Report - www.hotelviking.com

Report Overview

Submitted URL
www.hotelviking.com
IP
104.26.11.179
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-23 10:26:07
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-29T05:44:04Z	385 B	96 kB	142.250.74.40
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-29T09:02:58Z	724 B	450 B	216.239.34.36
cdn.acsbapp.com	5589	2020-08-16T08:12:24Z	2023-03-29T14:14:59Z	1.3 kB	90 kB	104.22.1.204
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-29T09:59:29Z	484 B	578 B	216.58.207.227
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	3.4 kB	8.9 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
acsbapp.com	5220	2020-08-14T07:49:08Z	2023-03-29T08:27:00Z	374 B	216 kB	104.22.1.204
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-29T06:01:47Z	376 B	21 kB	142.250.74.78
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-29T05:12:24Z	377 B	29 kB	31.13.72.12
storage.elfsight.com	61278	2019-04-17T10:39:17Z	2023-03-29T13:46:19Z	437 B	34 kB	104.26.7.107
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-29T10:24:16Z	1.4 kB	4.1 kB	142.250.74.34
www.google.com	7	2015-05-10T13:11:19Z	2023-03-29T05:55:56Z	1.4 kB	1.3 kB	142.250.74.164
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.149.101.14
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-29T09:08:31Z	492 B	450 B	209.85.233.157
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	682 B	1.5 kB	192.229.221.95
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	606 B	349 B	31.13.72.36
www.hotelviking.com	unknown	2013-11-13T06:31:24Z	2023-01-09T17:33:27Z	26 kB	5.2 MB	104.26.11.179
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	3.1 kB	6.3 kB	142.250.74.131
apps.elfsight.com	17484	2017-02-13T07:58:22Z	2023-03-29T13:46:16Z	370 B	17 kB	104.26.7.107
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.8 kB	55 kB	34.120.237.76
bat.bing.com	387	2014-04-08T11:23:16Z	2023-03-29T05:25:55Z	1.5 kB	14 kB	13.107.21.200

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	www.hotelviking.com/	420 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash c21dfa006e6e487d6ead032b6e5f7685 c29c10685509afd5e6c3af9c6de7c8c019ad6c2e 52482b4ea4eaa74d23d02a11220b6e89b562851551d64b1044d6daff3f88bfb3 Loading...

	www.googletagmanager.com/gtag/destination?id=G-FE79Y90F38&l=dataLayer&cx=c	185 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/destination?id=G-FE79Y90F38&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 6097518751cba5a85f4ec880bddad5f9 17c794d8b0b757bf17989a3122cba84602287a3e 9730060741779f40da6bd9d9a519d844f57b4c1cc00892ca07308369de74a83e Loading...

	bat.bing.com/p/action/13006875.js	0 B	2023-03-07	2024-05-08
Pretty URL bat.bing.com/p/action/13006875.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-08 00:44:31 Times Seen37422624 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.hotelviking.com/	753 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash a686b07fb86759a729e18e84d9dd8ac4 2f772550b4991a2e2fa1883f24a82324c9ff6a3d d30d5718eb73906e8fd288807916a5ac66028fb6ea87dfc1307f16b0fd9ada2f Loading...

	www.hotelviking.com/	422 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 0f8fd76b9e0fe6d1665f2d84be188c05 34c1bd5dcf509004bb097397aec1ec70bffd69e9 b618717f697fec6a51a85430b739f39ed067f476f32f804eb69fa6cb66dfcce0 Loading...

	www.googletagmanager.com/gtag/js?id=AW-738460893	134 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=AW-738460893 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash c310d3e9b059b538c0b2329e9799fc61 9c6611648258c10b4f34928cb4e92cb7909c0f0c 692d4f50b5f54d11813a6291c46df5e269734238e4ce6a5f1a82de273f759ffd Loading...

	www.hotelviking.com/	424 B	2023-03-13	2023-11-02
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:29:02 Last Seen2023-11-02 08:02:14 Times Seen8 Hash 2cefad38ad6ac738c1db7c32817d5edd 957ed6a82d84e885a1369d1086463378bffb4d83 a219754f4c54ce6a6e6450930d55959afbbc4f15c0bf55903fa62549d754ee57 Loading...

	static.elfsight.com/apps/instashow/release/26cd973c985481eb6b58a4fdc3a28ffb2b0c9d81/app/instashow.js	417 kB	2023-03-29	2023-03-29
Pretty URL static.elfsight.com/apps/instashow/release/26cd973c985481eb6b58a4fdc3a28ffb2b0c9d81/app/instashow.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 91d6f05dc0ecb6a3cd588ae845caed47 00a5088b4ec4a5fbee7e70c52a95ede9e0354ba3 21075e0bebb3e373bf04244dd91ebb50fc0b24160aa6c7a85d064811be3f0f5a Loading...

	www.hotelviking.com/	775 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 981adb780975905c12059e3e5252629b 4794f905eca55578d76dc3597cc2e268c7075802 265c783c7e7485e784403e1a8334dddae9b1d177ea8a5d04ce862198bf055b89 Loading...

	www.hotelviking.com/	2.1 kB	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash d2af0fefe27ac85305f01cf82a4c0f42 d934daa96770817d350673450ea624bb2364ffab 96c9ffe734349249e297f05a7447171163c3e12eb8a9159e051f68e8522cb479 Loading...

	acsbapp.com/apps/app/dist/js/app.js	483 kB	2023-03-26	2023-03-29
Pretty URL acsbapp.com/apps/app/dist/js/app.js IP 104.22.1.204 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:12:23 Last Seen2023-03-29 23:23:19 Times Seen89 Hash 991e4f6e85ee57b09ce4515b1b24a831 3985e7b5199c0b8263fe762c745e0c72661b283f e8d1e9a6c4032c9ea672d1b23e5860bfcd8a59ed4ba2bf120c1c1c0899a9d94c Loading...

	www.hotelviking.com/	446 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 0c14cde62dd6d2f5bb76c832d259f226 3ab8392d7e19565fac983fb378fd226119e2e159 0552dee65a8786ad289e41bd7634ffbd8a44642a43039a7cde8a6aad632a757f Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/738460893/?random=1679567165490&cv=11&fst=1679567165490&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&data=event%3Dgtag.config&rfmt=3&fmt=4	2.6 kB	2023-03-29	2023-03-29
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/738460893/?random=1679567165490&cv=11&fst=1679567165490&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 7781127cb77de90468a0ab18e4e78815 f92845a94e9e2aa3d6ba0f98cb21594e82eca333 96b9d04b8d30b504e68b67257cd16b05f164226008cf29e1c384bf28ff6ada3c Loading...

	www.googletagmanager.com/gtag/js?id=G-QPMC0JV6WN&l=dataLayer&cx=c	198 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-QPMC0JV6WN&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 696ba63d7ef3e545db9ea94b1dcb91c4 6a6175cc645e7f1f642e5fe88c89451e0aff8437 c4db541ec50d7575638e4e6d72e0c0ecc4e5528e1d6082cd31e2306214c9bd83 Loading...

	www.hotelviking.com/	103 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 7b79d94a3045f258fc5fb09a5bd1fde3 53494ccc3058f0ec7eaa4433fa9e414b5f8475b5 41b3e52c42ca388c8f5f462520b73a5daba0985466a38416e164b3169181dd65 Loading...

	www.hotelviking.com/	318 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 7352fd851bb0dd593b1a116c347a059b 7f0ca849e5a522c57c5b1e44a3bce36412b43fd3 2ad534951b5825e4dcd49473829e66e72c020024cd462fc74d5fc9c3346055cd Loading...

	www.googletagmanager.com/gtag/js?id=HA-75&l=dataLayer&cx=c	104 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=HA-75&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash b245341f569893216362b22fef0127fc e776d3ca7c913665e7e44431ebeccd4c40aa14b3 64e01bd774c539d43654783ec3c4e4d20267ecebc2f72682c6d7db2d754892ab Loading...

	www.hotelviking.com/	319 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 18844286864cf8fe2baec05a0c1bb95e 98fc39351edc9401dcf8da62698a93f68bc70dee 40bb9855c2b72585167d8c10e566359b3a2f5d42e3d1d09e266e3dec6f24609b Loading...

	www.hotelviking.com/	186 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:07 Last Seen2023-03-29 20:57:07 Times Seen1 Hash 5df80bcbaa552aa478ed66662946c4eb 2abe8f4f06b28b07c7d0d023273e7bd1f4180680 42c8e9118c3924100a761e312519283cc9935d875df41a9011e8bfd089450285 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MMJ3QS5	313 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MMJ3QS5 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 8e3c238a4154b88d25d314f13e7fec68 94926848f11dc2f3d02259bebaaba9387773b791 f520b8204c1a25e739a85539236ded44f34e93af20e10c0ca3e729361a087000 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	connect.facebook.net/signals/config/715558152467454?v=2.9.99&r=stable	386 kB	2023-03-29	2023-03-29
Pretty URL connect.facebook.net/signals/config/715558152467454?v=2.9.99&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 1cde30bacc7c0604f9d4715b6a042f3e 9ff713752e65e2cdb743a1aa5770c79c3b1d4f9e 7de2e3a50afabf9b8bb83d839b1a24dc20097abf98e86d61be5a8dc925349000 Loading...

	www.hotelviking.com/content/cache/autoptimize/js/autoptimize_41a0a253cf1b6637efe2b536e29439bc.js	1.7 MB	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/content/cache/autoptimize/js/autoptimize_41a0a253cf1b6637efe2b536e29439bc.js IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash cab274632197ee034846d7b4fb00c964 6ac2734648fc6400ffbc768375ef9104b7cd2618 353ef299eedfc3584e6939704a8553564fbc51cf6dcef3e2a895c73146d3b1ac Loading...

	www.hotelviking.com/	2.1 kB	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 7b4757a51dc3ffc51f7358ead89dfb47 09b4d9e4f1cfd254bc4a0a3d205ca7e6e97bca15 549ce5a2d496e19dc8dffb5a7e43fbff8cd7915167d2c3dc26f4590bde18c138 Loading...

	bat.bing.com/bat.js	41 kB	2023-03-14	2023-06-29
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:23:19 Last Seen2023-06-29 12:58:49 Times Seen3754 Hash b51ab1f965c96f271cc08617eeebc57a f7a52e401d28ac7fe5ba78711d4e2f0cad0e365c a2137ebfe2b9ff55e1f280dbb1eef301290c50db609c5d6a0494ae8f3c98c253 Loading...

	www.hotelviking.com/	102 B	2023-03-29	2023-03-29
Pretty URL www.hotelviking.com/ IP 104.26.11.179 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 6b8c71d609c30b5c8dab8e1be6b71a7a 7611c0ddb8837117ed96137e1f04d56c81ce379a b0ee0f0fe91fe9e13ae5650c2d17bffe104cd0496770aa33c6917deb13b24a91 Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-26	2023-03-29
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:49:43 Last Seen2023-03-29 21:45:24 Times Seen2372 Hash b3d7d1fd0029796048820b8f515d1d4f 242f2ec5485fb5048e53a87fd37b2e6eafb664b6 0a19fce040b8127f3e2e3ed609f7800153be329d6420b53295fb79a4f40012ec Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/787285266/?random=1679567163272&cv=11&fst=1679567163272&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&rfmt=3&fmt=4	2.6 kB	2023-03-29	2023-03-29
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/787285266/?random=1679567163272&cv=11&fst=1679567163272&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 54c848762cde7250f16365f00f47effa a3da6ba24bda8a344391c714914448b44f58d100 399a60e36c7714cc2027d98ab14515cdd3fd31cb5ad063cd3190a6a5e493c524 Loading...

		Size	First Seen	Last Seen
	#1 Eval - a1f022fcc04e17e56ea6e5c0a73cbf39	276 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash a1f022fcc04e17e56ea6e5c0a73cbf39 398c4fb642ed3c4f93d2640ee28bbe1f20a0f715 9c844d8d12bdfe99aa0860a50da2f56505149fca12479f0fc9fc5360e580c35c Loading...

	#2 Eval - d646cbc17ca9c26baaf2f8e2c68b81df	276 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash d646cbc17ca9c26baaf2f8e2c68b81df 449b0f92c9680ca6557bc53090724a8f24708797 f3d01ee3eabdfefeef64e83fa233ff157db573c86b6ff30f04abb8c26d24d369 Loading...

	#3 Eval - b65e5086eb4da42b7138db71fa1b8ef3	272 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash b65e5086eb4da42b7138db71fa1b8ef3 470c9d229759200f5af32a6248d67d150dfe5959 45caf62696c03ff6f66663e2771ffe978f84dd4401f0cdaacafd6e6f5164d3af Loading...

	#4 Eval - d49393ac4d1cb770ba31a809a8e7e7db	272 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash d49393ac4d1cb770ba31a809a8e7e7db 5fa600d14c968729d0e6096cb332ff72a17d6880 b1e7a904780434d5a73d2949fdc92f207ad93746757078e4e063efb15bb84e3f Loading...

	#5 Eval - acb88dd8e69e03da761d3c976a075f09	276 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash acb88dd8e69e03da761d3c976a075f09 65a36f11c79d29bd096601527c3eee8516023f68 9bf58ab8bd4d74ded3130f32233bff267e2d7adffdbbbe041c16b1c2e04181c9 Loading...

	#6 Eval - 86142ee8b14e63ae26d3b3d264adc02f	276 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 20:57:08 Last Seen2023-03-29 20:57:08 Times Seen1 Hash 86142ee8b14e63ae26d3b3d264adc02f d0f0b4f2dec7046f987f9e8db42d070d0bbf8c8a 4bd3fb33306880d46af11dba8920581a6d78f19a85db06b7687a991773bd1b37 Loading...

HTTP Transactions (99)

	URL	IP	Response	Size
	www.hotelviking.com/	104.26.11.179	301 Moved Permanently	0 B
URL HTTP/1.1 www.hotelviking.com/ IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Thu, 23 Mar 2023 10:25:53 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Thu, 23 Mar 2023 11:25:53 GMT Location: https://www.hotelviking.com/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hl%2FDwnA1XQrjgBK3dkgz9dlKfyMSgRaTsfPHo4oySDguNf%2BICUV8dwpeiqUuIEUbB9tcK2k3YizW8CQlihW0mgWkUwxflGUke1bwX3Aw5CSMWTvpaojUt6ZOLwM%2BhMnQInRoQMM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7ac5f9185a3bb4f4-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bea3185dd820a31c1981317f37c3456d 1a548a5d27270fc11df9011837a7149571cedd78 469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9" Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11949 Expires: Thu, 23 Mar 2023 13:45:03 GMT Date: Thu, 23 Mar 2023 10:25:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 65fc860bc043f3fb83bdc3debdcd322d 418010755deae099ef1284e402813c5837a10f42 d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171" Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5972 Expires: Thu, 23 Mar 2023 12:05:26 GMT Date: Thu, 23 Mar 2023 10:25:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 51a5d4696a6090c295850554508b51ce c44e143c2223546e64b19f543b8101aaf3b11e97 8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF" Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6809 Expires: Thu, 23 Mar 2023 12:19:23 GMT Date: Thu, 23 Mar 2023 10:25:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 23 Mar 2023 09:27:32 GMT content-type: application/json age: 3502 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: D4WNh7VrQNesZTSvVR27Hk0ZINKfKXn0sb2IpK0IP5ciFsS85TDEwem/c+I3KfrZQRIMHGu3OpcIKpJZAc22aA== x-amz-request-id: 4ZP16SV0B6TWGWDW x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 23 Mar 2023 09:59:54 GMT age: 1560 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 23 Mar 2023 10:25:54 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 23 Mar 2023 10:17:23 GMT age: 511 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 050ca4dc2182e0a27573b0d9f32b7834 bec14dc5af0d0b32210470673511acd8db404308 b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF" Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6852 Expires: Thu, 23 Mar 2023 12:20:06 GMT Date: Thu, 23 Mar 2023 10:25:54 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.149.101.14	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.149.101.14:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: xrt7tGVJKUgYY1SRmSj9qg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: K+j97DN9BhKzU8SaPsKxvwgMRN8=`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 23c054d3aee551b6fdc42a5a472a7040 b1a46c12ac7d65c979fd1998bdb243f3dba8f956 9e8b91ab91da9ea20dfb5f90c1c06239d2872b0eb80785534d0c59c3b51de404 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-MMJ3QS5	142.250.74.40	200 OK	95 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMJ3QS5 IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (45235) Size 95 kB (94905 bytes) Hash 9fe2f7fac74bcc357114f65aba193638 c579de3577d2afe929d1ddd43302084371fadd36 90603f73bfb14fc7494af9d51d2d17b2f0e25e9e62554ea85e7e3a8c1b04d639 HTTP Headers `GET /gtm.js?id=GTM-MMJ3QS5 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 23 Mar 2023 10:25:55 GMT expires: Thu, 23 Mar 2023 10:25:55 GMT cache-control: private, max-age=900 last-modified: Thu, 23 Mar 2023 09:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 94905 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	apps.elfsight.com/p/platform.js	104.26.7.107	301 Moved Permanently	17 kB
URL HTTP/2 apps.elfsight.com/p/platform.js IP 104.26.7.107:0 ASN #13335 CLOUDFLARENET File type data Size 17 kB (16663 bytes) Hash 6b8285b01790a95bd89bfe89ee8bbdf8 6119e43154bbcb11f403a9ea2495cbbe45199963 286c7f17fc94fec59305d73db23cf6498466d7fd6eea604b63f4415bb43f624a HTTP Headers `GET /p/platform.js HTTP/1.1 Host: apps.elfsight.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 301 Moved Permanently date: Thu, 23 Mar 2023 10:25:55 GMT location: https://static.elfsight.com/platform/platform.js cache-control: max-age=3600 expires: Thu, 23 Mar 2023 11:25:55 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZK7SSgGLk6oMF1tG4QKgugsf0XGqRb5MjsxpTXZjH6Jh5QfOasGIcAvXa%2FCtqE7utVu1BTZDhUdLOZZcdu8ziyJHI%2BV5P5cR24KX0VDe%2FnVMARF5b3NFPPtCwdtuFUslWSBt"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 server: cloudflare cf-ray: 7ac5f920cea4b4ee-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/06/historic-hotels-logo-white.png	104.26.11.179	200 OK	6.9 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/historic-hotels-logo-white.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 215 x 70, 8-bit/color RGBA, non-interlaced\012- data Size 6.9 kB (6926 bytes) Hash 54fc37613d5993dcd534151241a1bf58 e65d486547545b09030dc4a774dc30b7519af691 bbd23bd3f0238924e90d9c2185310085d17c93d216389ed781fdb63a3af060a6 HTTP Headers `GET /content/uploads/2021/06/historic-hotels-logo-white.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 6926 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:24:53 GMT etag: "1b0e-5c6e2fd03d157" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E2tY0PZJ9c%2FIbFwJx9hnZWUd8OGCmiS1G7j1AAJ9Dwb0FR51FERZ1EtmR%2BmNb8LTDeIQhkgYG7MdlOJqn8reeHCUyI6mwRqiKlix%2BTqDcUeJQtUWl5CMd1RYNlKCJ11UlJRF7ic%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f920bdf8b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/06/One-Bellevue_260x68.png	104.26.11.179	200 OK	4.1 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/One-Bellevue_260x68.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 260 x 68, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4058 bytes) Hash 62ff05e69c55511020fd143d1a9945a5 76fc519211057a26542ebb5f22604c5f663dcfb9 c2cf59d8214bc4422e25a513460978c21599dfa6bb1713687a01f5f994029f6b HTTP Headers `GET /content/uploads/2021/06/One-Bellevue_260x68.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 4058 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:21:33 GMT etag: "fda-5c6e2f116c35d" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmCXNQi9sQyoe73inNpJy4%2BR2tWoagXdTI6Lsn7sc8B8eQj%2FxnN72Lens1%2BOIh22BuXKFQJg%2FhrjR1Hf14pcx%2FpQQLnPUsjyU%2Fd3KQtDdg4WBEHMNnbsQ9WuZpqdkVR%2BRgfhTX8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9204d60b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/06/Spa-Fjor_260x68.png	104.26.11.179	200 OK	8.9 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/Spa-Fjor_260x68.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 260 x 68, 8-bit/color RGBA, non-interlaced\012- data Size 8.9 kB (8878 bytes) Hash b160735ba9b1847ca0a4cb0a84bdaae1 ca1edcb53f1af37fb76763174304c507e69c3e35 d02c7764d0f92db35c943665f5c5668a36113bdf0b76c8975db0dfbceda836af HTTP Headers `GET /content/uploads/2021/06/Spa-Fjor_260x68.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 8878 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:22:05 GMT etag: "22ae-5c6e2f304d91b" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=flHwF75MkIi3LpgvSXEjZz0o0l66uNlC52hp7FVMAZmtkY12iwfdiVCxEYv2InbmjUQqsf8X1S5vR%2FZiDRGL6OkDjCQNnNxgWsOePG19WRZAaLuUb3a%2Bwq0xcTBx9m%2FPOi%2FoTsc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9205d62b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/07/2021_travelerscholice_116x104.png	104.26.11.179	200 OK	12 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/07/2021_travelerscholice_116x104.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 116 x 104, 8-bit/color RGBA, non-interlaced\012- data Size 12 kB (11628 bytes) Hash dcf76acc1215af8ad662b8c1cb87b394 b277b1bf8889deac504ef5b352f5d5545bfb9224 a6b98494a35fef2a5930eb700d58147cc0a531e530867e55962c8c0f42b98732 HTTP Headers `GET /content/uploads/2021/07/2021_travelerscholice_116x104.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 11628 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:26:45 GMT etag: "2d6c-5c6e303b26e57" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QpZ1XGP%2FUHAJkxyt85TsewyRdF92dYhZrmXp9jA07TjKR5oSJky9bqt%2B%2FOEB3gpw7I0MNruBsHzahJFg73em4I%2FwqWaB6DSdcgdMZtGiEae1bCBweQ6QvGinHqFOMiI0NiADVH8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f920add1b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/06/Top-of-Newport-Primary-COLOR-1.png	104.26.11.179	200 OK	8.8 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/Top-of-Newport-Primary-COLOR-1.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 260 x 68, 8-bit/color RGBA, non-interlaced\012- data Size 8.8 kB (8776 bytes) Hash 2dd13d6cfc73cb209c097d3895de4a0a c84940c3bfcd7bb2d9f572371daf9a6a18168784 2c100e9177165709289837be1a84f1adf13319249797e12fd51c0db71e3f13d4 HTTP Headers `GET /content/uploads/2021/06/Top-of-Newport-Primary-COLOR-1.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 8776 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:22:26 GMT etag: "2248-5c6e2f446a25c" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FfdwZ3H1Kg4Oj1DpPTltmsEPwgD9UwaEi6MeSRHK3UGBDTdN7JDjIkKmBoMes%2Fm4BzlD74o3Z%2BBBuDOFAeVTktg8k6vSKRYB%2F4lbT1RKLlM49Tev3aknW0KBXuiHYyTYP%2Bu47ww%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9209dcdb4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/img/logos/viking-logo-white.png	104.26.11.179	200 OK	26 kB
URL HTTP/2 www.hotelviking.com/content/themes/base/img/logos/viking-logo-white.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 1500 x 496, 8-bit/color RGBA, non-interlaced\012- data Size 26 kB (25728 bytes) Hash edb5166d8de62d564abb75c41f64e8cc 921619f769630cea170821ba1ce58dd1cf46b299 841be750c1ee23812882ba91a0a6d2862064422b880efab33bb86e0e12506820 HTTP Headers `GET /content/themes/base/img/logos/viking-logo-white.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 25728 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: "6480-5c6e282dc6d85" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ahmb8C6dGEMPJq0m4Qvy4mxjC4kHX67wK43axl1T5KW3eroVLKuLH9LmtVN66pHfsqh6ScVp5LDTNaWO%2BLxTTe4TAQICosjQTymJgVZjWLAcSLnXSmkPDythpCEVWctBePAfexs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9209dd0b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2022/02/Untitled-design-7-e1645822174837.png	104.26.11.179	200 OK	26 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2022/02/Untitled-design-7-e1645822174837.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 300 x 169, 8-bit/color RGBA, non-interlaced\012- data Size 26 kB (25906 bytes) Hash a4fa6df5bd5e2af40d2d9438b70737f5 b0c79fe9bcf70cf7f6097ca6d1bfc3811d54d620 ca81b9f8c100745da0677d2b6bbfa3e6df8a0deaa65e65227e68169271827e6b HTTP Headers `GET /content/uploads/2022/02/Untitled-design-7-e1645822174837.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 25906 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Fri, 25 Feb 2022 20:49:34 GMT etag: "6532-5d8ddd61a18a7" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n46WxEU5Wh9WvRTtyp%2FtYJQFSuIs5ecdHThxE5yux7DYIaQXCPf88BwB3cl2yy6IaSn7YHeLwAgFpqFE%2BF9pk4X9D6iF5QVQEUur2hIstKP2dmDZJwUzBJs%2FSlXJVK6kU9fGi%2Bk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f920add6b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/07/400x150.png	104.26.11.179	200 OK	33 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/07/400x150.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data Size 33 kB (33337 bytes) Hash 9fd32b31f3a7a3a6a6dcdf69d04d9b41 021a0e78eb077609d1285cf13d60f9436255a82b 1de4675be34b24047a17be692a6e5ff7d2cdd0e8f006f9986c93c5f73cc7c758 HTTP Headers `GET /content/uploads/2021/07/400x150.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: image/png content-length: 33337 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:26:45 GMT etag: "8239-5c6e303b2ef3e" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=04pShxp5ghDQK%2F6ulDaJp3DGN6cE34eXU%2B7fGEnzdomLZkNWEThBcQTY2ScVfg4Ddo2rw%2FiAEetnwruxsU8JhOs7x%2Bx%2BNL5bHb3XJ7f9cT%2FLfDTLJhrzZL9y9O8gJpOzZsy2Mic%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9205d6ab4f1-OSL X-Firefox-Spdy: h2

	region1.analytics.google.com/g/collect?v=2&tid=G-QPMC0JV6WN&gtm=45je33k0&_p=744754264&_gaz=1&cid=36400559.1679567163&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1679567163&sct=1&seg=0&dl=https%3A%2F%2Fwww.hotelviking.com%2F&dt=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.34.36	204 No Content	0 B
URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-QPMC0JV6WN&gtm=45je33k0&_p=744754264&_gaz=1&cid=36400559.1679567163&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1679567163&sct=1&seg=0&dl=https%3A%2F%2Fwww.hotelviking.com%2F&dt=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.34.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-QPMC0JV6WN&gtm=45je33k0&_p=744754264&_gaz=1&cid=36400559.1679567163&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1679567163&sct=1&seg=0&dl=https%3A%2F%2Fwww.hotelviking.com%2F&dt=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.hotelviking.com Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://www.hotelviking.com date: Thu, 23 Mar 2023 10:25:56 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5cd8c9b1a21861daf74c130682cea34e 32ceecbbe8fdfc999e4169771cf7633fdaa1f083 328369b9dcb3b3b19b031dd350a02c7cbe5fb250ba4748bf8d055da5342f0837 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/g/collect?v=2&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1	209.85.233.157	204 No Content	0 B
URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1 IP 209.85.233.157:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /g/collect?v=2&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.hotelviking.com Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` `HTTP/2 204 No Content access-control-allow-origin: https://www.hotelviking.com date: Thu, 23 Mar 2023 10:25:56 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5cd8c9b1a21861daf74c130682cea34e 32ceecbbe8fdfc999e4169771cf7633fdaa1f083 328369b9dcb3b3b19b031dd350a02c7cbe5fb250ba4748bf8d055da5342f0837 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:56 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3406 Expires: Thu, 23 Mar 2023 11:22:42 GMT Date: Thu, 23 Mar 2023 10:25:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3406 Expires: Thu, 23 Mar 2023 11:22:42 GMT Date: Thu, 23 Mar 2023 10:25:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3406 Expires: Thu, 23 Mar 2023 11:22:42 GMT Date: Thu, 23 Mar 2023 10:25:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3406 Expires: Thu, 23 Mar 2023 11:22:42 GMT Date: Thu, 23 Mar 2023 10:25:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3406 Expires: Thu, 23 Mar 2023 11:22:42 GMT Date: Thu, 23 Mar 2023 10:25:56 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg	34.120.237.76	200 OK	6.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.0 kB (5950 bytes) Hash 800c2662fd6ab8829a02b7d63084c38d 0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239 76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93c300c4-e707-428c-9ae5-d4699c20a7ef.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5950 x-amzn-requestid: ce85112e-428d-4ca1-9dac-1d6c8c6dc74a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CKyF9EI3oAMFtyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a96f2-05c5948d6f74948b1c67d68c;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 05:49:38 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: tu0ENc_6tfykYc23nLfwYEMsi5HIfaDWF6dvzVTfX5rfjr3JrmMrCA== via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 22:02:44 GMT age: 57605 etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg	34.120.237.76	200 OK	6.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.7 kB (6692 bytes) Hash c05bfdf1411a931d8ea9adc64b07bc74 156ef59e53564a4f2b27002b2695fafecd578d82 15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6692 x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CM9d9FcOoAMFaFQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: Jj5lAwItWYm45j5kLqQnd3fhsiGsiuSiSVtrBUOolyHvPAmCc0S71A== via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google date: Thu, 23 Mar 2023 07:54:24 GMT age: 9092 etag: "156ef59e53564a4f2b27002b2695fafecd578d82" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg	34.120.237.76	200 OK	4.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.0 kB (4000 bytes) Hash 85351059b67b0a42eda7e69a31b3b4b4 b798268806dc2f79f033e5872676019faf0e0cc1 86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4000 x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJpraEqyoAMFgNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: k6VaCG5oTQnKOvKJnleVqxIIc9yOgdOL0oPcL0ZSVw7DZQ8_GzFoZQ== via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 21:47:43 GMT age: 45493 etag: "b798268806dc2f79f033e5872676019faf0e0cc1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5d4e17-e42c-49fb-a54b-d7d97ad50ba4.jpeg	34.120.237.76	200 OK	7.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5d4e17-e42c-49fb-a54b-d7d97ad50ba4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.1 kB (7083 bytes) Hash 40d24dfcd9f0afe0e4077384f16cc494 76213c7d5c759471ed3823888860f918ac7e8f13 fbbbef0498ddf14bc9b204273a3cd416c357dceed20339c3e8c64a16b0be3caf HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea5d4e17-e42c-49fb-a54b-d7d97ad50ba4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7083 x-amzn-requestid: 52c38747-4a30-4831-87ca-7e72e5602ed0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CHY_gFu8IAMFh9g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64193b96-49c53b7c2e5ed4fc0217e357;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 05:07:34 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: XUrSSF8TgZSClR4MqJ0kuXGO-8KIguNmGe5lmVwzKXZO6CN0F9mimg== via: 1.1 f3802d173009698413044360f84de06c.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 21:51:03 GMT age: 45293 etag: "76213c7d5c759471ed3823888860f918ac7e8f13" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26aea22c-e627-45d1-bce6-55eaa4acfd06.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26aea22c-e627-45d1-bce6-55eaa4acfd06.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10816 bytes) Hash f3aa18378fc5715083fb26bd0d62f382 ee683e481a4501d2ab8ca63d1426d6fab6f2b064 8aade71c4b55f6a9daab28a05a90bcc3c6c01b700aa48d2f8ccdb1992fa5ee81 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26aea22c-e627-45d1-bce6-55eaa4acfd06.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10816 x-amzn-requestid: 60a537d2-1b8a-4ae2-967c-a7e57c818cc6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B9xY0EHqoAMFrrQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6415629e-1be08f9f3a13492717fdaa48;Sampled=0 x-amzn-remapped-date: Sat, 18 Mar 2023 07:05:02 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: pFf9EtVQUyRcUOT6Aj_L88__ZyBlVX61cOmPi70WnyxxPteVUFFXEw== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 20:21:35 GMT age: 50661 etag: "ee683e481a4501d2ab8ca63d1426d6fab6f2b064" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a7546f8-3d34-4fb4-b63f-8e8098b48c30.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a7546f8-3d34-4fb4-b63f-8e8098b48c30.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7419 bytes) Hash f777f840a3fc7e500c57a7cbdf88f26d 3518e8a18807209e94011806a96492e0d86ee9c9 44aa32fa1bf15785a4dd8cd6184772fb268113cbf459f5f30a70ff5ca66c9e05 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a7546f8-3d34-4fb4-b63f-8e8098b48c30.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7419 x-amzn-requestid: bc02abbe-706d-42af-b963-0163b07b87c9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B9xbnE7OIAMFW2g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641562b0-247606a3713a20d25cf83763;Sampled=0 x-amzn-remapped-date: Sat, 18 Mar 2023 07:05:20 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: W_FZ-TYlfmS1JSvZVG4v_4Iag3ssm5J2oYgk0LBdKqv-Q0KST6FkDQ== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 20:21:35 GMT age: 50661 etag: "3518e8a18807209e94011806a96492e0d86ee9c9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/backgrounds/footer-background.jpg	104.26.11.179	200 OK	212 kB
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/backgrounds/footer-background.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x906, components 3\012- data Size 212 kB (212399 bytes) Hash f87d6f4bb563f429f2a8f5a10c63dd5c fa0859d8b837b1714c73bc8c33530f5cb277bf88 f4a0113cf74b43344871fc8512ce86d2c21d81464627a15e7e59aae3dc958e5d HTTP Headers GET /content/themes/base/assets/img/backgrounds/footer-background.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/jpeg content-length: 212399 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Tue, 13 Jul 2021 12:58:41 GMT etag: "33daf-5c700cc1bc530" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=73ZqgylWBmxSdaAqiqIKKX2gDqi6iYkc53trShr7272ID8Sceg0NhGsqQv7MaVUZFMlvKTpeT5ws7sGzW7PcPSGdwc8YYjej9%2BZuRYtO1x1cm50oV73zAGOEPhstSWxv3wcfOd8%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db815b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/backgrounds/wood-border.jpg	104.26.11.179	200 OK	5.9 kB
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/backgrounds/wood-border.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1080x8, components 3\012- data Size 5.9 kB (5862 bytes) Hash 307248004192f44d813de2a09d2e07bb acccdd10426a95e6e8a3e5ba7ea3c6828383ad6f 386d95354ad3aca54203702248d75aeb42887fdaffbfc375fafea9435183d00a HTTP Headers GET /content/themes/base/assets/img/backgrounds/wood-border.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/jpeg content-length: 5862 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: "16e6-5c6e282d78f73" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WSs50RXrDfEV9NfSucSbH83Dwwf3AxrmI6O%2FKS30ob8MqSCgh2FB7zrNGxQC7qEIAkIoj2aw54DHmNG3aLmBS6lGH7KMSLXk5cB6XHLvvMQSxPjgM9QMdL71ihLRfpeysqQbYPY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db811b4f1-OSL X-Firefox-Spdy: h2

	acsbapp.com/apps/app/dist/js/app.js	104.22.1.204	200 OK	215 kB
URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js IP 104.22.1.204:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (65512), with no line terminators Size 215 kB (215420 bytes) Hash 72ab0c57fe0bdabbb7314d14c36bc069 c1555640d1711cfd8d234898e0ecca822a057e2f 884a3de377c594a181b7ab5ac2d4bd18020968c1afcba8771e944212d1eb54a5 HTTP Headers `GET /apps/app/dist/js/app.js HTTP/1.1 Host: acsbapp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: text/javascript x-guploader-uploadid: ADPycdulTSmHhTfuInty-qe_n5yFYLo5K_UG5WkzgH_AnjzVGy1k3CwU8SvyeY73JujHOKf8rM2wuhLeOixh7qk-w7hkFQ cache-control: no-cache expires: Fri, 22 Mar 2024 10:23:23 GMT last-modified: Thu, 16 Mar 2023 16:22:51 GMT etag: W/"991e4f6e85ee57b09ce4515b1b24a831" x-goog-generation: 1678983771807394 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 482650 x-goog-meta-goog-reserved-file-mtime: 1678983686 x-goog-hash: crc32c=piKUIQ==, md5=mR5PboXuV7Cc5FFbGySoMQ== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: * cf-cache-status: HIT age: 154 vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7b70b4fd-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/img/elements/get-offers-signup.png	104.26.11.179	200 OK	7.1 kB
URL HTTP/2 www.hotelviking.com/content/themes/base/img/elements/get-offers-signup.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 121 x 75, 8-bit/color RGBA, non-interlaced\012- data Size 7.1 kB (7147 bytes) Hash 2a35bbf08997bc7ded8d73c4e169a192 87ef385be595ce9549e3477e172ad8f12235b865 9a453b0dc4af5984b21434581cad996d59510b96e072606421a2bd0c84128bdc HTTP Headers GET /content/themes/base/img/elements/get-offers-signup.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/png content-length: 7147 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: "1beb-5c6e282dc3ea5" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:58 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cYvB2sEdwI2TdHL7wq8zgLfBzgM8%2F9hLWsZWU3WVpIaQ5v04VP3W5sj8xkaV%2Fkn%2BzI%2BGI45wJxa7gJ4wPnqjCKXVpMFwGyZuX04wrzlSYUaHF9JnlZizLB5EFU9Dtxma84OPCDs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9302b4cb4f1-OSL X-Firefox-Spdy: h2

	cdn.acsbapp.com/cache/app/en.build.json	104.22.1.204	200 OK	88 kB
URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json IP 104.22.1.204:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators Size 88 kB (87594 bytes) Hash 22648abae7f2160302d931d94b0b7910 c3e6561040d3bf4cac09cc5fb52431c7fba74612 52f97d7288da4c39b70159aeb08290c34ca7b95608652145e0a0d25b909b6c29 HTTP Headers `GET /cache/app/en.build.json HTTP/1.1 Host: cdn.acsbapp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.hotelviking.com/ Origin: https://www.hotelviking.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: application/json x-guploader-uploadid: ADPycdszWZ4vhaEFNZX_40SfIXs6FOsMjamP8FFahms72ApAQ6sndUqEGkUMk9KwbMd8DhmaMzSgrZnVBlhWWrK7C8rBAw x-goog-generation: 1678983699799139 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 244609 x-goog-meta-goog-reserved-file-mtime: 1678983644 x-goog-hash: crc32c=3jItvA==, md5=yhKgVPDCqUpoqYHja6MnxA== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Fri, 22 Mar 2024 10:25:58 GMT cache-control: no-cache last-modified: Thu, 16 Mar 2023 16:21:39 GMT etag: W/"ca12a054f0c2a94a68a981e36ba327c4" cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f931abdffab4-OSL content-encoding: br X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b7df84b011933900702a9d248017e69f 9658d3536a17cf8608850452760920d0c8751c87 d0bfa71a2355e180b326f0e1650fb8d91581a03daf750d17140c6b8a577cd9b9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D0BFA71A2355E180B326F0E1650FB8D91581A03DAF750D17140C6B8A577CD9B9" Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3117 Expires: Thu, 23 Mar 2023 11:17:55 GMT Date: Thu, 23 Mar 2023 10:25:58 GMT Connection: keep-alive`

	www.hotelviking.com/content/uploads/2021/05/0198_210426_Viking-1920x825.jpg	104.26.11.179	200 OK	1.0 MB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/05/0198_210426_Viking-1920x825.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1920x825, components 3\012- data Size 1.0 MB (1026261 bytes) Hash 58db68b3d936e28ba12c57c7a8c99d6c 2962d3e73fed008bedfecae11f57ffd0579f3f90 b7f315a3f00c9fcad3baad08d2036369a9e46e586b50da56140f872a5f381bcf HTTP Headers GET /content/uploads/2021/05/0198_210426_Viking-1920x825.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/jpeg content-length: 1026261 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Thu, 25 Aug 2022 16:01:52 GMT etag: "fa8d5-5e712ea760ad0" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jvVPWSgZJnVDf%2FXzvS7wnvpJa%2FJLuRMJ7D9Xo9vG7xV78aa6Tbue9iydyqHtmhm0QKQWj4hcJRrRwye%2FMY0XBQDhAjZqiqqMv134nmI9%2F910%2FeGb%2FOB8Wp7rkg7k3%2FZfiGJkiLc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92ed98eb4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/05/Breakers-Suite-Desk-1080x780.jpg	104.26.11.179	200 OK	610 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/05/Breakers-Suite-Desk-1080x780.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1080x780, components 3\012- data Size 610 kB (610326 bytes) Hash 8cc6b4f30b83466ec280c5878009679f 59ca989cfe5f571c0b34ae7e8a1efa39bc2210a3 86acd304b213064a44511eb7e5199c409892d79de30301c19dc07b3e56bbbabc HTTP Headers GET /content/uploads/2021/05/Breakers-Suite-Desk-1080x780.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/jpeg content-length: 610326 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Thu, 25 Aug 2022 15:40:05 GMT etag: "95016-5e7129c8b956d" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:58 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gZdGK7MbkOkL4fTE624Wr62V5%2FlSw%2Be1WZFfmgsJlSCdc97yD5mvVwWinaklqhP%2FAecQL1c0fjPm6Rxj69Ry02u2lpnKi05s8zwGEIybkJqAJaPOFepEi7V%2BOMIEf%2FUbzzXWLrQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9335fddb4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/05/Kingscote-Suite-1-1080x780.jpg	104.26.11.179	200 OK	816 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/05/Kingscote-Suite-1-1080x780.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1080x780, components 3\012- data Size 816 kB (815794 bytes) Hash 45491a427f9e3df48d2fad142b4e9092 cd538acc19f40f14845c1773d0ad0dfe4adb824a f78d924a6517e72f4d477d753a596f056dcf11479afbba26bfdab7d20f475f42 HTTP Headers GET /content/uploads/2021/05/Kingscote-Suite-1-1080x780.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/jpeg content-length: 815794 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Thu, 25 Aug 2022 15:39:54 GMT etag: "c72b2-5e7129be2816b" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:58 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbsODS%2F1%2FSZ7GAQv4Hu01XGUsDT5Ownq1%2BLZMI7TbOxVzv6PZCpJi2Fcv9WvwGcxfuZWfrM8EdUDlJTFLyQ2e0%2BBWdvOFyKUmAj4N32HxbIZ1O39g5g8PM1CVeE%2BB3VkHWk1TMg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9336fdeb4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/05/1024_210428_Viking-1920x825.jpg	104.26.11.179	200 OK	1.3 MB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/05/1024_210428_Viking-1920x825.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1920x825, components 3\012- data Size 1.3 MB (1298491 bytes) Hash 14f0dc9540736d584afa7c7c61182715 921011dd71486b27e81f967fb35c26f6b1332ee9 8ecbbfa9d39fe123e931657a2d308a48f52bd96dcf35f241679963c22f6acfbe HTTP Headers GET /content/uploads/2021/05/1024_210428_Viking-1920x825.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/jpeg content-length: 1298491 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Thu, 25 Aug 2022 15:43:38 GMT etag: "13d03b-5e712a93ccf90" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:58 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2F6ErYxCXPUkt%2B2LReiLtgD9Gd0KEwRn7A0cCBAZcTtsSnspDFzPRFCwrI4zlzOK%2BnpuToW9bvzGYAAb98J3pIYkB0puP2Oyge8bB1OE0tnF4kaBCatwcoBmPl7hNlKIR22XhgE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92ed991b4f1-OSL X-Firefox-Spdy: h2

	www.hotelviking.com/content/uploads/2021/06/NPVKR-19-1080x780.jpg	104.26.11.179	200 OK	856 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/NPVKR-19-1080x780.jpg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1080x780, components 3\012- data Size 856 kB (856443 bytes) Hash 59308ef937df52c6b678fdbcecf8c99e f0261572bf7e7ac02dd243f9907319b3008c98f9 587615640b20aea5ad484f1491e30dcc8d85da458a1d017a7c39b00ab69d6fb0 HTTP Headers GET /content/uploads/2021/06/NPVKR-19-1080x780.jpg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/jpeg content-length: 856443 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Thu, 25 Aug 2022 15:28:17 GMT etag: "d117b-5e712725ca97c" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:58 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RMG1BfGc3GtSnHo7P2Cwq09i%2BujDKXRB5mX1pdzByr%2Ba8DSz%2FX85XOPRolmbXD3M0NuAimOecXPzdX52oKz%2F52RblJa%2BcDsvh98JJlFHaNCiAggfCz2m3Y1RzIh%2BJsy3lA8VyBA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9335fd5b4f1-OSL X-Firefox-Spdy: h2

	www.google-analytics.com/analytics.js	142.250.74.78	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.78:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Thu, 23 Mar 2023 10:05:11 GMT expires: Thu, 23 Mar 2023 12:05:11 GMT cache-control: public, max-age=7200 age: 1248 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d09ed5b5ccfa429cf3ded7d6634ce586 e1d26f666c2b0ecf75aa847b3ee907c41514b588 b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 6e965ba75b84abf96ca0d83da48d2fbb 4c2eb4c06cabee4d0f0606e88e9e074e2f767168 4b39bfe671df590e9c5baf75008d76f4272d8ffbafd7108e7592f8165b6806c6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2155 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Last-Modified: Thu, 23 Mar 2023 09:50:04 GMT Server: ECAcc (ska/F757) X-Cache: HIT Content-Length: 471`

	storage.elfsight.com/api/v2/data/9f12772814a28964468fdf2c3ae81c4d	104.26.7.107	200 OK	33 kB
URL HTTP/2 storage.elfsight.com/api/v2/data/9f12772814a28964468fdf2c3ae81c4d IP 104.26.7.107:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators Size 33 kB (33240 bytes) Hash 6c0edcd22385870addafd803601ba2a9 94c7ba13bb7858b9523e675da2bb4a2ee98afdce d48b3b80a212fe8838d2b9ac41727e1a5c224e99345f86fdaf703e374e13ec7f HTTP Headers `GET /api/v2/data/9f12772814a28964468fdf2c3ae81c4d HTTP/1.1 Host: storage.elfsight.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.hotelviking.com/ Origin: https://www.hotelviking.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: application/json cf-ray: 7ac5f932ffc5b51e-OSL access-control-allow-origin: https://www.hotelviking.com cache-control: no-cache, private strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: DYNAMIC access-control-allow-credentials: 1 access-control-allow-headers: Authorization,Content-Type,Set-Cookie,x-csrf-token access-control-allow-methods: GET,POST cf-apo-via: origin,host x-content-type-options: nosniff x-xss-protection: 1; mode=block report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VJ4zFSE%2B8fiR9JDvJY2JhjBYImZWzKLJ5JlIsMh%2BK%2ByE8K%2BdzytXfPbjs%2FV8bMLWbuPHZ%2BdK%2BTVbwcMA6oGWxizuY2YL16WfW5xYGpDlR489E4q5ynrhrE3NkVdQ1t1vjXv27M%2F3"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8795e5b287f501dc39ee441cd6bd7125 9d420cfc40477940eff7fcfc1aee2c7731fd17a5 a2f6bc52d276e1f73a3e823606457e033bccf8eca8631940a55c298f952451ed HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	connect.facebook.net/en_US/fbevents.js	31.13.72.12	200 OK	28 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 31.13.72.12:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 28 kB (27907 bytes) Hash e5f5bf796d91f271e383cf1ff3ee5af4 70ead02da19095ca752d55e89a48fcdf59d44d33 247f023e282f1556e668df0033858196d682f31f659d1b53ea6dcaeff56c401a HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"} content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report" cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY origin-agent-cluster: ?0 strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: B5UnbG2uy0wCSngbtif0PB/rVhfd+lhBwBcwirvx8QWJ1vGvRQyfpbupqE08g8x54hr+h38W5me8ctjET/zNiA== content-length: 27907 x-fb-trip-id: 1904183273 date: Thu, 23 Mar 2023 10:25:59 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	bat.bing.com/bat.js	13.107.21.200	200 OK	12 kB
URL HTTP/2 bat.bing.com/bat.js IP 13.107.21.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (40607), with no line terminators Size 12 kB (11894 bytes) Hash 04651bf0c51742f9007b1ae2b4486dee 6ffc71fcb5db1cf0283b60150a62f2c219ac3dbd 5d7392c44731e52810337eb1a3eb3ae1ffab31b8f8d55daba20d658701604666 HTTP Headers `GET /bat.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK cache-control: private,max-age=1800 content-length: 11894 content-type: application/javascript content-encoding: gzip last-modified: Thu, 16 Feb 2023 18:31:53 GMT accept-ranges: bytes etag: "8072cff03442d91:0" vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 7523F4F757C24B53A8F56EF386A5C9E8 Ref B: OSL30EDGE0112 Ref C: 2023-03-23T10:25:59Z date: Thu, 23 Mar 2023 10:25:59 GMT X-Firefox-Spdy: h2

	googleads.g.doubleclick.net/pagead/viewthroughconversion/738460893/?random=1679567165490&cv=11&fst=1679567165490&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&data=event%3Dgtag.config&rfmt=3&fmt=4	142.250.74.34	200 OK	1.2 kB
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/738460893/?random=1679567165490&cv=11&fst=1679567165490&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.34:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2631), with no line terminators Size 1.2 kB (1239 bytes) Hash d110269eaaf9e56740f6b2b513d4846b d62de5040f22fa6b71657dbc113fd0af7bcdaad5 87a7245f2d0bb61ed4630769fdee679e880abb2a0a4143f6fca6547e29a8b31f HTTP Headers GET /pagead/viewthroughconversion/738460893/?random=1679567165490&cv=11&fst=1679567165490&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 23 Mar 2023 10:25:59 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 1239 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 10:40:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/favicon/android-icon-192x192.png	104.26.11.179	200 OK	3.2 kB
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/favicon/android-icon-192x192.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data Size 3.2 kB (3234 bytes) Hash 5802208f65a5e1a58a2d14d3d6fa69c6 916383dc8e71731a6e87568475575381b9effd28 53e92735d41b8f50f73df563934da2a2617b71327c52625a12466160f06e341a HTTP Headers GET /content/themes/base/assets/img/favicon/android-icon-192x192.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:59 GMT content-type: image/png content-length: 3234 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Fri, 16 Jul 2021 17:20:41 GMT etag: "ca2-5c740ce9af8d9" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:59 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K0HU8v%2BAjLQ%2BE0fKwwl37xbnsKX1MO8%2BEXabKIhnhlwayKoom8kmrrXEpnNmktEc4BctjpKWI0MT39IRo44BvNLPbA7raCUiFVEG2YXJ3DUPLDOmNdpW8z5KrL495jETVpJhARw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f93ccd34b4f1-OSL X-Firefox-Spdy: h2

	googleads.g.doubleclick.net/pagead/viewthroughconversion/787285266/?random=1679567163272&cv=11&fst=1679567163272&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&rfmt=3&fmt=4	142.250.74.34	200 OK	1.2 kB
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/787285266/?random=1679567163272&cv=11&fst=1679567163272&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&rfmt=3&fmt=4 IP 142.250.74.34:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2569), with no line terminators Size 1.2 kB (1218 bytes) Hash 34ffcbf154acabede26be51a6a27fa9d 67a62aa4bbdca21c612836eb178ca7588ce4736c 5930c15a6158349ac1ac7c9b553fcc44e100625a6401d4a8b5bfef46a67a675c HTTP Headers GET /pagead/viewthroughconversion/787285266/?random=1679567163272&cv=11&fst=1679567163272&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&hn=www.googleadservices.com&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&auid=2064059409.1679567163&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 23 Mar 2023 10:25:59 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 1218 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 10:40:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1&z=23141758	216.58.207.227	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1&z=23141758 IP 216.58.207.227:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QPMC0JV6WN&cid=36400559.1679567163&gtm=45je33k0&aip=1&z=23141758 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 23 Mar 2023 10:25:59 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 6e965ba75b84abf96ca0d83da48d2fbb 4c2eb4c06cabee4d0f0606e88e9e074e2f767168 4b39bfe671df590e9c5baf75008d76f4272d8ffbafd7108e7592f8165b6806c6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2155 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Last-Modified: Thu, 23 Mar 2023 09:50:04 GMT Server: ECAcc (ska/F757) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8795e5b287f501dc39ee441cd6bd7125 9d420cfc40477940eff7fcfc1aee2c7731fd17a5 a2f6bc52d276e1f73a3e823606457e033bccf8eca8631940a55c298f952451ed HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash d09ed5b5ccfa429cf3ded7d6634ce586 e1d26f666c2b0ecf75aa847b3ee907c41514b588 b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:25:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bat.bing.com/p/action/13006875.js	13.107.21.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/p/action/13006875.js IP 13.107.21.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /p/action/13006875.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content cache-control: private,max-age=1800 strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: F1518FC106B2489E91A4D6705B4913C9 Ref B: OSL30EDGE0112 Ref C: 2023-03-23T10:26:00Z date: Thu, 23 Mar 2023 10:26:00 GMT X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 78815ec28cdd11dab4f66f2eaab35658 c6fd7f2a657d87c6e7641be6fc69913c427cd26a f99b9d279c7ddfe7916dde9c7390be1f225e330ffa662bd7ae603ceed76e44c3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:26:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 78815ec28cdd11dab4f66f2eaab35658 c6fd7f2a657d87c6e7641be6fc69913c427cd26a f99b9d279c7ddfe7916dde9c7390be1f225e330ffa662bd7ae603ceed76e44c3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 23 Mar 2023 10:26:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/pagead/1p-user-list/738460893/?random=1679567165490&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2662783808&rmt_tld=0&ipr=y	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/pagead/1p-user-list/738460893/?random=1679567165490&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2662783808&rmt_tld=0&ipr=y IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/738460893/?random=1679567165490&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45be33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2662783808&rmt_tld=0&ipr=y HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 23 Mar 2023 10:26:00 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/pagead/1p-user-list/787285266/?random=1679567163272&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&fmt=3&is_vtc=1&random=3585132004&rmt_tld=0&ipr=y	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/pagead/1p-user-list/787285266/?random=1679567163272&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&fmt=3&is_vtc=1&random=3585132004&rmt_tld=0&ipr=y IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/787285266/?random=1679567163272&cv=11&fst=1679565600000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.hotelviking.com%2F&frm=0&tiba=Hotel%20Viking%20%7C%20An%20Iconic%20Newport%2C%20RI%20Hotel%20Downtown&fmt=3&is_vtc=1&random=3585132004&rmt_tld=0&ipr=y HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 23 Mar 2023 10:26:00 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	bat.bing.com/action/0?ti=13006875&Ver=2&mid=92df0854-caed-4b53-a13a-df46d6d5ba94&sid=1f943ab0c96511edbb6cf541320dab09&vid=1f945120c96511ed89ade1d1b23f2e3f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hotel%20Viking%20%7C%20An%20Iconic%20Newport,%20RI%20Hotel%20Downtown&p=https%3A%2F%2Fwww.hotelviking.com%2F&r=&lt=3561&evt=pageLoad&sv=1&rn=409596	13.107.21.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/action/0?ti=13006875&Ver=2&mid=92df0854-caed-4b53-a13a-df46d6d5ba94&sid=1f943ab0c96511edbb6cf541320dab09&vid=1f945120c96511ed89ade1d1b23f2e3f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hotel%20Viking%20%7C%20An%20Iconic%20Newport,%20RI%20Hotel%20Downtown&p=https%3A%2F%2Fwww.hotelviking.com%2F&r=&lt=3561&evt=pageLoad&sv=1&rn=409596 IP 13.107.21.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=13006875&Ver=2&mid=92df0854-caed-4b53-a13a-df46d6d5ba94&sid=1f943ab0c96511edbb6cf541320dab09&vid=1f945120c96511ed89ade1d1b23f2e3f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Hotel%20Viking%20%7C%20An%20Iconic%20Newport,%20RI%20Hotel%20Downtown&p=https%3A%2F%2Fwww.hotelviking.com%2F&r=&lt=3561&evt=pageLoad&sv=1&rn=409596 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=09BD684064C66353381B7A9D65336258; domain=.bing.com; expires=Tue, 16-Apr-2024 10:26:00 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 81BBB8C9276440B29EE9530C0130A854 Ref B: OSL30EDGE0112 Ref C: 2023-03-23T10:26:00Z date: Thu, 23 Mar 2023 10:26:00 GMT X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/favicon/favicon-16x16.png	104.26.11.179	200 OK	972 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/favicon/favicon-16x16.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size 972 B (972 bytes) Hash 304349e44fe7b5ed4a39af2f380cb0a7 5cbbad12b9f89dcca481afa8d0f3bdcdf6a681ca d787a56bc28302b75ede2730cbbd28cf41c32380bf4702e478fd084c716626f4 HTTP Headers GET /content/themes/base/assets/img/favicon/favicon-16x16.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:26:00 GMT content-type: image/png content-length: 972 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Fri, 16 Jul 2021 17:20:41 GMT etag: "3cc-5c740ce9b0879" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:26:00 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TCZbahu4NCVJsrMahqeKF1YYNEn3BAHb6bY6cA%2BdQVFUC6GgrNvu3GM7LEvqG%2F85TWbWYPxtuOwXLORZCw1axv7mYEcqV%2FgRHTgGFuj%2FESYIiwJPSylm%2B0Wt2hxiYNaWlc9vFag%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f93ccd45b4f1-OSL X-Firefox-Spdy: h2

	www.facebook.com/tr/?id=460862977757344&ev=PageView&dl=https%3A%2F%2Fwww.hotelviking.com%2F&rl=&if=false&ts=1679567168126&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679567168125.1513398883&it=1679567167712&coo=false&rqm=GET	31.13.72.36	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id=460862977757344&ev=PageView&dl=https%3A%2F%2Fwww.hotelviking.com%2F&rl=&if=false&ts=1679567168126&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679567168125.1513398883&it=1679567167712&coo=false&rqm=GET IP 31.13.72.36:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tr/?id=460862977757344&ev=PageView&dl=https%3A%2F%2Fwww.hotelviking.com%2F&rl=&if=false&ts=1679567168126&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679567168125.1513398883&it=1679567167712&coo=false&rqm=GET HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400 date: Thu, 23 Mar 2023 10:26:00 GMT X-Firefox-Spdy: h2`

	www.hotelviking.com/content/uploads/2021/06/hotel-sketch.png	104.26.11.179	200 OK	221 kB
URL HTTP/2 www.hotelviking.com/content/uploads/2021/06/hotel-sketch.png IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type PNG image data, 1153 x 489, 8-bit/color RGBA, non-interlaced\012- data Size 221 kB (221410 bytes) Hash 7f7cc7888e001fd027d6277609ba3083 e50f0816eaad7538a5f0f92794bf101615c99ce6 106368bb9d6445067a8ac63e7a9a419cdc71ac7e89c0c0a0e90067f22085518d HTTP Headers GET /content/uploads/2021/06/hotel-sketch.png HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.2.36400559.1679567163; _ga_FE79Y90F38=GS1.1.1679567165.1.0.1679567165.0.0.0; _gid=GA1.2.919257934.1679567168; _dc_gtm_UA-98307758-1=1; _gat_UA-111175205-2=1; _uetsid=1f943ab0c96511edbb6cf541320dab09; _uetvid=1f945120c96511ed89ade1d1b23f2e3f; _fbp=fb.1.1679567168125.1513398883 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:26:01 GMT content-type: image/png content-length: 221410 x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 01:24:54 GMT etag: "360e2-5c6e2fd18b0fc" cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:26:01 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tk%2BL5HfAVTZTUABi4MLpAYxeMXdPye6Gmrw6u83jgKHCeca6uCM961OZkQZMz1phto%2FfyuWZO%2FjjSatv00CJYcVpBsdyKNauvxQ2gmTQdLaUo%2ByJk29tKCN51xhfzHf8FLxW6yQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f94458d1b4f1-OSL X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9024651c-3847-4a12-9650-405ea99fd1b9.jpeg	34.120.237.76	200 OK	5.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9024651c-3847-4a12-9650-405ea99fd1b9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.8 kB (5753 bytes) Hash 6f29db357e8536a4aeccdd3df67d3205 391c43d349b943ea9af4aa6e3b6910c07370ee78 b0ee1cab104b785c33aca9f3caae8f9c1abd856af3cfe1603b2b7036727468ae HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9024651c-3847-4a12-9650-405ea99fd1b9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 5753 x-amzn-requestid: d2538544-4f4c-4de0-a438-a48642dd0f17 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CM8pDGqyIAMFwRQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641b74a0-339c26cd16208aae5c47dc2f;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 21:35:28 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: k8CxAaBFdfMb2TwytWOL1Xy9SRucuMEqX_YZ3dN1-RmI3rligms_oA== via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google date: Wed, 22 Mar 2023 21:47:51 GMT age: 45492 etag: "391c43d349b943ea9af4aa6e3b6910c07370ee78" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/close.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/close.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/close.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"402-5c6e282d97f88" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GxQGWa8oMbbzWQlRmH3uXn%2BztEvwjEX0oAa83VKR0Ms2Kuwa5pkKLwh0pSyFKeOxTPwGsjquVZBnKMV6mOZDMd45eEH19iydyvJtVbGhtTXWhyJwW%2F8FVllcHbJnHVlKnDTbFug%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d5f77b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/shopping.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/shopping.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/shopping.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"3a0-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTpjNtDP3Sip4Na%2BpJkfKbQjvcqTNCPUVNdrqUh%2BCWqu%2F3fcjLsGKa64GxD12AYMNq408h8jL1B0YFtjQMBuwgfnqF0etDNguoOU95ghp6jk%2F1sZ3DaEIQs4Tw1bUP6%2FiBcYHDs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fb6b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/add-code.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/add-code.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/add-code.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"46e-5c6e282d97ba1" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B1zUB3RXLyBcHPaTVz9oa0JZfZ33ZS6N1e2Bx8MoHgs51AUgi54HgzXldrZHVpTqG8k%2BXP4roWxoowgZvMiiaSm10JNr949wOnXS0NysgZMepL%2FalA%2BzTH5NHus2wa%2FdghukZqs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d9fe5b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.acsbapp.com/cache/app/hotelviking.com/config.json	104.22.1.204	200 OK	0 B
URL HTTP/2 cdn.acsbapp.com/cache/app/hotelviking.com/config.json IP 104.22.1.204:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cache/app/hotelviking.com/config.json HTTP/1.1 Host: cdn.acsbapp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.hotelviking.com/ Origin: https://www.hotelviking.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: application/json x-guploader-uploadid: ADPycdvrWdPwuDzayzuE6qVyzGEJUzOV_ZCjMgrsyu5cQZ7gFkTNdr5bIUsfqNFgbxRyzB_M3GBOQ-nreSMmRdJVcr2Aduxftn_p x-goog-generation: 1675864371000059 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 164 x-goog-hash: crc32c=soI58g==, md5=65r95Q9FnlZvuOE5Sv+A/g== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Fri, 22 Mar 2024 10:25:57 GMT cache-control: no-cache last-modified: Wed, 08 Feb 2023 13:52:51 GMT etag: W/"eb9afde50f459e566fb8e1394aff80fe" cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92ed8fafab4-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/minus.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/minus.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/minus.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"1b0-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ofw1zkpRHAaDfa00hXUfxbsEfW2AB22KrB%2BpevLO70emyWQ%2BLhnjXFf7OmlQW5lpf6M1mZ0MVZVgCkDmXKZirQTorfbNl3t8wLRrIF6hVFRSrvbw%2FhTBk7wWLvUmhY12GGOiGGI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fbfb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.acsbapp.com/apps/app/dist/media/logomono.svg	104.22.1.204	200 OK	0 B
URL HTTP/2 cdn.acsbapp.com/apps/app/dist/media/logomono.svg IP 104.22.1.204:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /apps/app/dist/media/logomono.svg HTTP/1.1 Host: cdn.acsbapp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: image/svg+xml x-guploader-uploadid: ADPycdtK0uxOVbeju_ybS7g6Ed0vnRh5WTgstYVAiCyylJomGvUGjemss6baCRdd6mMlfCaO2PaEP1eUUDr-TYzCJj7k4GyLDXUl x-goog-generation: 1676551749898280 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 4105 x-goog-meta-goog-reserved-file-mtime: 1676551711 x-goog-hash: crc32c=WqbZUg==, md5=0PBCUjoZi+w5efnpuOdTpA== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: * expires: Fri, 22 Mar 2024 10:06:16 GMT cache-control: no-cache age: 1182 last-modified: Thu, 16 Mar 2023 16:22:52 GMT etag: W/"d0f042523a198bec3979f9e9b8e753a4" cf-cache-status: HIT vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9337d98fab4-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:56 GMT content-type: text/css x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Fri, 09 Dec 2022 14:44:17 GMT cache-control: public, max-age=2678400 expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=28Xrt2%2FIfd46FyBTjbjgONODjtrUeCPgUoo%2FNyNSBk20Zg7J%2B%2BQmra252i3ZkzxeHWRC8M%2FKmMJCoE7z39jxYJUEmoKYBExeq5oCzu5UT9loEVx8O2XT1lh8EzuuPe3z6FhAbAE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9204d5ab4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/social-knot.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/social-knot.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/social-knot.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"2cb-5c6e282d99ec8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S6L5YMd5dZ9ClEAf97qBHLItivV62nO7QDz%2FhYkcPskpJo2F6h3DaSLZThdpI%2ForXQcRJHmtV9H4XZ2AQnMLcUUlVhddfJR%2FFbLURWojywog8tFI668XrL19CCCmm4PWyC1Qc24%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d8fc2b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/text-link.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/text-link.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/text-link.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"151-5c6e282d99ec8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gV7CxvJIoQSnrvfG%2BmX3cteewINHd8n9SC6Toul6HzhrkDkmI5s4a4OeaKYgVyG5IyfjXvyrGYDb62ZNmGthktcGUJGxbz7QsHLkloP%2Fbeu9QqiCq8JY9s6jQkkI9O5%2FnvBgmWk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fa9b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/font/quaver.otf	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/font/quaver.otf IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/font/quaver.otf HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: font/otf x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"6714-5c6e282d5be9d" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6e2gKT%2FV66mkHKy9%2BHZ4QySzgW0K66FiujqNGHccsAAwvkSlEZPOQ4IgZFv6%2F6eTbhxS73gpPVbQ3FyjwDbghXkVc6OxUeNbYWm2tgsMATsMSKkU4I8ovSXjXRs74aBNKT1DViE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db816b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/font/edmond.otf	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/font/edmond.otf IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/font/edmond.otf HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: font/otf x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"d898-5c6e282d5be9d" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zqAXQHc9uOmw7qdsfO6JOvF73DXXarDA6zDjpChsDiezmjoFgExymiCTdFu%2BKQWG47b8UdxFz4BHWIuoFdQSRMZ%2FQskpl5f2B7F7mM41NX0oHV8LhY77FK9SGiiag0hpOwIsQZE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db818b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/carrot.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/carrot.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/carrot.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"c6-5c6e282d97f88" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rT2EYZFPrc97jpQiKoZ7a6GeW13sPC6Z1ymLRlSXEcz7f%2FB5oszk3TbiPvaXfI%2BVq%2FTMTOygj5FvrLhs34ZJNKHuoozpKfzzeBfyXhShW3DX6IH0qziot8zZBReKvYy9%2BOkmqMg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d9fe4b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/dining.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/dining.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/dining.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"48b-5c6e282d996f8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YqkbLpdvKgk3Cj8TEg6bOzZutT7BncYO5SneLcHWsXNsgKkUob78abkU4%2FGUoJL2GFoO%2BoKzeCUzVZfquosqTxB%2FmvYKMsd5i52HLKJ%2B%2FL9nCnKhxKKo1geSvVp%2FGttvb5uLCE4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fbeb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/view-all.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/view-all.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/view-all.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"498-5c6e282d9a2b0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L1YLqYSKG1pIBWeLV%2FoRU%2FQMKAn9uO1UzjOYcpDutE4qjJ3QG4HhfPVPWYPpTLB9%2BnGLjboz0YKQT5mC0ssm0o7M25r%2F%2B7qk01UDAIY%2FlRymFfm8xnV18Eis5hEZzYzbQkHFask%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d8fc0b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/close-link.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/close-link.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/close-link.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"40b-5c6e282d97f88" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWWN5W8TiOU3kpXKPPu1B8FwQ%2Bh8e0Dr%2FgIo98nzq3T9KuVRrsOTMqrCwOckMOsry3bEG3eMh5K1%2FrkZFrxOESCBlFq%2FGMcrEApT55aFU5ndMOl9dp6gHXou%2FXPP0TEx961Yx00%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fa5b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/font/edmond-medium.otf	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/font/edmond-medium.otf IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/font/edmond-medium.otf HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:58 GMT content-type: font/otf x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"cb8c-5c6e282d5bab5" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQCf7686BFr8YUhjrMjQ0aNl%2FW94WkFKsYtkYvcugtlpPHrkQ7MqUsChQN77%2F2igW4cP5MT4pL8Q52TeS3NfYXkCe5IdHcGigT2rUwzX%2Brlegy9XIlr%2FvIjC6idZz2zsFqBOS9g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db81bb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/plus.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/plus.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/plus.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"228-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fKU7IKjeExCciQe%2BvsG3xZEz%2BiYJAHpfQPP3TCxedcfBaM1czVsFWEotXwCb9GFyjelaTGe%2BWtXiaJddkgwO9GR0HcszTKsIrDppTiPk9tEHDjnW9tqXf3DignJczX%2BiyimVPY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d6f8db4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/next-arrow.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/next-arrow.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/next-arrow.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"124-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9c4eLva9PgQQ0bXS2BAFKEYdCzjcNjEovyZjyRlPJcxj%2Fp4xW%2BP23SVXT2NLMmemqCVxi1zxRVx1C7v%2BWYelT24LgAMVpVrkRmBcjxVRAFMTBd8%2BmMqH5Kh4aT8%2BG7xjn5C8Wzk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fa0b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/things-to-do.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/things-to-do.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/things-to-do.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"7b5-5c6e282d99ec8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7xwd%2BopU8SmIMym70IT8ynMZf2Rh%2Bn6m7eaI0G44aCMOl52EU%2BEdG8ycAGd6ROnsYor7xkZL1oUOwRwZACWyNlu%2Fj0XNhfTJL0hUZyPM%2B59PGCHu9xE0JoE%2BFux6pgGXn6VmKg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fa7b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/newport-mansion.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/newport-mansion.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/newport-mansion.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"64f-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pdNnmVJqXya4HY2tT2ShQHSesRWpgxlpgLffPGBl4fCkyVoRdtJESHzqZ3KYhmMl90bdK8cfppcyBomV9R34bmFdFhK3b18GOaWvVJ%2Feqds929mSBwyc8b1JVqqxYwvAuuuzT%2BU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d5f74b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/calendar.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/calendar.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/calendar.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"243-5c6e282d97f88" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DyXVbWrk%2BPn01p8LFbKbP7USVvS3he%2BigfGQz2HW9Wp7XA1YQf%2FnM7DTV6Umy%2Fd69teV1tAt9ccoyfeHO4jnZICWeVFK0Q9dMTvm7Kp4UEo0WVRWc77BzuJMvTmjPkJL2TXXe5k%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d8fceb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/social-facebook.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/social-facebook.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/social-facebook.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"199-5c6e282d99ec8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BeIE60%2FdE6KyFY2Gbwx3h6P2O0k7zUQQOhWSxv%2FdoPgynQY6tIKurBde2gGhRzHyT167hNJhzCf5JdbUaLCo66m%2BHUEDKdBhaLPcplkL63izp9obSNfXFE4XeYtKxVQWwWXJD0g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d9fdeb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/viking-logo.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/viking-logo.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/viking-logo.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/content/cache/autoptimize/css/autoptimize_0306f86e281574954fdc05dad347dd66.css Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"2650-5c6e282d9a2b0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FzJ9PuiXvGSb89me4khQBYtju84Vi6%2BdkXXL70S9IH3NaGrUTNHIKoHISVx10fR48mwo6YC%2Bqu19TqA4raOZS4Hj5JpKjgAw5GNAuK1joSX09IPCxLj0fOBgbxAGeh7S2GQqfdg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92db809b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/cache/autoptimize/js/autoptimize_41a0a253cf1b6637efe2b536e29439bc.js	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/cache/autoptimize/js/autoptimize_41a0a253cf1b6637efe2b536e29439bc.js IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /content/cache/autoptimize/js/autoptimize_41a0a253cf1b6637efe2b536e29439bc.js HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:56 GMT content-type: application/javascript x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Fri, 09 Dec 2022 17:06:14 GMT cache-control: max-age=2678400, private expires: Sun, 23 Apr 2023 10:25:55 GMT x-xss-protection: 1; mode=block cf-cache-status: BYPASS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0RM6OTKR1Jb%2BYgGCwd9IjgTMe3WfK%2FfoJkQj5XMxj8nytFBH1iJ0fVs%2FFKYV16NFjv9Us2sk3lNck9I9hBJXyMqmKc%2BJlVqNNE5i9tMNYU9bXu%2Bzp1t0JNmrh4ZRncUZYaUc77o%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f9204d5cb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/preferred-partner.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/preferred-partner.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/preferred-partner.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"1c0-5c6e282d99ae0" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=deqvUAz%2B6NRoeIyNDz%2FOyWVFLjMcQjxA%2BAKPLgYVBVH4IZC56O5Kdpt1yXh8Aba2fCd6Citl8nTgaUYWvD56%2FolXrwJMhN3vg4d9RvbK4HF9Vm9MRw383tcPkTmBCW%2F3WCpBeEE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d7fb4b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/map-pin.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/map-pin.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/map-pin.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"1b1-5c6e282d996f8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fRl9zvWGeOJGnwOmGpOGnH0IaJ800HsxtYY3UFjurkjsGLZ8UGV9ZFTDFPxaw3dNQwpRqfQaylApSwnc75zEkcyMUr3Q61zfbD3yLwNZloq%2Bo2pfh71f6ojaMniXzsI%2FtSzY82o%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d8fddb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/ IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:55 GMT content-type: text/html; charset=UTF-8 link: <https://www.hotelviking.com/wp-json/>; rel="https://api.w.org/", <https://www.hotelviking.com/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://www.hotelviking.com/>; rel=shortlink x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:54 GMT x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NXtDD3dzlpaBU0W69IaQ%2FcJHtNP5Ujv3GkiISg8cenY4Lv0tr06EVVQ1mGeM2ppign9D7NQ2sdgEvneaSP10lz8rMTm8ypU7SmT8oSQaq0CPZuBIkP49p8%2FMsLntIjaNtlZYsHg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ac5f91a4c29b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hotelviking.com/content/themes/base/assets/img/icons/social-instagram.svg	104.26.11.179	200 OK	0 B
URL HTTP/2 www.hotelviking.com/content/themes/base/assets/img/icons/social-instagram.svg IP 104.26.11.179:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /content/themes/base/assets/img/icons/social-instagram.svg HTTP/1.1 Host: www.hotelviking.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hotelviking.com/ Cookie: _gcl_au=1.1.2064059409.1679567163; _ga_QPMC0JV6WN=GS1.1.1679567163.1.0.1679567163.60.0.0; _ga=GA1.1.36400559.1679567163 Sec-Fetch-Dest: empty Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 23 Mar 2023 10:25:57 GMT content-type: image/svg+xml x-frame-options: SAMEORIGIN strict-transport-security: max-age=63072000; includeSubDomains last-modified: Mon, 12 Jul 2021 00:50:43 GMT etag: W/"9ad-5c6e282d99ec8" cache-control: max-age=2678400 expires: Sun, 23 Apr 2023 10:25:57 GMT x-xss-protection: 1; mode=block cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ia1h6mgBCu%2BiXx03uN6C6KkfA8GkCg8xfXUpuROE4UZaM2xbGmnSiAj1w6rhzUe9ZFdIVoIwkQwSc8%2BTZvYG6AIAJQr3sAP%2FiTGOjD9cV9CuQcxVoREwdGFRctPMq1b0YLnWGLg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ac5f92d9fe0b4f1-OSL content-encoding: br X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML