75e1b211bfa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/0a9765e3-a574-41b5-a49b-d12291495d13/0a9765e3-a574-41b5-a49b-d12291495d13.json | 104.19.177.52 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/0a9765e3-a574-41b5-a49b-d12291495d13/0a9765e3-a574-41b5-a49b-d12291495d13.json IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashbf7bdad83bad9a3632a6cbe89024a749 70ed866b6ca5ef3802784b0593ffcec6acea2802 c4ea986caf893e080971d6365f333128ad01606c6221cf0f45216bbf50d4e366
GET /consent/0a9765e3-a574-41b5-a49b-d12291495d13/0a9765e3-a574-41b5-a49b-d12291495d13.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: application/x-javascript
content-length: 1575
cf-ray: 878fa75f4cedb511-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 78828
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DA6A45B7FCC495
expires: Wed, 24 Apr 2024 17:43:04 GMT
last-modified: Wed, 20 Jul 2022 11:48:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: w2Ya2v3q0hr288s3VXwdLw==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3b8ad8bb-001e-0096-7581-0c3052000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4e1d43b80d.jpg | 143.204.55.107 | 200 OK | 1.9 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4e1d43b80d.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CS2 Macintosh, datetime=2007:03:18 16:04:17, copyright=© 2007 Universal Orlando Resort. All rights reserved.], baseline, precision 8, 2560x2057, components 3 Size1.9 MB (1898410 bytes) Hasha8bc488080ac1dc7277b859fb63e7af2 f3b170ffe60fa5ae138b0fd77bdbfb11d72dd396 781c2fd5a7b033d0d2b11766705ef23ca64b58cc0ce1446cfa924d32a808a6bc
GET /loewshotels.com-2466770763/cms/imagepool/55d4e1d43b80d.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1898410
date: Thu, 11 Apr 2024 06:37:04 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:14 GMT
x-amz-version-id: b82e7HNuQ_My5_gIE7gOEKCXuJYSKOJB
etag: "a8bc488080ac1dc7277b859fb63e7af2"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SyfEC5yMVDVK298NJKaVwh5QdtjA7s-byoNhtIV0fLWPquozjSNlFg==
age: 1076760
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/61e82b4286b97.jpg | 143.204.55.107 | 200 OK | 2.2 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/61e82b4286b97.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, software=Capture One 20 Macintosh, GPS-Data], baseline, precision 8, 3333x5000, components 3 Size2.2 MB (2211501 bytes) Hash9bf63d8b4b7cfca02950b7835e8827a1 839d4aaaf5282610c267696b458408d530948934 8ea669ef49b47b84c7c5ed8b0827641bf898a2b065fc57107da4e900374313e5
GET /loewshotels.com-2466770763/cms/imagepool/61e82b4286b97.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2211501
date: Sun, 14 Jan 2024 08:01:37 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Wed, 19 Jan 2022 15:16:19 GMT
x-amz-version-id: xx4Gmdk8gX075YrUvPBoMqiu4EvG907C
etag: "9bf63d8b4b7cfca02950b7835e8827a1"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IYieSFD93aDMq9wQyJ2eTovxxRmHj_Hk768aZEZzBxJpkJuelEKsVQ==
age: 8674887
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5f400db6aaa58.jpg | 143.204.55.107 | 200 OK | 2.7 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5f400db6aaa58.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=4428, bps=0, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6642], baseline, precision 8, 4200x2800, components 3 Size2.7 MB (2687482 bytes) Hash731337fdf6046e787cda0ac241988db3 03a86998cc877deb44d15a25446abad298e4c05b fa4ee763c1599cf53d3622f2e5cba615d543eb8f999a3ee5d4451c996c138ba3
GET /loewshotels.com-2466770763/cms/imagepool/5f400db6aaa58.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2687482
date: Thu, 26 Oct 2023 11:36:12 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Fri, 21 Aug 2020 18:08:55 GMT
x-amz-version-id: z0_HMvgCfQ_xQ52LPNx9P57G5e.JGhu2
etag: "731337fdf6046e787cda0ac241988db3"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nFCaWoTuVfYk9UZWC2imF6mlV3bMfCNVkTK65DTli6YTz3YGU17KhA==
age: 15574011
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55f9a2f9cbc1a.jpg | 143.204.55.107 | 200 OK | 2.6 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55f9a2f9cbc1a.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON D800, xresolution=176, yresolution=184, resolutionunit=2, software=Adobe Photoshop Lightroom 5.7 (Macintosh), datetime=2015:09:15 13:52:08], baseline, precision 8, 2560x1707, components 3 Size2.6 MB (2611166 bytes) Hashefb03713f4d94f6eb5070f6379e77b0e f13274343ea28c48fc0d0a9296b5f2609b22c1de 7ba13b94a4d03cdff5ab04fe04b0cb73c9dab0810086d5b97896affe5e54b0f0
GET /loewshotels.com-2466770763/cms/imagepool/55f9a2f9cbc1a.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2611166
date: Fri, 29 Mar 2024 05:51:35 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:30 GMT
x-amz-version-id: vnHPYKWrYtnPu42ksLr1twielcvAIEgx
etag: "efb03713f4d94f6eb5070f6379e77b0e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QmBmC-ecz0nQW2-wpq3_eSRx-6qJFkDOMZmz1hbE0ZZRNN41DenE4A==
age: 2202689
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/64060e5d0e8e9.jpg | 143.204.55.107 | 200 OK | 2.5 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/64060e5d0e8e9.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Capture One 16 Macintosh, datetime=2023:02:21 11:45:33, copyright=Moris Moreno], baseline, precision 8, 5000x3335, components 3 Size2.5 MB (2493981 bytes) Hash63483fa029be6652abaf4282810d5bf5 35f062ac695c4bc716798ac7584e733ce45165e5 7a808ee1f6dd271ce73372dde56e419c80bc5ea0f7703b064d2915277b93d081
GET /loewshotels.com-2466770763/cms/imagepool/64060e5d0e8e9.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2493981
date: Thu, 26 Oct 2023 11:41:26 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 06 Mar 2023 16:01:34 GMT
x-amz-version-id: gX.adhsI5bF__bnMDy52nbh36gRaTO2j
etag: "63483fa029be6652abaf4282810d5bf5"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: miAcqPFpePLAI2FAr8l-1lEaCZud7AYkBZS9BatiAacL6fXXvz_vTA==
age: 15573698
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5df26727f1c40.jpg | 143.204.55.107 | 200 OK | 2.6 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5df26727f1c40.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, software=Capture One 12 Macintosh, datetime=2019:09:13 00:33:41], baseline, precision 8, 3000x1999, components 3 Size2.6 MB (2619107 bytes) Hash3aabc617bc290d92d7d81a29fda8ad2e a56de62c94cb5d5382b5441338248a1ee9c46105 c0331158c3446c652f165239e94dfbfbc88c49d7d1c3454049dc933f218a6f0b
GET /loewshotels.com-2466770763/cms/imagepool/5df26727f1c40.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2619107
date: Thu, 26 Oct 2023 11:41:26 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Thu, 12 Dec 2019 16:13:29 GMT
x-amz-version-id: ZNUSBjUrqqxlLq30ARROFEh5YGUiuvuc
etag: "3aabc617bc290d92d7d81a29fda8ad2e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hG78PRnRcaZAInlqpHxmHX2XNykDyQaRmdNVMiiblbb9cIOSbsGDRw==
age: 15573698
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/57b21b27bf2be.jpg | 143.204.55.107 | 200 OK | 2.4 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/57b21b27bf2be.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=20, height=5484, bps=0, compression=none, PhotometricInterpretation=RGB, description=16-18322 LSFR16 Architectural and Scope 072616, Pool exteriors scope from roof of building 1, Loews Sapphire Falls Resort at Un, manufacturer=Canon, model=Canon EOS 5DS, orientation=upper-left, width=8688], baseline, precision 8, 3600x2268, components 3 Size2.4 MB (2366847 bytes) Hashcfde560b06a162b493dec641af61abf7 7a87e93d3d0da14f5b331832438294ecec7c55bb 82973a4fa89825e90870a6f4f7084f1848adae507eab12fce11a2885a21472e4
GET /loewshotels.com-2466770763/cms/imagepool/57b21b27bf2be.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2366847
date: Sun, 07 Apr 2024 02:32:46 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:47 GMT
x-amz-version-id: Xxu4GNj_gL7fveTlfxU6D4Jy2KfiVI_B
etag: "cfde560b06a162b493dec641af61abf7"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bdXl3v30iIQ_j3_Yw8Lme236tvysFsEblUV7tYiaRo-Uiu3BhJ2IaA==
age: 1437018
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5bf559c350a9e.jpg | 143.204.55.107 | 200 OK | 2.5 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5bf559c350a9e.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 5500x4245, components 3 Size2.5 MB (2452144 bytes) Hash73c124777df51a2452859d53a54e8c44 82a81f218a383238ee078ef8067388b6b5660b80 d8b469857011cc17b418275c312a12a9d86bd6a1ad085b241c0d600d53c3107c
GET /loewshotels.com-2466770763/cms/imagepool/5bf559c350a9e.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2452144
date: Sun, 31 Mar 2024 07:55:23 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Tue, 04 Dec 2018 23:03:22 GMT
x-amz-version-id: 9C4lNKRvlnx39Oxfb5dhUyvhYdDTCVlf
etag: "73c124777df51a2452859d53a54e8c44"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J3Qnk9qRkbSLgJATVL0P_GxKYhOPqrBDOD-Bmq8kGNXhja9-4X8HoA==
age: 2022460
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4decd050f5.jpg | 143.204.55.107 | 200 OK | 3.1 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4decd050f5.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=19, height=3042, bps=242, compression=LZW, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5616], baseline, precision 8, 2560x1387, components 3 Size3.1 MB (3084490 bytes) Hash93e944de2b938e9404a1af2502756fba a1dda478d8841718b59e0e68b6220f935daf50bd ed89b851f8293b276c47ec81a5f8d84dbfb45a473d2021f7a1d03a5c89de2213
GET /loewshotels.com-2466770763/cms/imagepool/55d4decd050f5.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3084490
date: Wed, 27 Mar 2024 21:47:51 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:10 GMT
x-amz-version-id: BsTtYZousMfytmXAXlazueSfbUY6t1T6
etag: "93e944de2b938e9404a1af2502756fba"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kYpuIB3IXPljXHxCK6CSHjZyJKFKvyGQe_0eEkJ0X9BcJQqfRCmyXA==
age: 2318113
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/63c0213cabc17.jpg | 143.204.55.107 | 200 OK | 3.3 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/63c0213cabc17.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=3750, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=5000], baseline, precision 8, 5000x3393, components 3 Size3.3 MB (3307929 bytes) Hasheda0dee418e3a5c95a9ab0b90fac8a2f 5bc78e81aba8eeb0b82f9e701d5bd20ca9541d06 037074616137abd75c6215a2e86a5e9b0a43229824bcfd88f22868032a03f550
GET /loewshotels.com-2466770763/cms/imagepool/63c0213cabc17.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3307929
date: Thu, 26 Oct 2023 11:36:13 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Thu, 12 Jan 2023 15:03:26 GMT
x-amz-version-id: z7vbVDjAycN3x0AcYFObndLYunAqIxLi
etag: "eda0dee418e3a5c95a9ab0b90fac8a2f"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vn-d_jDm3Mnx6mKeYQwe_Sy8fXU7AmO4LqUVo-J-1rGn6BHDwQHgLA==
age: 15574011
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5d2c9b4fbe25b.jpg | 143.204.55.107 | 200 OK | 3.5 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5d2c9b4fbe25b.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, description=19-39228 Surfside Pre-Open Shoot 062319, Loews Hotels, Endless Summer, Surfside, Exterior, Drone, Architecture, Pool], baseline, precision 8, 5096x3192, components 3 Size3.5 MB (3520005 bytes) Hash3431cf07aae9843f6620e0dc5accfebe 2fafe0c55066ba23bc43b888f82a32e1d664bbb9 36776a967c6910d3c3628648eb4a16ad249133a05b012f03e0811e0ff830ea9a
GET /loewshotels.com-2466770763/cms/imagepool/5d2c9b4fbe25b.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3520005
date: Thu, 26 Oct 2023 11:41:28 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 15 Jul 2019 15:27:13 GMT
x-amz-version-id: YiDd3jVMocuzdD4frhGYrZOjtmI2JMuL
etag: "3431cf07aae9843f6620e0dc5accfebe"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TzB39glwzGlvq1TDBEugqcK5-Q3Oz2HIdcl1BgFCQPFxjGQQIASH7w==
age: 15573696
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4e0d90c4dc.jpg | 143.204.55.107 | 200 OK | 3.6 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/55d4e0d90c4dc.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2456x1760, components 4 Size3.6 MB (3563136 bytes) Hash9f3bf5b6027f062969844d449bbd0d59 7635e454414f5ca5d873cb6ed41d8053220e3596 131ceaab75b150439d3834cd802168337ae389ec99c1d19a5781861c41d94296
GET /loewshotels.com-2466770763/cms/imagepool/55d4e0d90c4dc.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3563136
date: Fri, 05 Apr 2024 22:38:00 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:12 GMT
x-amz-version-id: yOVJkwZx21l9Wz.WkPUsTKF6PHUyXC7M
etag: "9f3bf5b6027f062969844d449bbd0d59"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 44LIXeH09X194F8HVGW-F88kE66jL1qXxcG96YGOaIdW95G5IAPKGQ==
age: 1537504
X-Firefox-Spdy: h2
|
|
| cdn.auth0.com/js/auth0/9.10/auth0.min.js | 54.230.82.48 | 200 OK | 61 kB |
URL GET HTTP/2cdn.auth0.com/js/auth0/9.10/auth0.min.js IP54.230.82.48:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.auth0.com Fingerprint25:82:AA:4B:C0:C9:FE:66:32:63:14:A2:DA:94:5C:15:47:DE:C1:BB ValidityThu, 25 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash93947a20ee2e1611eb236b21c0e09937 76811c1a1d4bd818d3f77e34bf4faab5af083bf4 732cef6e682c77167eb28b38df07b64b0345966983d5ade5623d7783696b0274
GET /js/auth0/9.10/auth0.min.js HTTP/1.1
Host: cdn.auth0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Fri, 05 Jul 2019 14:01:39 GMT
x-amz-version-id: N4bT7uXCdMCtwWdt976B9W_2.xmJUGxV
server: AmazonS3
content-encoding: gzip
date: Tue, 23 Apr 2024 17:12:54 GMT
cache-control: max-age=10800,public
etag: W/"f0de5080963d571b87bc461bcd29a1f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wnp7NXBrqPnbOLDQ2fC6z-Ci0pXl1UTicSR-mIFOwoECefMEtNlCLQ==
age: 5848
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5e6f834ef03ec.jpg | 143.204.55.107 | 200 OK | 4.9 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5e6f834ef03ec.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=30, height=4480, bps=0, compression=none, PhotometricInterpretation=RGB, description=20-45201 ESR20 Dockside Pre-Open Shoot 022720-022920,, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6720], baseline, precision 8, 5500x3666, components 3 Size4.9 MB (4931557 bytes) Hash774dc55c67d67dea10e64804be778c74 9c5962241510ed3025bd6dfcd4d1768bdce319f7 01deacaa69f6a144d8812815c57b6114b7516d4c0e85ef4335437ea1a2e9b418
GET /loewshotels.com-2466770763/cms/imagepool/5e6f834ef03ec.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4931557
date: Thu, 26 Oct 2023 11:41:28 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 16 Mar 2020 13:46:56 GMT
x-amz-version-id: R.7ctBslLEPYyDxHRoVqcnrjNDhSys0D
etag: "774dc55c67d67dea10e64804be778c74"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: icUuumu8VGF8PLuZBv6Tijiq2qpqUFraUyky88JkN9zcfb_gyRzQ7A==
age: 15573696
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/6011b303c2271.jpg | 143.204.55.107 | 200 OK | 5.3 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/6011b303c2271.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=25, height=4328, bps=0, compression=none, PhotometricInterpretation=RGB, description=LOEWS_LIVE_Exterior_front_day, orientation=upper-left, width=8602], baseline, precision 8, 5500x2767, components 3 Size5.3 MB (5270199 bytes) Hash85307c18d9915e2ee064468aa4cf32fb 3416e8cb745ee276ce4f2891b83d1128d7ef8ff8 fc94cef159498019ba9658967b3471ba1350d4fe7aa068f96979bc742c1583bf
GET /loewshotels.com-2466770763/cms/imagepool/6011b303c2271.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5270199
date: Tue, 19 Dec 2023 18:01:47 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Wed, 27 Jan 2021 18:37:57 GMT
x-amz-version-id: LvJIK6lOXA8PlCI2soOhYizKnyaTvU1p
etag: "85307c18d9915e2ee064468aa4cf32fb"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5ee2MoUOEt896ccJ7aeDnDBPMElLtSNxqRgZZJ2XVxZAnckOCS-RhA==
age: 10885276
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/656df934be3cc.jpg | 143.204.55.107 | 200 OK | 5.3 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/656df934be3cc.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 5000x2812, components 3 Size5.3 MB (5277883 bytes) Hashd40c9c3aca753e84912a7f694bc7986b 196f3b885de04981c39859c67b6042bbd46411ec c24f1c819826fe5b756a4efe2608b321980d006cdfb0de8b66d71fb7044991d6
GET /loewshotels.com-2466770763/cms/imagepool/656df934be3cc.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5277883
date: Tue, 05 Dec 2023 16:26:08 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 04 Dec 2023 16:07:17 GMT
x-amz-version-id: jwF_ftRmy38XBtICP22phYWYwRwT6ygR
etag: "d40c9c3aca753e84912a7f694bc7986b"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qaEVqQ7QKTUUm7t0kkiAEEG_xoJW30C6H_nW-yAQEx03AxtKAixPJA==
age: 12100616
X-Firefox-Spdy: h2
|
|
| unpkg.com/leaflet@1.9.4/dist/leaflet.js | 104.17.247.203 | 200 OK | 5.6 MB |
URL GET HTTP/2unpkg.com/leaflet@1.9.4/dist/leaflet.js IP104.17.247.203:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File typeJavaScript source, ASCII text, with very long lines (65383) Size5.6 MB (5623002 bytes) Hash35b48eb991f383702f153452506e07b2 5a640ff863e7902a8cac2ce6ba37c87b30677761 db49d009c841f5ca34a888c96511ae936fd9f5533e90d8b2c4d57596f4e5641a
GET /leaflet@1.9.4/dist/leaflet.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"24060-WmQP+GPnkCqMrCzmujfIezBnd2E"
via: 1.1 fly.io
fly-request-id: 01HFXAV9W5B5FYW9WCADE07A8K-arn
cf-cache-status: HIT
age: 13176417
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7585a39569b-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5bb37ef27b851.jpg | 143.204.55.107 | 200 OK | 6.4 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5bb37ef27b851.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=19, height=5792, bps=0, compression=none, PhotometricInterpretation=RGB, description=18-33114 – AVH18 Preopening Still/Video Shoot – Architecture, manufacturer=Canon, model=Canon EOS 5DS R, orientation=upper-left, width=10200], baseline, precision 8, 5500x3123, components 3 Size6.4 MB (6417103 bytes) Hash7d2ad1a8f125b1b8db2ac14d5695ae79 d9ab2fe8fc6795bc1d37036e4179e6c26a6ef0d8 bd0dab3f96b4c5124857dd3011baaa36c58a956775bf173c2b9ebd4eb93982c2
GET /loewshotels.com-2466770763/cms/imagepool/5bb37ef27b851.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6417103
date: Tue, 02 Apr 2024 20:45:30 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Tue, 04 Dec 2018 23:03:12 GMT
x-amz-version-id: 14kt7YrJQnaxGL79yPtRaN2ReQw7uI1c
etag: "7d2ad1a8f125b1b8db2ac14d5695ae79"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SDggKczm7-2bKESfreVn_gW25y7FN3HO70GNTnN5BmLVqZ-i184E4w==
age: 1803454
X-Firefox-Spdy: h2
|
|
| personalization-engine.hebsdigital.com/js/tracker.js | 34.202.21.139 | 200 OK | 142 kB |
URL GET HTTP/2personalization-engine.hebsdigital.com/js/tracker.js IP34.202.21.139:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.hebsdigital.com Fingerprint3D:02:8D:A3:E1:20:14:6B:77:D9:FC:05:C2:C1:8F:D4:4D:10:E3:CB ValidityTue, 06 Jun 2023 00:00:00 GMT - Fri, 05 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Size142 kB (141462 bytes) Hash5335d165a795301332fdc13a1d268038 2af4c74f93a80ed2869aa13a179fb0f95911c39e f320b7e4e6f9424ce3bcacac596386b11838952d3009e5b0e3ba3a5316678be1
GET /js/tracker.js HTTP/1.1
Host: personalization-engine.hebsdigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: application/javascript
server: nginx
last-modified: Tue, 28 Mar 2023 08:32:56 GMT
vary: Accept-Encoding
etag: W/"6422a638-57f51"
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/656df9f34e64f.jpg | 143.204.55.107 | 200 OK | 4.9 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/656df9f34e64f.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 5000x2812, components 3 Size4.9 MB (4852082 bytes) Hash6e15800159076de31f54de1ce051865a daf7c96f5f6fa004377faff2595165824a585ec8 69adaffa9b6882787eade5e59015e7aa19ea04a9f7f50a1e0b6c7c6066c26abb
GET /loewshotels.com-2466770763/cms/imagepool/656df9f34e64f.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4852082
date: Wed, 03 Jan 2024 02:09:44 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 04 Dec 2023 16:10:28 GMT
x-amz-version-id: ISj9lUhkh9C3KA0FumyHA0Y6UukbV13a
etag: "6e15800159076de31f54de1ce051865a"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1uCO3kr32HRSfHyrXDCCmLBrWs0iIQo7wl_RuyFt_-NIY3uZeaMwTQ==
age: 9646400
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-bold.woff2 | 54.205.89.152 | 200 OK | 25 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-bold.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25204, version 5.65 Hashd7826d26e824bb1d0fab2ca2bab4dd7d ecdc8fac52fdfac1be4cac14ed56e331f45248a1 721720bc39ba3dd58bb38be24c025a455d79cfe268b6f6c9aec8a5b5b4856da3
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-bold.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:13 GMT
content-type: font/woff2
content-length: 25204
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-6274"
expires: Wed, 23 Apr 2025 17:43:13 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| assets.adobedtm.com/extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement.min.js | 23.38.200.237 | 200 OK | 12 kB |
URL GET HTTP/2assets.adobedtm.com/extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement.min.js IP23.38.200.237:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subjectassets.adobedtm.com Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32759) Hash4635bffccc756e9a52eae8011adb9137 8c6d308daac07e23764c6dcf2f0d305931dfddb7 92c5b25edbc4647c55be848b92ea22fd4618cc3252a2364025262e18a7430f84
GET /extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4635bffccc756e9a52eae8011adb9137:1629320641.842128"
last-modified: Wed, 18 Aug 2021 21:04:01 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12188
expires: Tue, 23 Apr 2024 18:43:14 GMT
date: Tue, 23 Apr 2024 17:43:14 GMT
cache-control: no-cache
access-control-allow-origin: https://www.loewshotels.com
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/60b0f32bdd8ed.png | 143.204.55.107 | 200 OK | 7.8 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/60b0f32bdd8ed.png IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typePNG image data, 2400 x 3300, 8-bit/color RGBA, non-interlaced Size7.8 MB (7760099 bytes) Hash10ac96ff79317d95a0114e07935be982 9c373c0912cdfd991191598d44b769c88cd09239 6a46d15d33182466d4f97205194956a26c2d40f24d2b51ced5f46d9c01d154db
GET /loewshotels.com-2466770763/cms/imagepool/60b0f32bdd8ed.png HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7760099
date: Wed, 10 Jan 2024 12:30:43 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Fri, 28 May 2021 13:42:05 GMT
x-amz-version-id: nxEfPU2zQ313AMIerSV_AG421ZXshQBt
etag: "10ac96ff79317d95a0114e07935be982"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2OrK9ggTt4XQXXStCBbsYQ8expyOnatbJm9PitoAL058VphtkPNUKA==
age: 9004341
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89189049cc7.jpg/1920x1080/fit/80/c7649033c1a79b04aadb0e0621682523.webp | 143.204.55.107 | 200 OK | 146 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89189049cc7.jpg/1920x1080/fit/80/c7649033c1a79b04aadb0e0621682523.webp IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size146 kB (145660 bytes) Hashf5d679b16d004775d8d1c21cc6d0632c 73b0e6c83bb3ed3999c7c162a9443b154d93fcb7 4a8704656e051bc0d1f69e7f6e9713f668f92407d2bdaaba509f13da06e75ed3
GET /loewshotels.com-2466770763/cms/cache/v2/5c89189049cc7.jpg/1920x1080/fit/80/c7649033c1a79b04aadb0e0621682523.webp HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 145660
date: Tue, 23 Apr 2024 17:43:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Jun 2021 18:07:55 GMT
x-amz-version-id: QMFDRnTl159cRuYc5Da8nJSxaUP..0gT
etag: "f5d679b16d004775d8d1c21cc6d0632c"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YEUol0l_B_ZudRoOlSnfJ4HgRf4-oTytyirguOpD8lrG2zuVcMd9Cw==
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/scripts/scripts.min.js | 54.205.89.152 | 200 OK | 969 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/scripts/scripts.min.js IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Size969 kB (969153 bytes) Hash090f4a2c1a6cbdbe24b24630d2885834 97e4139939041b1c5519f3d47cee09648bb0440f e14ad750ee329e153df9254dbc77894cbea84640b403c5dc5b71e7d76f5e1f9e
GET /skins/skin-prodloews/1713178753/assets/desktop/scripts/scripts.min.js HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-290491"
expires: Wed, 23 Apr 2025 17:43:04 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| assets.adobedtm.com/extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement_Module_ActivityMap.min.js | 23.38.200.237 | 200 OK | 1.6 kB |
URL GET HTTP/2assets.adobedtm.com/extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement_Module_ActivityMap.min.js IP23.38.200.237:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subjectassets.adobedtm.com Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (3157) Hash8b210658d66894c896047ae490138f1c 0cf1d3e81a40978cea4f33d195ec27fc998623c1 0821bd2158b7c2d4165a43a999f30fdc1dc977c6f216ae950298b0237189c0e2
GET /extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8b210658d66894c896047ae490138f1c:1629320642.068491"
last-modified: Wed, 18 Aug 2021 21:04:02 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 23 Apr 2024 18:43:15 GMT
date: Tue, 23 Apr 2024 17:43:15 GMT
content-length: 1593
cache-control: no-cache
access-control-allow-origin: https://www.loewshotels.com
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89240303e9b.jpg/768x500/fit;c:0,86,5502,3666;fp:7,54/80/0282528b469657f691cefba22fcd000d.jpg | 143.204.55.107 | 200 OK | 57 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89240303e9b.jpg/768x500/fit;c:0,86,5502,3666;fp:7,54/80/0282528b469657f691cefba22fcd000d.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 360x360, segment length 16, progressive, precision 8, 768x500, components 3 Hash7e4e2bfbb3fbca6f44dd278025d6a417 777324f1d68d68e5af8a27ee262d02c9fc312201 c01f2031d015839991fb2c3d526c528f6eda3ab2cab6a8abe62356fb64e37eeb
GET /loewshotels.com-2466770763/cms/cache/v2/5c89240303e9b.jpg/768x500/fit;c:0,86,5502,3666;fp:7,54/80/0282528b469657f691cefba22fcd000d.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 57364
date: Tue, 23 Apr 2024 17:43:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 23 Mar 2023 15:43:34 GMT
x-amz-version-id: kQzhpq5w_JaC_aNApoNU75ZDpkvs4MlA
etag: "7e4e2bfbb3fbca6f44dd278025d6a417"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QqhwyWrYpM4y-zgkyODdooTY1KPTell6iSteouPRq7NK8BogDOi_OQ==
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/styles/styles.min.css | 54.205.89.152 | 200 OK | 82 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/styles/styles.min.css IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hash4f3c00246a459f93b1decb10a7737275 9136fce22fde354a617bb66669aa34270d3225c2 26ee114a04309890e524c8c685096a0f196eef6629defdcfea452b47460e8708
GET /skins/skin-prodloews/1713178753/assets/desktop/styles/styles.min.css HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: text/css
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-74315"
expires: Wed, 23 Apr 2025 17:43:04 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_bd.woff2 | 54.205.89.152 | 200 OK | 18 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_bd.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17580, version 1.0 Hash7762d3607c0114253644bfbcb4f35035 1a8edaae33983923cec4524b4556c3e7a421bb2b 9c93394f8f01e62e2572d653f4d40e8e2a19d2857fa5c59da4ceab30043e5032
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_bd.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:16 GMT
content-type: font/woff2
content-length: 17580
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-44ac"
expires: Wed, 23 Apr 2025 17:43:16 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5f5a6f3432f59.jpg | 143.204.55.107 | 200 OK | 9.1 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5f5a6f3432f59.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=20, height=6043, bps=254, compression=none, PhotometricInterpretation=RGB, description=Loews Kansas City Hotel, manufacturer=Phase One, model=IQ4 150MP, orientation=upper-left, width=9000], baseline, precision 8, 4200x2814, components 3 Size9.1 MB (9147644 bytes) Hashc70143dbbce1d179e8d9ae224bff98da 2da1ba467cc7498ce765519f328c41a6fa7cacc8 568c2f7f66a3461ec2bd0546273ccbea9ff6b77e2f36d352c3adfc12658cbe3e
GET /loewshotels.com-2466770763/cms/imagepool/5f5a6f3432f59.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9147644
date: Thu, 26 Oct 2023 11:41:26 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Thu, 10 Sep 2020 18:23:49 GMT
x-amz-version-id: Ef8g.V5l8cdQ9lJKwCLb7ZPu63HlG9rh
etag: "c70143dbbce1d179e8d9ae224bff98da"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FXcM1koGKp_jDP_8SNrZHwpWdCrKxnh6qWajqz4ntP4xc0tYll1BVQ==
age: 15573698
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89188646e60.jpg/768x500/fit/80/2263af3dfe2716e938b8fe01df3fa395.jpg | 143.204.55.107 | 200 OK | 60 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/cache/v2/5c89188646e60.jpg/768x500/fit/80/2263af3dfe2716e938b8fe01df3fa395.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 360x360, segment length 16, progressive, precision 8, 768x500, components 3 Hashc02a14db0f1b47a98832e23451ae638c d25bbaafb66a638e106775445119c2bd08596853 80b0cbdb588c22fd301804b5f0e9efae821175b201548d83131ab3233c2ca42c
GET /loewshotels.com-2466770763/cms/cache/v2/5c89188646e60.jpg/768x500/fit/80/2263af3dfe2716e938b8fe01df3fa395.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 59885
date: Tue, 23 Apr 2024 17:43:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Mar 2019 19:48:16 GMT
x-amz-version-id: OW5qX7Dhxyp0ZmOGKY.NCuXgbp2voIE0
etag: "c02a14db0f1b47a98832e23451ae638c"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MZKltYrV8QQgCreJxKVvcF8rSlNe8Y0121iq6Bjnqwva68Lh-JH2Tw==
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5c4b4c63de75c.jpg | 143.204.55.107 | 200 OK | 8.0 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/5c4b4c63de75c.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CS6 (Macintosh), datetime=2018:06:24 12:33:46], baseline, precision 8, 3500x1966, components 3 Size8.0 MB (7968830 bytes) Hasha7c93cc575eb85adcd8c1145c264a67f 7f38f3b32aa1237ce407f59c6c4b623840252eaa 80feb422b69ef9652f945d7b99b5b68cf1f6b3dd9c75c9629ebaf1c3d0ce453d
GET /loewshotels.com-2466770763/cms/imagepool/5c4b4c63de75c.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7968830
date: Thu, 04 Apr 2024 08:40:14 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Fri, 25 Jan 2019 17:50:29 GMT
x-amz-version-id: Jl7QFFSsBfSntj9YBftATF_pjAOMkTev
etag: "a7c93cc575eb85adcd8c1145c264a67f"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YK2rIPetUXHkYXmEP9iCXrIRr6yhZ6bO9hHOUfY0TRObRzSDZqZihg==
age: 1674170
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/602d3e37e548f.jpg | 143.204.55.107 | 200 OK | 6.8 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/602d3e37e548f.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=18, height=5792, bps=0, compression=none, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 5DS R, orientation=upper-left, width=8688], baseline, precision 8, 5500x3666, components 3 Size6.8 MB (6801962 bytes) Hashd8bf8317e032e424b2c6f6724512ab17 10b2d888c35ea0e2cb0196a716b917fc52e08a08 36edf985ca991ff39f47a76ecc88388dbf603c217c9c8fc055568beb55bbcc7b
GET /loewshotels.com-2466770763/cms/imagepool/602d3e37e548f.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6801962
date: Thu, 26 Oct 2023 07:50:03 GMT
cache-control: public, max-age=31536000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Wed, 17 Feb 2021 16:03:05 GMT
x-amz-version-id: wwPQUvD5HtbjIXswXt.32x3jEe7y0gZH
etag: "d8bf8317e032e424b2c6f6724512ab17"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 416eobkH7ioVx8k93yBsYLiDDf-3pmaTH6ptBDx-pFpewV1gkQZ7Hw==
age: 15587580
X-Firefox-Spdy: h2
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/579f4c516e4bf.jpg | 143.204.55.107 | 200 OK | 7.0 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/579f4c516e4bf.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5760, bps=0, PhotometricInterpretation=RGB, model=Canon EOS 5D Mark III, orientation=upper-left, width=3840], baseline, precision 8, 2600x3900, components 3 Size7.0 MB (6983761 bytes) Hash530aa9ae38337ad596ed9204043098ac 6469dab2d03741cc3006d591073fb550b550d18e 3ef6588e399fdffc1ff00dd49476629644053fba9ecfe0b8f4a1f126edc96270
GET /loewshotels.com-2466770763/cms/imagepool/579f4c516e4bf.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6983761
date: Sun, 31 Mar 2024 05:12:51 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:46 GMT
x-amz-version-id: 3waisKKBC7oWRcZ7dNhqQy3hBfLrvkBc
etag: "530aa9ae38337ad596ed9204043098ac"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -5gLq1EJSVXQFBFnUh8JV96HFZuz3bNl667YIA4np4aQJUa0GuEUyw==
age: 2032213
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/icon196x196.png | 54.205.89.152 | 200 OK | 101 B |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/icon196x196.png IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typePNG image data, 196 x 196, 1-bit grayscale, non-interlaced Hashb09faf3161e6e99941cb42098a966a82 00d44aa286caeec4a0efac14c5ef5926152f79be b6b34a02e2312a78f36b8dfde0dcb36f063333863406dc9389b0b258466ee922
GET /skins/skin-prodloews/icon196x196.png HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:20 GMT
content-type: image/png
content-length: 101
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-65"
expires: Wed, 23 Apr 2025 17:43:20 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/favicon.ico | 54.205.89.152 | 200 OK | 34 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/favicon.ico IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeMS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel Hashff5c5bdbaa9011ca5ca554900110c951 36f3f0aaa57481f044762dc7fdb84a4a9a15a957 ede3b62d998abcb886e0ec59019598dd6b428955fdb92e29f761a3cdb9c66120
GET /skins/skin-prodloews/favicon.ico HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:20 GMT
content-type: image/x-icon
content-length: 34494
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-86be"
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email | 54.205.89.152 | 200 OK | 58 kB |
URL User Request GET HTTP/2www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email IP54.205.89.152:443
CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hashb9cb012ac9327f25397c81bca7e339f1 8a1a68de1d3e7d1193838c5d40f1a33d37730bc4 e1d0bfad598f694eaaa9cb8d524341b269b9ffee2af061304d8e54e1805db8da
GET /meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-hebs-cache-status: hit
cache-control: private, max-age=7200, must-revalidate, pre-check=30, post-check=30
pragma:
expires: Tue, 23 Apr 2024 18:42:29 GMT
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| alive5.com/js/a5app.js | 54.230.111.22 | 200 OK | 3.9 kB |
IP54.230.111.22:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6468) Hash9581ccbd08d511b43f6f4cf642edda01 b30f5784be241c8e8bab1f3b5e040f8b8d028d39 1b561b319a939ff87c280e993f6147a2fe966a8207a74e44b95bd6818496fec4
GET /js/a5app.js HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 3948
last-modified: Mon, 22 Apr 2024 04:58:41 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: UlhzqU6QoViVJmEVYW7dmloRxwvFTLYR
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:08 GMT
etag: "29b523d0b4fbf745c0c868942a17e986"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jrzCOi4sMaX7HUI2AU2SbG852rhIZMav0YpgdunumrKHmBERlERoEA==
age: 45854
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-M99BJ9H | 142.250.74.40 | 200 OK | 110 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-M99BJ9H IP142.250.74.40:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (42716) Size110 kB (110266 bytes) Hashd6f18fa6ce645e3ae2504600be278882 1b8ab8b35283061697f2eaa11ed7cefaf818367d d7364ea8ff33e9ec1426a708f5debbde0ac91e9250d15812373c9acdb210c3b8
GET /gtm.js?id=GTM-M99BJ9H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:43:21 GMT
expires: Tue, 23 Apr 2024 17:43:21 GMT
cache-control: private, max-age=900
last-modified: Tue, 23 Apr 2024 16:52:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 110266
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=590de45c0ededa2bd3ccad81819ddfc4 | 54.230.111.72 | 200 OK | 24 kB |
URL GET HTTP/1.1static.site24x7rum.com/beacon/site24x7rum-min.js?appKey=590de45c0ededa2bd3ccad81819ddfc4 IP54.230.111.72:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.site24x7rum.com Fingerprint99:87:D3:96:1A:A0:93:E1:83:86:D1:1B:5B:28:E9:2E:E2:A4:3B:3E ValiditySat, 01 Jul 2023 00:00:00 GMT - Mon, 29 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (43694) Hash8d9134e5b2a683f172996e432d2ae9a9 30106508db2c0ce7fcd8c364a6ae3b9be5a7d547 9e247accce962db170f735d2bf8ad76fe620b9acdfac41d3288d50f9d34a0894
GET /beacon/site24x7rum-min.js?appKey=590de45c0ededa2bd3ccad81819ddfc4 HTTP/1.1
Host: static.site24x7rum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 23 Apr 2024 14:43:31 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: ZGS
Vary: accept-encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UZyt35gGJDETT3k3kyqGYP_HbInReNiuPitFXecbCzojXQMK7OXJvg==
Age: 10791
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/scripts/mp_linkcode.js | 54.205.89.152 | 200 OK | 5.8 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/scripts/mp_linkcode.js IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hashfda62a9adfa0dcdbf5c18113f13e1b48 a24b30194acb7c3ede8c6a718d161fab1cd8319f 879687ee7af404d4bc8e90443f5cf0d3060b28aaed09f12ba7e95a1729a6ef8e
GET /skins/skin-prodloews/assets/desktop/scripts/mp_linkcode.js HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:03 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-777"
expires: Wed, 23 Apr 2025 17:43:03 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/images/sprite-2017.svg | 54.205.89.152 | 200 OK | 16 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/images/sprite-2017.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hasha998b6a0d71f9f2859260b4605e09c34 add92eb24a7345e200cec0b3d4a6f56fb994159a bef5119eef453fcfcb5c7deeaf508a0bbfec3b85629953b60b7d597404c7b023
GET /skins/skin-prodloews/1713178753/assets/desktop/images/sprite-2017.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:07 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-79a5"
expires: Wed, 23 Apr 2025 17:43:07 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-23G7 | 142.250.74.40 | 200 OK | 64 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-23G7 IP142.250.74.40:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2165) Hash6ad0538fa251c7899940a87ec575b1e7 47adecedc90f53724d991f36d047efacff08722e e1046d88616c796fb3f9324cdffeb24097728e52922d8b1e0971363f242f83a6
GET /gtm.js?id=GTM-23G7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:43:22 GMT
expires: Tue, 23 Apr 2024 17:43:22 GMT
cache-control: private, max-age=900
last-modified: Tue, 23 Apr 2024 16:44:44 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63470
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/booking-collection.svg | 54.205.89.152 | 200 OK | 6.4 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/booking-collection.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hash1f84b8f3b055459859cc988a344c143d 1adc31e93f18121e6d7d1f7763eef371d5221232 924f7e1e06bf35d32e460bbd59d24abc15a8bdb7d4a933b75bfcb87b03646b37
GET /skins/skin-prodloews/assets/desktop/images/booking-collection.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:07 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-5ea"
expires: Wed, 23 Apr 2025 17:43:07 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/scripts/lightbox.js | 54.205.89.152 | 200 OK | 9.3 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/scripts/lightbox.js IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typegzip compressed data, from Unix Hashfbec576d3492a67a76dd8b6420f785f1 77890badefa6ec677f6e766566c660f1e8d5b72a f05f35a0af58e88a742ad069b1c5da004801617ae046a646c87cb7dc3f231bbb
GET /skins/skin-prodloews/1713178753/assets/desktop/scripts/lightbox.js HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:04 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-240d"
expires: Wed, 23 Apr 2025 17:43:04 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 6.1 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
Hash0931ffff99b368b1770ee41fb79aefcf f5d04e1ef705bb92e43626a3bb6895da0becf1af 61bc913e174af6ab1437271221b00423ccdb2ec0e4433fb20a214fb1d9f7c106
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 23 Apr 2024 17:43:04 GMT
date: Tue, 23 Apr 2024 17:43:04 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| alive5.com/js/widget-min.js?s=1713761893968 | 54.230.111.22 | 200 OK | 12 kB |
URL GET HTTP/2alive5.com/js/widget-min.js?s=1713761893968 IP54.230.111.22:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (16234) Hash6e38ab4423c1bac005cbf01eef8d1d81 02fd42ceb4fa8f9781a0994d2e5dbb0a6c30b84d 70db97d6ffdc2c4381c6dde092ca0d0cce838619b2eaa6108cd2bd7dd0b1ff54
GET /js/widget-min.js?s=1713761893968 HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 12262
last-modified: Mon, 22 Apr 2024 04:58:41 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: wwpjDpAOCC7eGna1mu30Qm83z5RrbrtJ
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:50 GMT
etag: "afd1472e0ac7d94da516b4731f7b51e0"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QX8aFtNFB1n67iSALSGC3j2UXJTOIqe-g7gkMQCRByB69ZPyOIMOEg==
age: 45853
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/6.21.0/otBannerSdk.js | 104.19.177.52 | 200 OK | 76 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/6.21.0/otBannerSdk.js IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hashf115c8fca9b441635fc753620cc683e7 3db889c399f6a60807ba77f74fc0380e503dbaf2 0068b328dc886133e94de712c57b93368f820f34c3dc9562792b36bace8599c0
GET /scripttemplates/6.21.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:22 GMT
content-type: application/javascript
content-length: 75797
content-encoding: gzip
content-md5: pGGMtIN6zlnW55bGN1NE3w==
last-modified: Fri, 23 Jul 2021 01:58:45 GMT
etag: 0x8D94D7D67DF8167
x-ms-request-id: c86378c5-401e-0073-0cc0-126110000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 84957
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7cc9eb51c02-OSL
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/images/social-all.svg | 54.205.89.152 | 200 OK | 221 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/images/social-all.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeSVG Scalable Vector Graphics image Size221 kB (220806 bytes) Hash878d6dc295e0003c6fd26e8c51beea58 6e24a3febc1962f9db6ed7d1973fcaee5b7ceb06 7a1acf58847a981b73cd2df501da9c63c4bc2b55fbc9265f15f071dfabdb5c82
GET /skins/skin-prodloews/1713178753/assets/desktop/images/social-all.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/styles/styles.min.css
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:15 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-14e18"
expires: Wed, 23 Apr 2025 17:43:15 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-CB27865Q4Z&l=dataLayer&cx=c | 142.250.74.40 | 200 OK | 90 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-CB27865Q4Z&l=dataLayer&cx=c IP142.250.74.40:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash5fb542e0cd17b6f9fc2cb75f7043c790 d11747e5e02114d3732880ced60199894db9557a 931a49f6b26214885e70d596466bbf0e757e4ad923346b6b3c674575ea5200c2
GET /gtag/js?id=G-CB27865Q4Z&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 17:43:22 GMT
expires: Tue, 23 Apr 2024 17:43:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89640
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| schema.apolloplatform.com/clientJS/apolloDQ.js | 143.204.55.42 | 200 OK | 27 kB |
URL GET HTTP/2schema.apolloplatform.com/clientJS/apolloDQ.js IP143.204.55.42:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subjectcdn.apolloplatform.com FingerprintFA:B6:BE:D0:1E:75:E8:6A:CD:26:AD:89:D3:56:D6:63:C4:B2:F0:10 ValidityThu, 23 Nov 2023 00:00:00 GMT - Sat, 21 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash50f83e3656b9a14af6c7186e53c14586 7fdcf77f8812503e47ae52e187b73fa199dab7d3 2cb34277a5434f95f67e8db342273633beb965b1e4151781e11145a76526437a
GET /clientJS/apolloDQ.js HTTP/1.1
Host: schema.apolloplatform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 17 Mar 2022 17:53:38 GMT
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 01:15:55 GMT
etag: W/"50f83e3656b9a14af6c7186e53c14586"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qc8PeTW0bm4JII2k1VWDmLomtEkj3d_8iO-FUYpzBW6eMVHd8ZBfIg==
age: 61292
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/0a9765e3-a574-41b5-a49b-d12291495d13/5b2c575a-1663-41bc-9694-98b8ffccfa85/en.json | 104.19.177.52 | 200 OK | 18 kB |
URL GET HTTP/2cdn.cookielaw.org/consent/0a9765e3-a574-41b5-a49b-d12291495d13/5b2c575a-1663-41bc-9694-98b8ffccfa85/en.json IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashebd3154ae422bbbb56896ae8dcc3a751 b21db080a95409a274e825464ee880cfb6649c77 6f3ac04f6a6ee6e119fb0a14d010f1f00c0949d46dede2388a30a3cf56946fe7
GET /consent/0a9765e3-a574-41b5-a49b-d12291495d13/5b2c575a-1663-41bc-9694-98b8ffccfa85/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:22 GMT
content-type: application/x-javascript
content-length: 17587
cf-ray: 878fa7cdeab9b511-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 78846
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DA6A45C10A8EBD
expires: Wed, 24 Apr 2024 17:43:22 GMT
last-modified: Wed, 20 Jul 2022 11:48:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: UQGx9/10qUsw6+1dFTXgYQ==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 60ca5926-301e-000b-630c-15c2e8000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Started.json | 143.204.55.101 | 200 OK | 1.4 kB |
URL GET HTTP/2cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Started.json IP143.204.55.101:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subjectcdn.apolloplatform.com FingerprintFA:B6:BE:D0:1E:75:E8:6A:CD:26:AD:89:D3:56:D6:63:C4:B2:F0:10 ValidityThu, 23 Nov 2023 00:00:00 GMT - Sat, 21 Dec 2024 23:59:59 GMT
Hash142c746ee486199287a5939dd7cae5ad e8da7d50d734cb2638151af01ccfefbd70d213b0 5426db2077429732be4faa106f9a71eaed16784ac770399c8fd8769a654d18a0
GET /app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Started.json HTTP/1.1
Host: cdn.apolloplatform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 1427
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Tue, 13 Jun 2023 18:28:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 10:16:49 GMT
etag: "142c746ee486199287a5939dd7cae5ad"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5mykf-wwRvKCXM3LME4Qes9jotujvdbkXs4hYGvdchbM-byLtEIFZg==
age: 26794
X-Firefox-Spdy: h2
|
|
| cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Completed.json | 143.204.55.101 | 200 OK | 289 B |
URL GET HTTP/2cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Completed.json IP143.204.55.101:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subjectcdn.apolloplatform.com FingerprintFA:B6:BE:D0:1E:75:E8:6A:CD:26:AD:89:D3:56:D6:63:C4:B2:F0:10 ValidityThu, 23 Nov 2023 00:00:00 GMT - Sat, 21 Dec 2024 23:59:59 GMT
Hash4856c2ac363ca2cca9a78021417898b6 9566899f6dd3ed4b7b9fe2f83479d6b7bd9e3f18 2ab8f34de3ccd3634518dd9188b7ec7cf08e00190b5e56e6606ad3ed2c92b2dd
GET /app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/Page%20Load%20Completed.json HTTP/1.1
Host: cdn.apolloplatform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 289
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Tue, 13 Jun 2023 18:28:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 10:57:25 GMT
etag: "4856c2ac363ca2cca9a78021417898b6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ohfWXX-JTterKl5VQ8jH9E_kQvHkTzjDGHKTi2X58X-lLnlQxArxOQ==
age: 24358
X-Firefox-Spdy: h2
|
|
| cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/User%20Detected.json | 143.204.55.101 | 200 OK | 497 B |
URL GET HTTP/2cdn.apolloplatform.com/app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/User%20Detected.json IP143.204.55.101:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subjectcdn.apolloplatform.com FingerprintFA:B6:BE:D0:1E:75:E8:6A:CD:26:AD:89:D3:56:D6:63:C4:B2:F0:10 ValidityThu, 23 Nov 2023 00:00:00 GMT - Sat, 21 Dec 2024 23:59:59 GMT
Hasha39d395aeebeb6338d8a5c25c7ac8ef1 b8a65e14b93be3b43d15c7ca6a44ea0debaf7e16 1a04d0a92f3d380c4c1f3c536abc1e30fb21571ca393a8edaf801b71a01a7c8f
GET /app/bf2f7049-cd29-5282-a613-06cca4ef34d0/44af02a7-6f4f-47c4-b038-14177798996e/f47b346d-616a-4d02-8781-0a8d38f6b6fd/User%20Detected.json HTTP/1.1
Host: cdn.apolloplatform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 497
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Tue, 13 Jun 2023 18:28:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 13:27:09 GMT
etag: "a39d395aeebeb6338d8a5c25c7ac8ef1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gg5qS821TpNUj2QXRD1Bb_sQb3xNS0CIRv11yu6t-VujnS75iC59tg==
age: 15374
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv | 142.250.74.164 | 200 OK | 31 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv IP142.250.74.164:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeHTML document, ASCII text, with very long lines (37189) Hash961ef97deed4ce3e416f359c226253e2 6fb515690d3555bcac54e9cb28daa4ac657892df 96f081f4c080042ad6b0f6f356c15f1660f06567b887da6421a609c3af8c9401
GET /recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 17:43:22 GMT
content-security-policy: script-src 'nonce-UTR3uKNbo6TLc4vLF0g3MQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.cookielaw.org/scripttemplates/6.21.0/assets/v2/otPcCenter.json | 104.19.177.52 | 200 OK | 12 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/6.21.0/assets/v2/otPcCenter.json IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash24aa23f9e7a252818a64e7a50e7e8e4d 16e43a853fe019f5aae249e0cc7f5a8da3f084a5 584f895bb024b067b440328e4d92bb57ed91c91fccfdd464d20b078d5e6e2f7c
GET /scripttemplates/6.21.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:22 GMT
content-type: application/json
content-length: 11523
content-encoding: gzip
content-md5: PUpMkq1SXMqV5yZBdrq2rw==
last-modified: Fri, 23 Jul 2021 01:58:41 GMT
etag: 0x8D94D7D65056FF9
x-ms-request-id: a65fa1d1-701e-009c-2944-0d94e5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78845
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7cf2c20b511-OSL
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:41 GMT
expires: Mon, 21 Apr 2025 20:38:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 162281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 162283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/d8a5aa5e/www-widgetapi.vflset/www-widgetapi.js | 142.250.74.142 | 200 OK | 68 kB |
URL GET HTTP/2www.youtube.com/s/player/d8a5aa5e/www-widgetapi.vflset/www-widgetapi.js IP142.250.74.142:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (531) Hasha70e911421da4eb47e035d6f25388f76 c910977d4de4c1239ca2023d63bb04032bb3c1e9 85b38e7085ac3e5d7b57603c31d75140522fa3a4a70c0a944ad7337b80451e1a
GET /s/player/d8a5aa5e/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 68321
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 07:26:46 GMT
expires: Tue, 22 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 04:18:07 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 123396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 162284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 486020
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.35 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:54:07 GMT
expires: Thu, 25 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 485356
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (17687) Hash133138dc8ed76a5e7f52fd72aeb36003 10c34d56309ef22c2bf88339d926efa45f86c579 177b76acdcfb6e097a1c110e91ba676b60284b881d963cf56dc00e358957ae71
GET /js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7443
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:06:06 GMT
expires: Thu, 17 Apr 2025 05:06:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 563837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| alive5.com/icons.html | 54.230.111.22 | 200 OK | 5.0 kB |
IP54.230.111.22:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash8f75514fc5895dc3653ca2b9d35bbd53 eedda004d2f88d4d112fa3c9dd4f4b601d0ab44c 5e32e36d67d436fa5dc42760c7f99fc41c55709c43137a96a0c572133014170a
GET /icons.html HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 4965
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-expose-headers: ETag
access-control-max-age: 30000
last-modified: Mon, 22 Apr 2024 04:58:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: kayICoq8v6keuZWovL2VRZQLXOh1nUZk
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:50 GMT
etag: "c57fece4f277866b237dae4a72870d7d"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MbpxUc6Jh7wlrGNxXBi109P2vUVYc1bCJwrcsPl1JDqoqvZummZ-zA==
age: 45868
X-Firefox-Spdy: h2
|
|
| files.alive5.com/images/widgets/upload/loewshotel-w1658292655764.png | 143.204.55.84 | 200 OK | 2.3 kB |
URL GET HTTP/2files.alive5.com/images/widgets/upload/loewshotel-w1658292655764.png IP143.204.55.84:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typePNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced Hash347519b71d8e3a972f3a6161a942fdb7 90f6fe12fdd5252d0a8e7519a1fdfe47d2242bf7 4c289b96c46e3b3160cccd5878c91eabe11dc181751188529f1daaf20d2545e7
GET /images/widgets/upload/loewshotel-w1658292655764.png HTTP/1.1
Host: files.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 2294
last-modified: Wed, 20 Jul 2022 04:50:56 GMT
x-amz-version-id: 1nAmUmazzSwKNE2Gr2wOWsZnlO3pHY7f
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 08:10:56 GMT
etag: "347519b71d8e3a972f3a6161a942fdb7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -o2ei1BeP2uyMXWDg6vnAQkn-S8qKi3AUZ1AkXkpsXdS3gJfPsUtTQ==
age: 34348
X-Firefox-Spdy: h2
|
|
| resources.digital-cloud-west.medallia.com/wdcwest/175638/onsite/generic1711466496251.js | 151.101.245.230 | 200 OK | 85 kB |
URL GET HTTP/2resources.digital-cloud-west.medallia.com/wdcwest/175638/onsite/generic1711466496251.js IP151.101.245.230:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerSSL Corporation Subject*.digital-cloud-west.medallia.com FingerprintE2:5F:3B:56:92:97:BE:0B:85:79:D6:38:43:88:CA:E4:A2:30:E6:E7 ValidityWed, 01 Nov 2023 14:29:33 GMT - Sun, 01 Dec 2024 14:29:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (12628) Hasha6049035f48f93ef399414cbe67b84aa 9d9aa40352a753df40cda8c05c982898ba762304 e190e72028c7affda70507a01655c752adb217d93f79e521c6c9c134de6b0f45
GET /wdcwest/175638/onsite/generic1711466496251.js HTTP/1.1
Host: resources.digital-cloud-west.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: eDO/T6MQKa/mg6Rao45W3z9sovN9wo2rodNmh3WVIsdFTKuVwiOsJf4Cn7O3xDuBf2l+aYBenjI=
x-amz-request-id: 1FVN51NK7T31H0J7
last-modified: Tue, 26 Mar 2024 15:21:37 GMT
etag: "a6049035f48f93ef399414cbe67b84aa"
x-amz-server-side-encryption: AES256
x-amz-version-id: WByNxMjjS366dBlHgpYIzPj24aHw.w.v
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Tue, 23 Apr 2024 17:43:23 GMT
via: 1.1 varnish
age: 355629
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 3
x-timer: S1713894203.190190,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 85210
X-Firefox-Spdy: h2
|
|
| files.alive5.com/images/widgets/upload/loewshotel-w1650917487991.png | 143.204.55.84 | 200 OK | 2.3 kB |
URL GET HTTP/2files.alive5.com/images/widgets/upload/loewshotel-w1650917487991.png IP143.204.55.84:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typePNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced Hash347519b71d8e3a972f3a6161a942fdb7 90f6fe12fdd5252d0a8e7519a1fdfe47d2242bf7 4c289b96c46e3b3160cccd5878c91eabe11dc181751188529f1daaf20d2545e7
GET /images/widgets/upload/loewshotel-w1650917487991.png HTTP/1.1
Host: files.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 2294
last-modified: Mon, 25 Apr 2022 20:11:29 GMT
x-amz-version-id: HmKOJgg968umazmGtsrK1kaT2uNHCw4h
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 08:10:56 GMT
etag: "347519b71d8e3a972f3a6161a942fdb7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DIMZtgs8FO2dCeUTIEHvLKrw0KtU5NspnMDvoLq9ID7xItirMHeznw==
age: 34348
X-Firefox-Spdy: h2
|
|
| api-v2.alive5.com/1.0/widget-code/get-by-widget-id?id=5f37739d-58b6-4465-8ccb-8f35bf4f595f | 35.175.24.110 | 200 OK | 17 kB |
URL GET HTTP/2api-v2.alive5.com/1.0/widget-code/get-by-widget-id?id=5f37739d-58b6-4465-8ccb-8f35bf4f595f IP35.175.24.110:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hasheb28a510a44142cc18ed65976104fd77 027792aa69db0dc396efc70d830d965011007178 87b9ba5c308c3c2412d5af3376f6839d717f0855c592f5bd25c3158c93747a89
GET /1.0/widget-code/get-by-widget-id?id=5f37739d-58b6-4465-8ccb-8f35bf4f595f HTTP/1.1
Host: api-v2.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:23 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=4reQSGu+8V9RbzOomBqSvGB+Oh6xQjB19WzLIMFwb7IFA6XeE1ZXuokeFnzZa5BmYbmnuyIeD9RUzqlB588W1r7jV9erybjcWDtteSM+x1/pmCrcqSkJ5u+jl8Y0; Expires=Tue, 30 Apr 2024 17:43:22 GMT; Path=/
AWSALBCORS=4reQSGu+8V9RbzOomBqSvGB+Oh6xQjB19WzLIMFwb7IFA6XeE1ZXuokeFnzZa5BmYbmnuyIeD9RUzqlB588W1r7jV9erybjcWDtteSM+x1/pmCrcqSkJ5u+jl8Y0; Expires=Tue, 30 Apr 2024 17:43:22 GMT; Path=/; SameSite=None; Secure
server: nginx
access-control-allow-origin: https://www.loewshotels.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-expose-headers: Authorization,X-A5-APIKEY
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"c89-cy3PThvM+0PetgmHDGNX9GTb9ys"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:41 GMT
expires: Mon, 21 Apr 2025 20:38:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 162282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 162284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ocsps.ssl.com/ | 52.6.97.148 | | 1.8 kB |
IP52.6.97.148:0
Hasha0b9be6efbd00b12e25460de1f62714d 46b11eb1b51e7b493032e0d79efca14615d88479 c0cea0a9e9222c5c43ea21364a8ec5f995ef4b744af16b3989426bc85fd6e67c
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 17:43:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: close
Expires: Tue, 30 Apr 2024 14:17:28 GMT
ETag: "46b11eb1b51e7b493032e0d79efca14615d88479"
Last-Modified: Tue, 23 Apr 2024 14:17:29 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
X-Proxy-Cache: HIT
|
|
| udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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 | 35.241.45.82 | 200 OK | 0 B |
URL GET HTTP/2udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInBhZ2VfdGl0bGUiOiAiRXZlbnQgUHJvbW90aW9ucyB8IExvZXdzIEhvdGVscyAmIENvIiwicGFnZV91cmwiOiAiaHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tL21lZXRpbmdzL3Byb21vdGlvbnM/dXRtX3NvdXJjZT1icmV2byZ1dG1fY2FtcGFpZ249TG9ld3MlMjBBcHJpbCUyMDIwMjQmdXRtX21lZGl1bT1lbWFpbCIsInRyYWNrZXJfdHlwZSI6ICJqYXZhc2NyaXB0IiwidHJhY2tlcl92ZXJzaW9uIjogIjIuMi4yMyIsInV0bV9zb3VyY2UiOiAiYnJldm8iLCJ1dG1fbWVkaXVtIjogImVtYWlsIiwidXRtX2NhbXBhaWduIjogIkxvZXdzIEFwcmlsIDIwMjQiLCJldmVudF9uYW1lIjogIm5lYnVsYV9wYWdlX3ZpZXciLCJldmVudF90aW1lc3RhbXBfZXBvY2giOiAiMTcxMzg5NDIwMzI5MiIsImV2ZW50X3RpbWV6b25lX29mZnNldCI6IDAsInVzZXJfaWQiOiAiMThmMGMwZTFmOTAzMmItMDI2YmI0ZmUyODZiZWE4LTMwNmQ0NjRhLTE0MDAwMC0xOGYwYzBlMWY5MTIyYiIsImVudmlyb21lbnQiOiAiZGlnaXRhbC1jbG91ZC13ZXN0IiwiYWNjb3VudElkIjogMTc1NjM2LCJ1cmwiOiAiaHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tL21lZXRpbmdzL3Byb21vdGlvbnM/dXRtX3NvdXJjZT1icmV2byZ1dG1fY2FtcGFpZ249TG9ld3MlMjBBcHJpbCUyMDIwMjQmdXRtX21lZGl1bT1lbWFpbCIsIndlYnNpdGVJZCI6IDE3NTYzOCwiZm9ybUlkIjogbnVsbCwiZm9ybVRyaWdnZXJUeXBlIjogbnVsbCwia2FtcHlsZV9kYXRhIjogeyJtZF9pc1N1cnZleVN1Ym1pdHRlZEluU2Vzc2lvbiI6ICIiLCJMQVNUX0lOVklUQVRJT05fVklFVyI6ICIiLCJERUNMSU5FRF9EQVRFIjogIiIsImthbXB5bGVJbnZpdGVQcmVzZW50ZWQiOiAiIiwia2FtcHlsZV91c2VyaWQiOiAiNDUyMC05NDk5LTY3OTUtNDg0ZS04NGRhLThhZDgtYzkwMC1iZGNlIiwia2FtcHlsZVVzZXJTZXNzaW9uIjogIjE3MTM4OTQyMDMyOTAiLCJrYW1weWxlVXNlclBlcmNlbnRpbGUiOiAiIiwiU1VCTUlUVEVEX0RBVEUiOiAiIn0sImNvb2tpZV9zaXplIjogODg0LCJrYW1weWxlX3ZlcnNpb24iOiAiMi41NC4xIiwib25zaXRlX3ZlcnNpb24iOiAiMi41NC4xIiwiaGlzdG9yeV9sZW5ndGgiOiAyLCJldmVudF9sb2NhbF90aW1lc3RhbXAiOiAxNzEzODk0MjAzMjkyLCJwb3NpdGlvbiI6IG51bGwsImlzVXNlcklkZW50aWZpZWQiOiBmYWxzZX0KXX0= IP35.241.45.82:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerSSL Corporation Subject*.kampyle.com Fingerprint53:E3:40:18:F8:A4:63:32:14:EC:DF:C9:0C:83:60:4F:E6:46:8A:A4 ValidityTue, 07 Nov 2023 06:30:12 GMT - Sat, 07 Dec 2024 06:30:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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 HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-gj48
x-application-context: application:9090
content-type: image/gif; charset=UTF-8
content-length: 0
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| col.site24x7rum.com/rum/data | 54.189.54.204 | 200 OK | 0 B |
URL POST HTTP/2col.site24x7rum.com/rum/data IP54.189.54.204:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.site24x7rum.com Fingerprint9E:DB:DD:AD:33:DB:9C:6E:55:AA:82:82:9F:FC:5E:29:F1:6F:81:6E ValidityThu, 29 Jun 2023 00:00:00 GMT - Sat, 27 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rum/data HTTP/1.1
Host: col.site24x7rum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 676
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:23 GMT
content-type: application/json;charset=ISO-8859-1
content-length: 0
access-control-allow-methods: POST,OPTIONS
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-headers: request-id, request-context, Origin, Accept-Language
set-cookie: s247cname=9659395f-7b4f-4b30-ace5-7c881f14bf8e;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=9659395f-7b4f-4b30-ace5-7c881f14bf8e;path=/;SameSite=Strict;Secure;priority=high
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
vary: Origin
server: ZGS
X-Firefox-Spdy: h2
|
|
| alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 | 54.230.111.22 | 200 OK | 2.0 kB |
URL GET HTTP/2alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 IP54.230.111.22:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (449) Hash7c6c6f14d64800cd4d05c6d3b694d492 b641a043b98b0ad0c8a4968b36e18191c5c1a6f0 2734c290c319357c8391e8bd4bbd99afad7f14accf1c1cbfaffddd232ee45631
GET /chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 1958
date: Tue, 23 Apr 2024 17:43:24 GMT
last-modified: Mon, 22 Apr 2024 04:58:39 GMT
etag: "f4c30888852da6219ab4f45868a770f7"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: vOADcWxDMlEwvtebtUJUDAvM8YrwDSDI
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vFeYHJ9SYLnUOAk60mmw_kzNEL3D3RoyuqAgfZZjdKum-gcLpBqg4w==
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 | 216.58.207.227 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 IP216.58.207.227:443
Requested byhttps://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20000, version 1.0 Hash97d8353e1f7e4cf7befce53984b6760e 89959115610b69d2a26a75fd200163d6862c968e 996d2f01acc82f075e4de4980849bc80c64fb3756054b5265977636a978728f4
GET /s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alive5.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 11:13:10 GMT
expires: Wed, 23 Apr 2025 11:13:10 GMT
cache-control: public, max-age=31536000
age: 23414
last-modified: Thu, 14 Sep 2023 00:54:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 | 54.230.111.22 | 200 OK | 8.3 kB |
URL GET HTTP/2alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 IP54.230.111.22:443
Requested byhttps://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (29157), with no line terminators Hash24c9cbe30540a8283c941823366bc5d1 a2aa8b80c9151bf1d7e97593b98f5ace1ba7b836 095ac22cce9aac890a441fa76e04331416a028a692d32c1582b55336d5605f86
GET /chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 8267
date: Tue, 23 Apr 2024 17:43:25 GMT
last-modified: Mon, 22 Apr 2024 04:58:38 GMT
etag: "534cfbe59544fb971f2fa7144aad358d"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: zmytS_us4if5dXTUW37xr2yKZaajv4RC
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RBijhyrngJfXCAOJ-4PENON4ly2-6_wCo5Rzo69O9aH_UNIKiKxmUw==
X-Firefox-Spdy: h2
|
|
| alive5.com/css/chat.bundle.css | 54.230.111.22 | 200 OK | 19 kB |
URL GET HTTP/2alive5.com/css/chat.bundle.css IP54.230.111.22:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (46179) Hashdf34b12f5181ce988fb9299e25e45f65 a9cad6e7b73058414dd7b5bac17baf04dc304bf4 68b07f709fce51cceb3186bd7987951c512c6540b5616840401fde1e04d6f75a
GET /css/chat.bundle.css HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 18685
last-modified: Mon, 22 Apr 2024 04:58:42 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: A.tw_WwUaw83iJ_enZeEaHBtmTBqKBIx
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:52 GMT
etag: "f7cd4b13b38b9f53ea0cc35d5b9e5e9d"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QFYzHYhpfEgFrqsN5cOIaaZnvF8hcV0qCAfcBG4E0mzSeYAF-j56Vw==
age: 45849
X-Firefox-Spdy: h2
|
|
| files.alive5.com/images/widgets/upload/ashfaqtest-wicon1544204526155.png | 143.204.55.84 | 200 OK | 1.5 kB |
URL GET HTTP/2files.alive5.com/images/widgets/upload/ashfaqtest-wicon1544204526155.png IP143.204.55.84:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash6f878c9733062f3e765504ed137d0bc6 f66a4a84230dfbf1e8000d1515d36f893c5f31f6 f2e60f36746d4efa38a43a662e146f7ca279803288f2852c14d1137de68002e5
GET /images/widgets/upload/ashfaqtest-wicon1544204526155.png HTTP/1.1
Host: files.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 1455
last-modified: Fri, 07 Dec 2018 12:42:11 GMT
x-amz-version-id: JEJEiC9HGRttaRlxNnlXqTQphBO7xIRV
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 02:57:43 GMT
etag: "6f878c9733062f3e765504ed137d0bc6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0piKDfvb6Zswx_75KG7Yp1EEjvfOJ2xRYUy8Xxb2Gmw3tMYdoXgMiQ==
age: 54076
X-Firefox-Spdy: h2
|
|
| alive5.com/js/chat.bundle.js?s=1713761893968 | 54.230.111.22 | 200 OK | 179 kB |
URL GET HTTP/2alive5.com/js/chat.bundle.js?s=1713761893968 IP54.230.111.22:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (37235) Size179 kB (178681 bytes) Hashb037563b9aded97d939e28efdcbee1ab fd4b8e4656071e123829e8e9ca74d2b72b424266 fe9bb8ccfa1f2397242d5ccd01a0cb8eac08fc394861e096e9eb53d46450d96f
Analyzer | Verdict | Alert | Public Nextron YARA rules | malware | Code and strings of plugins from the Tetris framework loaded by Swid |
GET /js/chat.bundle.js?s=1713761893968 HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 178681
last-modified: Mon, 22 Apr 2024 04:58:41 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: U3USVi6HATLh9cdgVdCHq6h182tYWmm_
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:52 GMT
etag: "40167438fbd4096c5acba716c56920dd"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mohiSvGZSpT_nGuxHpUZ09brh5x_4j8iyH8edWAMreAldAfxhcuU7A==
age: 45843
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/chocolat/1.0.4/js/chocolat.js | 104.17.25.14 | 200 OK | 4.0 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/chocolat/1.0.4/js/chocolat.js IP104.17.25.14:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash8558645e9f6dcb3447956ca9dac08ed1 2dbdfcd83ad5e87d7237f163c503e761e609fd10 23aa985ae2ae9ccb19a2ca39be4279fd544074e2dd51a69e61ae76adc40c2e81
GET /ajax/libs/chocolat/1.0.4/js/chocolat.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 17:43:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 3965
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6039816b-6044"
last-modified: Fri, 26 Feb 2021 23:16:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 13267157
expires: Sun, 13 Apr 2025 17:43:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QqyQmFqQeD8Cw1csRU5GrEfTH6benq8VpqoKFPluQck%2FsWlNPg8Y3Lv8mDM9Kq7hN2Jm5IPvsaccy88Xokv5FcoqzblOL3ufa%2BHEjAcQ9LWFlWDalodmhDi5H36BpM0shO%2BznW13"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 878fa7dd8f635691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| alive5.com/img/loader.gif | 54.230.111.22 | 200 OK | 3.2 kB |
URL GET HTTP/2alive5.com/img/loader.gif IP54.230.111.22:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeGIF image data, version 89a, 32 x 32 Hashbe1cede97289c13920048f238fd37b85 313b867d11fc0dd6bc6ca47c334bbcf18956ca76 fd29b3b084cf11160bfc4e99d98a261f2b36bff29113b07367c5204563c5d355
GET /img/loader.gif HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 3208
last-modified: Mon, 22 Apr 2024 04:58:43 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: WCgctt9B6QgbEKZaQDmNnnikANQQP9NR
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:52 GMT
etag: "be1cede97289c13920048f238fd37b85"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kqGfOxv9KE5z49Oy4iCOGBr68ZJ-NkkCsh7HYSlwnUB1-M4M-5LtYQ==
age: 45849
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/socket.io/4.3.2/socket.io.js | 104.17.25.14 | 200 OK | 21 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/socket.io/4.3.2/socket.io.js IP104.17.25.14:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash3404d8a746a4fec43de281d6b9fd501b 7cd55e0b6add2373011f04d3bba6044953caeac7 b6b7fc20b7e5eabb078b5f8f8076e46595e446522eacf29e8096151e7c65ac79
GET /ajax/libs/socket.io/4.3.2/socket.io.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 17:43:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 20711
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "616b8b0a-50e7"
last-modified: Sun, 17 Oct 2021 02:31:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12910595
expires: Sun, 13 Apr 2025 17:43:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u1BouB06l9eif%2FZsAe%2BHR14CruRWEB3L5Uj%2BmbAGqjhBt8cqfknCXRrnFinVguluR%2BRrgWLAAPEhW32%2Fu7xLhjU1dKF%2FVqZFcmWRO1TwIPWK1Rxexg94Cg9r8cR7Q8jLV5kxfITV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 878fa7dd9f655691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 | 216.58.207.227 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 IP216.58.207.227:443
Requested byhttps://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20000, version 1.0 Hash97d8353e1f7e4cf7befce53984b6760e 89959115610b69d2a26a75fd200163d6862c968e 996d2f01acc82f075e4de4980849bc80c64fb3756054b5265977636a978728f4
GET /s/worksans/v19/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alive5.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 11:13:10 GMT
expires: Wed, 23 Apr 2025 11:13:10 GMT
cache-control: public, max-age=31536000
age: 23415
last-modified: Thu, 14 Sep 2023 00:54:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| files.alive5.com/images/widgets/upload/loewshotel-wicon1626720607825.png | 143.204.55.84 | 200 OK | 3.9 kB |
URL GET HTTP/2files.alive5.com/images/widgets/upload/loewshotel-wicon1626720607825.png IP143.204.55.84:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typePNG image data, 350 x 78, 8-bit/color RGBA, non-interlaced Hashdf77c05c3e283b34d4ef4212ac210ebb da622d12f37d79f7ba869063a0dcc56966ecd91c a256aaceba74de49f68417149328f0ad754f4724550d27ccd600a19550a9ac6b
GET /images/widgets/upload/loewshotel-wicon1626720607825.png HTTP/1.1
Host: files.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3875
date: Tue, 23 Apr 2024 13:41:08 GMT
last-modified: Mon, 19 Jul 2021 18:50:08 GMT
etag: "df77c05c3e283b34d4ef4212ac210ebb"
x-amz-version-id: TnuuO_EAPwtqG142B0gMMzJYMEpbZRAa
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PDWgR_B57nkZZp9_9CQHteXnjn_Py-xyjyw0WzwYQkJ48tzJh354Gg==
age: 14538
X-Firefox-Spdy: h2
|
|
| files.alive5.com/images/uploads/alive5stage0-live_chat1610348611548.png | 143.204.55.84 | 200 OK | 57 kB |
URL GET HTTP/2files.alive5.com/images/uploads/alive5stage0-live_chat1610348611548.png IP143.204.55.84:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typePNG image data, 400 x 392, 8-bit colormap, non-interlaced Hashdb4ff89e0cd9acd378b34ccf06ffbdba 29a4193fbb153a7d4a94148c5a05e2d6578865bf fc353a1d7933827075d13363fb3ba3c38fb05f067d9bc8a74f960c019d53b30c
GET /images/uploads/alive5stage0-live_chat1610348611548.png HTTP/1.1
Host: files.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 56983
last-modified: Mon, 11 Jan 2021 07:03:32 GMT
x-amz-version-id: ZautlT5HF0qL.tkN6x9x35kcS86A4RBw
accept-ranges: bytes
server: AmazonS3
date: Tue, 23 Apr 2024 08:09:38 GMT
etag: "db4ff89e0cd9acd378b34ccf06ffbdba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zZJAaQZ5H5G3uMXmpNxINoZn0Aufm5beleJ-RgOuk6apdFva3FSrcA==
age: 34428
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 | 216.58.207.227 | 200 OK | 51 kB |
URL GET HTTP/3fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 IP216.58.207.227:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 50668, version 1.0 Hashdafd0a2e599f63fa9d7ee1d98fce7f51 f8c0cb57f10acd8f96623fbd2a7021253c860937 6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438
GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alive5.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:35 GMT
expires: Fri, 18 Apr 2025 02:37:35 GMT
cache-control: public, max-age=31536000
age: 486350
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api-v2.alive5.com/socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket | 35.175.24.110 | | 0 B |
URL api-v2.alive5.com/socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket IP35.175.24.110:0
CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket HTTP/1.1
Host: api-v2.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://alive5.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6k4wXUbMIV5/W70LsKCYwQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 23 Apr 2024 17:43:25 GMT
Connection: upgrade
Set-Cookie: AWSALB=2WS1vE1hpM7NnGd8VPxel2ujp5SUY3fvHlDfNdQj/voYFHZcojngJefnQIS7SRM/IWHmOG0hHcBG+wtMEEllh6lBtLUxQ1eS0gEQo2Ll3y3Cj2m/DI100eGKjA/m; Expires=Tue, 30 Apr 2024 17:43:25 GMT; Path=/
AWSALBCORS=2WS1vE1hpM7NnGd8VPxel2ujp5SUY3fvHlDfNdQj/voYFHZcojngJefnQIS7SRM/IWHmOG0hHcBG+wtMEEllh6lBtLUxQ1eS0gEQo2Ll3y3Cj2m/DI100eGKjA/m; Expires=Tue, 30 Apr 2024 17:43:25 GMT; Path=/; SameSite=None; Secure
Server: nginx
Upgrade: websocket
Sec-WebSocket-Accept: emWAD96rwupBU5menkgOpDo+Pqw=
|
|
| api-v2.alive5.com/1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= | 35.175.24.110 | 200 OK | 0 B |
URL GET HTTP/2api-v2.alive5.com/1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= IP35.175.24.110:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= HTTP/1.1
Host: api-v2.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://alive5.com/
Origin: https://alive5.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Tue, 23 Apr 2024 17:43:26 GMT
set-cookie: AWSALB=sFyEUbzNutERduG+i1+OVZiUL+zBwzdiYTysrwP/QNwfx7gHGQ/IZsmJbFdZM/ulrEaEoobH5XF9oP+9XBNkkJY+Fm38ah7HXJqbNdFMFhALiNBB6hRAJ/klheQ7; Expires=Tue, 30 Apr 2024 17:43:26 GMT; Path=/
AWSALBCORS=sFyEUbzNutERduG+i1+OVZiUL+zBwzdiYTysrwP/QNwfx7gHGQ/IZsmJbFdZM/ulrEaEoobH5XF9oP+9XBNkkJY+Fm38ah7HXJqbNdFMFhALiNBB6hRAJ/klheQ7; Expires=Tue, 30 Apr 2024 17:43:26 GMT; Path=/; SameSite=None; Secure
server: nginx
x-powered-by: Express
access-control-allow-origin: https://alive5.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS
access-control-allow-headers: Content-Type,Authorization,Content-Length,X-Requested-With,X-A5-APIKEY,x-xsrf-token,Cookie
access-control-max-age: 86400
access-control-expose-headers: Authorization,X-A5-APIKEY
X-Firefox-Spdy: h2
|
|
| api-v2.alive5.com/1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= | 35.175.24.110 | 200 OK | 26 kB |
URL GET HTTP/2api-v2.alive5.com/1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= IP35.175.24.110:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash693c704e1ddf35478b46dd5b5c6f3a49 01c07f7f6d956d6fe047376d01ef85c97399624e f02b00d8c6c2a8758289df8b37445ec85c843880466bea20dff6b18b9155d992
GET /1.0/thread/get-threads-byId?org_name=loewshotel&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&code=4&enabled_redis_storage=false&visitor=true&referrer=&page_url=https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%2520April%25202024&utm_medium=email&attach_botchain=faq%20bot%20test&create_thread=true&bot_user_id= HTTP/1.1
Host: api-v2.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw
Origin: https://alive5.com
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:26 GMT
content-type: application/json; charset=utf-8
set-cookie: AWSALB=3gqicMIg+AKGffDtBH2wUDXJHj9hhCDh8QgzwS+ULRVD4XqhWV7GPgmXhpXBc5LhfFmdIL5YbxXed5AAXu2/3rOGiUzkAFUJ2WNjW0a3JZgR+u4PYOlZumlU1jX9; Expires=Tue, 30 Apr 2024 17:43:26 GMT; Path=/
AWSALBCORS=3gqicMIg+AKGffDtBH2wUDXJHj9hhCDh8QgzwS+ULRVD4XqhWV7GPgmXhpXBc5LhfFmdIL5YbxXed5AAXu2/3rOGiUzkAFUJ2WNjW0a3JZgR+u4PYOlZumlU1jX9; Expires=Tue, 30 Apr 2024 17:43:26 GMT; Path=/; SameSite=None; Secure
server: nginx
access-control-allow-origin: https://alive5.com
vary: Accept-Encoding, Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-expose-headers: Authorization,X-A5-APIKEY
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw
etag: W/"34-dZu/bfEbcWPDtNLHGA7SpL7f1o8"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue.woff2 | 54.205.89.152 | 200 OK | 15 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14988, version 1.0 Hashb395d6804042a5682598eaa891d3100d 7771befa9d9191d01eda732a082a2bdf28ab5797 9e3cbd83bfcd3401d88ccad10cc21a8c60c80e03c65b83e45b074f268017b5d5
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true; _ga_CB27865Q4Z=GS1.1.1713894202.1.1.1713894202.0.0.0; _ga=GA1.1.197345717.1713894203; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Apr+23+2024+17%3A43%3A22+GMT%2B0000+(GMT)&version=6.21.0&isIABGlobal=false&hosts=&consentId=21cd0f4f-d6d3-4d14-88a5-5777c1560cda&interactionCount=0&landingPath=https%3A%2F%2Fwww.loewshotels.com%2Fmeetings%2Fpromotions%3Futm_source%3Dbrevo%26utm_campaign%3DLoews%2520April%25202024%26utm_medium%3Demail&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; site24x7rumID=1494128151179.1713894183142.1713894183142
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:23 GMT
content-type: font/woff2
content-length: 14988
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-3a8c"
expires: Wed, 23 Apr 2025 17:43:23 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Work+Sans&display=swap | 142.250.74.170 | 200 OK | 1.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Work+Sans&display=swap IP142.250.74.170:443
Requested byhttps://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1270), with no line terminators Hash742c5c4896c1abb84e2e6df94b9f667a 0ef24e27705de3a30533d32cfac07c9e7b436307 51261c762477f208b3cb0f929c4321856f1d20c23a51784061a1240fafee6aa6
GET /css?family=Work+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 17:43:24 GMT
date: Tue, 23 Apr 2024 17:43:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c28b4ce41dc.jpg | 143.204.55.107 | 200 OK | 5.6 MB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/59c28b4ce41dc.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
Size5.6 MB (5578935 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /loewshotels.com-2466770763/cms/imagepool/59c28b4ce41dc.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5578935
date: Thu, 28 Mar 2024 06:46:04 GMT
cache-control: public, max-age=2592000
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Tue, 04 Dec 2018 23:02:15 GMT
x-amz-version-id: S839glU_mLeP2r7TVODSk6b2uTqU5Ytp
etag: "0678333b8d490498a01fb0944bc04659"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qHiIzD33HFbfvftBKnFjULnyRf39wx20gi79SE1AxbBqaUbLBV9ZDw==
age: 2285819
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/6.21.0/assets/otFlat.json | 104.19.177.52 | 200 OK | 13 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/6.21.0/assets/otFlat.json IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash743a07d5915f230808d4a95deb077d0a 2e6ceae1f01d7c480d951859100faf795ce34e50 72562f00bd821b6edc0368065bf009468955ba01f8ead742d8bbc2470c4358c4
GET /scripttemplates/6.21.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:22 GMT
content-type: application/json
content-length: 2950
content-encoding: gzip
content-md5: h27oznMDITC5RVEkLZtwKw==
last-modified: Fri, 23 Jul 2021 01:58:39 GMT
etag: 0x8D94D7D641A6DE0
x-ms-request-id: 4de79502-601e-004b-33c8-12c5d0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78845
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7cf1c1fb511-OSL
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_med.woff2 | 54.205.89.152 | 200 OK | 18 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_med.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17524, version 1.0 Hash33afc082622fa73d868febfecede0403 a089ed3264c8e5e7394d589090421c4525164413 f2314e5ee0b1d4ed69ccbfe3943c4f0d023bf3dc89334f63a43f3b410bd94591
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_med.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:15 GMT
content-type: font/woff2
content-length: 17524
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-4474"
expires: Wed, 23 Apr 2025 17:43:15 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| alive5.com/css/widget.bundle.css | 54.230.111.22 | 200 OK | 39 kB |
URL GET HTTP/2alive5.com/css/widget.bundle.css IP54.230.111.22:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (30720) Hasha45af5edea1c8b26e73f0a23850ba1b7 b600d3a6562ac66318b94058408bca085020f4ac b8ab91ca93b7b2d9375561994ab2b0d361c6825f327f723fba09ec621102a69e
GET /css/widget.bundle.css HTTP/1.1
Host: alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 5188
last-modified: Mon, 22 Apr 2024 04:58:42 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 8T060isEQmgiqHSdPyg67cnk..Rqkqlb
accept-ranges: bytes
server: AmazonS3
content-security-policy: frame-ancestors *
date: Tue, 23 Apr 2024 04:59:50 GMT
etag: "437e07a2a1723f183e7572d20b2b3b0f"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t3Dv1CF3GnnxP_cGHg9CvYUVgzhuKwSXym4IQMgdHGVT6WlrihbRQA==
age: 45868
X-Firefox-Spdy: h2
|
|
| geolocation.onetrust.com/cookieconsentpub/v1/geo/location | 172.64.155.119 | 200 OK | 72 B |
URL GET HTTP/2geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP172.64.155.119:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectonetrust.com Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47 ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashadf75b99dbbf416c627dfc5de30f9ad1 699f3845f7dfb3fa9968c2117b44c3f3eb728fff a0e4a8f457272bd17d07ae2e1e09731df6cc6fdc3ea9e32e713ef4a8a012fc27
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:21 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 878fa7c529df7127-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Work+Sans:400,500&display=swap | 142.250.74.170 | 200 OK | 2.4 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Work+Sans:400,500&display=swap IP142.250.74.170:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (2436), with no line terminators Hasha65caac9c04d92790413dada661476a6 8185d73fa0ad1264b1a4fef59691cdbdf8f8f1bd 05984b777f3ceb231b37c3a8b441e02ff38db82d050cc404e3f63868b3a545c9
GET /css?family=Work+Sans:400,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 17:43:25 GMT
date: Tue, 23 Apr 2024 17:43:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/iframe_api | 142.250.74.142 | 200 OK | 1.1 kB |
URL GET HTTP/2www.youtube.com/iframe_api IP142.250.74.142:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (1087), with no line terminators Hashb90eb5da7971d6575b1e2c10c1b2d513 cee6c130d8b92e7ce620ec4f71d41d27fd4d928f 2c71d0da2eaf7ed1ff6412cbc02a340a6e9c3a65bc5ba85facedaeb0781c2446
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 23 Apr 2024 17:43:22 GMT
date: Tue, 23 Apr 2024 17:43:22 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
content-security-policy-report-only: base-uri 'self';default-src 'self' https: blob:;font-src https: data:;img-src https: data: android-webview-video-poster:;media-src blob: https:;object-src 'none';report-uri /cspreport/common;script-src 'nonce-y84xskeeCC1o0LyQN-aC5w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';style-src https: 'unsafe-inline'
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Lx15uQFt1R0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=iLq5AwpjMdQ; Domain=.youtube.com; Expires=Sun, 20-Oct-2024 17:43:22 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIF4%3D; Domain=.youtube.com; Expires=Sun, 20-Oct-2024 17:43:22 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeASCII text, with no line terminators Hashc193745deb63fe67f3aa6b578c40dd99 8a3ecc2696074e71d3b011c99b98cb25229e1a31 d41e076366e4207d57a5fd1725c2024f751c43ae4a3a8e93cc46dfb8462a3e5b
GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp&co=aHR0cHM6Ly93d3cubG9ld3Nob3RlbHMuY29tOjQ0Mw..&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=normal&cb=nbku0atqhfjv
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 23 Apr 2024 17:43:22 GMT
date: Tue, 23 Apr 2024 17:43:22 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/568a90d83177b.jpg | 143.204.55.107 | 200 OK | 710 kB |
URL GET HTTP/2cdn.loewshotels.com/loewshotels.com-2466770763/cms/imagepool/568a90d83177b.jpg IP143.204.55.107:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerDigiCert Inc Subject*.loewshotels.com Fingerprint1D:4A:82:C2:89:3F:25:D4:BB:B6:94:D2:53:6F:7A:23:74:B7:BD:49 ValidityMon, 02 Oct 2023 00:00:00 GMT - Fri, 01 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, xresolution=110, yresolution=118, resolutionunit=2], baseline, precision 8, 2560x1707, components 3 Size710 kB (710304 bytes) Hashb118d16c4d2da9534b92864d333a9623 4eb696f8d006ea4d8bdac69da819295d8886f87b b36b876b03a5d3433abf052ca08270de54bcc454429eea8783243d58891bce6d
GET /loewshotels.com-2466770763/cms/imagepool/568a90d83177b.jpg HTTP/1.1
Host: cdn.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 710304
date: Sun, 31 Mar 2024 06:06:59 GMT
cache-control: public, max-age=2592000
last-modified: Tue, 04 Dec 2018 23:01:34 GMT
x-amz-version-id: I9K3iGSE.nfd1rLMDfP.T7IMCQyj5Oe1
etag: "b118d16c4d2da9534b92864d333a9623"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -oQ16V5tfTDjWOktmjWsRzlj32bnJ3BNLc4G55n31cIL1livXy6Vag==
age: 2028965
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/wishyouwerehere.svg | 54.205.89.152 | 200 OK | 77 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/wishyouwerehere.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeSVG Scalable Vector Graphics image Hashd39e2df5fdc803c5472438937eeb0a2e 06f800db29c727722d30f9d1a6652e98c6a33812 171702444d6d8cf466bada494bf60da0c147689f773ef7ce025627e89dc89667
GET /skins/skin-prodloews/assets/desktop/images/wishyouwerehere.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:17 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-12c71"
expires: Wed, 23 Apr 2025 17:43:17 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-medium.woff2 | 54.205.89.152 | 200 OK | 25 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-medium.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 25096, version 5.65 Hashf411df658a483908abd1ac1cde89131e b47fc8c02bd5562f41f0e660de7362c85310eac5 5d94d1f6dc53064b7da949ec42c15f4211a5894b7becdca7d801040d3af45b5f
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-medium.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:09 GMT
content-type: font/woff2
content-length: 25096
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-6208"
expires: Wed, 23 Apr 2025 17:43:09 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Work+Sans&display=swap | 142.250.74.170 | 200 OK | 1.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Work+Sans&display=swap IP142.250.74.170:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1270), with no line terminators Hash742c5c4896c1abb84e2e6df94b9f667a 0ef24e27705de3a30533d32cfac07c9e7b436307 51261c762477f208b3cb0f929c4321856f1d20c23a51784061a1240fafee6aa6
GET /css?family=Work+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 17:43:25 GMT
date: Tue, 23 Apr 2024 17:43:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.cookielaw.org/scripttemplates/6.21.0/assets/otCommonStyles.css | 104.19.177.52 | 200 OK | 21 kB |
URL GET HTTP/2cdn.cookielaw.org/scripttemplates/6.21.0/assets/otCommonStyles.css IP104.19.177.52:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerCloudflare, Inc. Subjectcookielaw.org FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31 ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (11123) Hash17f16ce78fb1f5b40afd42e4351a787c 02e77f9c5b5c4c6bd13d0e0887a720af03fe8e32 6be3efeb998248db9cc1083aef162ee483cbde10b893057e4b5ae1a612c0ae3a
GET /scripttemplates/6.21.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.loewshotels.com/
Origin: https://www.loewshotels.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:22 GMT
content-type: text/css
content-md5: F/Fs54+x9bQK/ULkNRp4fA==
last-modified: Fri, 23 Jul 2021 01:58:50 GMT
x-ms-request-id: 3b38d2fe-201e-004a-289f-139a0c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78845
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 878fa7cf2c21b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Work+Sans&display=swap | 142.250.74.170 | 200 OK | 1.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Work+Sans&display=swap IP142.250.74.170:443
Requested byhttps://alive5.com/chat_window_wrap.html?wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da|79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1270), with no line terminators Hash742c5c4896c1abb84e2e6df94b9f667a 0ef24e27705de3a30533d32cfac07c9e7b436307 51261c762477f208b3cb0f929c4321856f1d20c23a51784061a1240fafee6aa6
GET /css?family=Work+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 17:43:24 GMT
date: Tue, 23 Apr 2024 17:43:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.loewshotels.com/account/authenticate?callback=jQuery1124014931197823532172_1713894187313&task=authenticate&_=1713894187314 | 54.205.89.152 | 200 OK | 70 B |
URL GET HTTP/2www.loewshotels.com/account/authenticate?callback=jQuery1124014931197823532172_1713894187313&task=authenticate&_=1713894187314 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeASCII text, with no line terminators Hash1466fdc4d86d488c0fb864652448c305 839031ad88503d9b747273824f6bf761df1db2e2 63c1c4085323106da5a849e579b37acf19cfe7f147fb21c9a469dfc23b8a648f
GET /account/authenticate?callback=jQuery1124014931197823532172_1713894187313&task=authenticate&_=1713894187314 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true; _ga_CB27865Q4Z=GS1.1.1713894202.1.1.1713894202.0.0.0; _ga=GA1.1.197345717.1713894203; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Apr+23+2024+17%3A43%3A22+GMT%2B0000+(GMT)&version=6.21.0&isIABGlobal=false&hosts=&consentId=21cd0f4f-d6d3-4d14-88a5-5777c1560cda&interactionCount=0&landingPath=https%3A%2F%2Fwww.loewshotels.com%2Fmeetings%2Fpromotions%3Futm_source%3Dbrevo%26utm_campaign%3DLoews%2520April%25202024%26utm_medium%3Demail&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; site24x7rumID=1494128151179.1713894183142.1713894183142
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
x-hebs-cache-status: miss
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Thu, 19 Nov 1981 08:52:00 GMT
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp IP142.250.74.164:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeHTML document, ASCII text, with very long lines (7675), with no line terminators Hash3730dca2474171d48e59fa18c64d2986 4101ec36de5bee3dd102d81bec43a0017457b381 d6054021546b1b70f6fd79c37e1b898aabd2e2fed7408f33b0921d390ceaef03
GET /recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LcUV_0UAAAAAK1rB3v-vEHt6-hV22ImKz-KFxXp HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 17:43:23 GMT
content-security-policy: script-src 'nonce-8FUr8NLUoU1ID7FQ96KsRA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_hv.woff2 | 54.205.89.152 | 200 OK | 17 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_hv.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17108, version 1.0 Hashb330f45cf535a608b4c584221571de15 9426d835fed52969ba4971bc5168263e1ec37958 2a3bf32d4c2d783ebe0145e0d422eee6be835ebb1fe97a8b66998ae9049929ea
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/helveticaneue_hv.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:15 GMT
content-type: font/woff2
content-length: 17108
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-42d4"
expires: Wed, 23 Apr 2025 17:43:15 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-thin.woff2 | 54.205.89.152 | 200 OK | 24 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-thin.woff2 IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24400, version 5.65 Hashda07b8d83b528214daca256bf3954226 5b4af80232dfa3b139fa604a2db07e47e0f88d16 d6a9cd75e985cfb2c6014f6f6c923f6345cb56764fc01ff174a02e47de4f5081
GET /skins/skin-prodloews/1713178753/assets/desktop/fonts/gt-america-extended-thin.woff2 HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:07 GMT
content-type: font/woff2
content-length: 24400
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
etag: "661d087e-5f50"
expires: Wed, 23 Apr 2025 17:43:07 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Work+Sans&display=swap | 142.250.74.170 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Work+Sans&display=swap IP142.250.74.170:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1270), with no line terminators Hash742c5c4896c1abb84e2e6df94b9f667a 0ef24e27705de3a30533d32cfac07c9e7b436307 51261c762477f208b3cb0f929c4321856f1d20c23a51784061a1240fafee6aa6
GET /css?family=Work+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alive5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 17:43:22 GMT
date: Tue, 23 Apr 2024 17:43:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/logo-white.svg | 54.205.89.152 | 200 OK | 3.2 kB |
URL GET HTTP/2www.loewshotels.com/skins/skin-prodloews/assets/desktop/images/logo-white.svg IP54.205.89.152:443
Requested byhttps://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email CertificateIssuerLet's Encrypt Subjectloewshotels.com Fingerprint78:4A:29:C6:1C:EC:EA:3D:75:88:49:1F:8C:B1:DB:AA:BA:76:04:12 ValidityMon, 11 Mar 2024 15:09:08 GMT - Sun, 09 Jun 2024 15:09:07 GMT
File typeSVG Scalable Vector Graphics image Hash3f806f2317c223cedca0a278e071e1a6 834ef97d773a0ed2d29b2f69dd21dc5ea2123825 d4078d1dd844b5c5c3a336dd25a52ddc2428707c62fb64d6b9a287cc555044d7
GET /skins/skin-prodloews/assets/desktop/images/logo-white.svg HTTP/1.1
Host: www.loewshotels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.loewshotels.com/meetings/promotions?utm_source=brevo&utm_campaign=Loews%20April%202024&utm_medium=email
Cookie: at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 17:43:15 GMT
content-type: image/svg+xml
last-modified: Mon, 15 Apr 2024 10:59:10 GMT
vary: Accept-Encoding
etag: W/"661d087e-c97"
expires: Wed, 23 Apr 2025 17:43:15 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
service-worker-allowed: /
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| api-v2.alive5.com/socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket | 35.175.24.110 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1api-v2.alive5.com/socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket IP35.175.24.110:443
Requested byhttps://alive5.com/chat_window.html?preopen=undefined&wid=5f37739d-58b6-4465-8ccb-8f35bf4f595f&thread_crm_id=f0a56092-0937-fed7-45a7-68cc9b70c1da%7C79f777b6-6a41-bccb-de4c-2d3f24a3c921 CertificateIssuerAmazon Subject*.alive5.com Fingerprint93:34:8B:8B:72:28:B2:95:D0:0A:F8:D1:C5:DF:2B:E1:DA:9B:31:EA ValiditySun, 03 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?authToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjcmVhdGVkX2F0IjoxNjQ3NDQyNzU0OTYzLCJpc3MiOiJhbGl2ZTVfYXBpIiwib3JnX25hbWUiOiJsb2V3c2hvdGVsIiwidHlwZSI6ImxpdmVjaGF0IiwiY3JtX2lkIjoiOGUxNjExNDItN2MwYi00ZTVjLWI3ODctODBiMjNlM2E5MDYwIiwidXNlcl9yb2xlIjoidmlzaXRvciIsImlhdCI6MTcxMzg5NDIwM30.IRyebLLhqT2v5HAleUpIKtb6fRemh_HYYCYMccRbwSw&thread_id=f0a56092-0937-fed7-45a7-68cc9b70c1da&crm_id=79f777b6-6a41-bccb-de4c-2d3f24a3c921&channel_id=ae07b1f7-7aa2-4d41-bdb6-98c805792e3d&is_mobile=false&EIO=4&transport=websocket HTTP/1.1
Host: api-v2.alive5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://alive5.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6k4wXUbMIV5/W70LsKCYwQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 23 Apr 2024 17:43:25 GMT
Connection: upgrade
Set-Cookie: AWSALB=2WS1vE1hpM7NnGd8VPxel2ujp5SUY3fvHlDfNdQj/voYFHZcojngJefnQIS7SRM/IWHmOG0hHcBG+wtMEEllh6lBtLUxQ1eS0gEQo2Ll3y3Cj2m/DI100eGKjA/m; Expires=Tue, 30 Apr 2024 17:43:25 GMT; Path=/
AWSALBCORS=2WS1vE1hpM7NnGd8VPxel2ujp5SUY3fvHlDfNdQj/voYFHZcojngJefnQIS7SRM/IWHmOG0hHcBG+wtMEEllh6lBtLUxQ1eS0gEQo2Ll3y3Cj2m/DI100eGKjA/m; Expires=Tue, 30 Apr 2024 17:43:25 GMT; Path=/; SameSite=None; Secure
Server: nginx
Upgrade: websocket
Sec-WebSocket-Accept: emWAD96rwupBU5menkgOpDo+Pqw=
|
|