GET www.viator.com/orion/partner/widget.js
200 OK 1.4 kB URL GET www.viator.com/orion/partner/widget.js
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (1423), with no line terminators
Hash d799e639f2993c0d5949374b294069fd
33b41efc02a8eb3887269245e12f34e84c44e47d
409e29acadeb89ac9e4b61c22a57f13bd5862cab2d24f97fe87ff23fc681f465
GET /orion/partner/widget.js HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.02.27.1
last-modified: Thu, 27 Feb 2025 13:10:22 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC21:63BF_0A280BF4:01BB_67C0DC39_50B06B:2AC37E
traceresponse: 00-917cf10bbce64545859313e9077abb03-b060d554396847c6-01
expires: Thu, 06 Mar 2025 21:42:57 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:03 GMT
via: 1.1 varnish
age: 1239187
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 392
vary: accept-encoding, Accept-Encoding
content-length: 675
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/logo-1.png
200 OK 60 kB URL GET www.cruzeiro-safaris.com/images/logo-1.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 104 x 67, 8-bit/color RGBA, non-interlaced
Hash 776452c352a18a4b57f05a02413c65ba
4ce88c247d3eeb0666fce21f786d40b3fdef8f89
441294f949bb44d7fc3569b151f80de8f0e138c7cfb36c6d6bfc7ce824087440
GET /images/logo-1.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 60171
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f945abb9.64d81c82c14ff815.js
200 OK 50 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f945abb9.64d81c82c14ff815.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (50142), with no line terminators
Hash faab1fcd5d4d78922703e1ee3503ac9e
2b7eae3245a59ee1abe98a2bbfe7c0d5d794db53
68e8e834745f7008949312647c29ecceb88684a64d097926916f7cf3d1c4d6ee
GET /orion/react/client/vendor-f945abb9.64d81c82c14ff815.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:BB59_0A2806EB:01BB_67D2B257_17A0A63:53AAE
traceresponse: 00-a61057c806df4319a2dd8245d2ef5c2b-95ce65cadba9bff6-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 150
vary: accept-encoding, Accept-Encoding
content-length: 12512
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/images/camera-loader.gif
200 OK 9.3 kB URL GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/images/camera-loader.gif
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type GIF image data, version 89a, 30 x 30
Hash cd2e13291ecdcac7f575beea6d84b099
349fcf8940beb50be3cf0089fa5f4f38f890645c
54ecb255faaf5ef40b325def1fe3ed203589d761ddaacc784fd9401c651156d2
GET /modules/mod_slideshowck/themes/default/images/camera-loader.gif HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/css/camera.css
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 17 Aug 2023 08:37:36 GMT
accept-ranges: bytes
content-length: 9289
content-type: image/gif
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/9673.3e9c6f8642be50f0.js
200 OK 99 kB URL GET cache.vtrcdn.com/orion/react/client/9673.3e9c6f8642be50f0.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash f1c9be860b5031a10f0c82c75aa04681
59d32f8ce0f585aed3b9950ae4150ed1b6149bf8
67a270f417984bdf11896e7a140e0e403ab9845e3d2727a668fece59c9c16b56
GET /orion/react/client/9673.3e9c6f8642be50f0.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1F:FB05_0A280F01:01BB_67D2B25A_156C719:55642
traceresponse: 00-0c8c44e7047c446e9d63f62a893eedf8-80e0be6feeaf6159-01
expires: Thu, 20 Mar 2025 10:24:27 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70297
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 39
vary: accept-encoding, Accept-Encoding
content-length: 22238
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20564), with no line terminators
Hash 328cf0531b6361f92ace0f38c8932c94
2055a058d5ec7dcc63a5f85c4382846e995d5d48
cb3406871e3c5a5cdf95a7ef292428f02b21f2b7c5cfb70670327aa41c5fcaa3
GET /orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.11.1
last-modified: Tue, 11 Mar 2025 13:11:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC15:148C_0A2809E5:01BB_67D00E80_130C87B:1BC07
traceresponse: 00-c66115a859894752a0856f54219cdd5f-afe26ca763c342f3-01
expires: Tue, 18 Mar 2025 10:20:48 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 243317
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 521
vary: accept-encoding, Accept-Encoding
content-length: 6016
X-Firefox-Spdy: h2
GET www.viator.com/orion/challenge
200 OK 46 B URL GET www.viator.com/orion/challenge
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type HTML document, ASCII text, with no line terminators
Hash af489f70d5c321fa7463dcbdd8002f33
c7802ab630d470a312fbe5335577628aa1a60ac7
0861b850bc7ff51332b06f0f94a7f877981c81ab98e6be34e11449abd89f9c26
GET /orion/challenge HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-XSRF-TOKEN: c9b2ad27-7267-4540-9f16-3882e0e87639
traceparent: 00-7e21df32fd26f1c7bbf9651e3801760d-3227b77d66683703-01
tracestate: es=s:0.1
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2822c056-c159-4af0-8a4b-1b98277884b5
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-language: en
set-cookie: x-viator-tapersistentcookie=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:06 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION=zyrI8IQjT7FrFm1BA9AnNA%3D%3D%7CvyKXWvmK%2BhMIZ1hsaMeGhfB%2BCQdIDoJo8x7ejXNiCWEbJSdKgLDwxK2yUv%2FxMt9GIpJbcl5vvIhSgnWrktAVXn%2BdyvBInrFWJpcmLONCRutqJjcN9ErIZVpbIaIHrtvsxtebuZJE%2F0H5yqQ95wj2rVmu1c%2FXi1vlX7jghz1cufRSuaJSM5Ifhko7NMJf1Wv9iUQ3cE9X0ZiYVnJlVdkq%2B9AOfzGHwpx7pjzC2hlLKLpK5ZFpWKeheS7nEz8aaLZpVDxiQPlPMYL8pLeFg%2BtkS7uF0CWlKzAfC6rk2m2P64Teg7oV104D7CBz2ymr0xT1ce3YUBCAwq1pdCAx4shLghgJPqQu5yzIBk7wJzeo8%2FbZLe1ZbJ%2FDuOIdKoHwveCe%2BS2Jno07FmSy2CChXlvgLnDxR54N6jgKpiKtzAtDwImRD69FcrNKQLJKQkS%2BriYI8Ez7c7EbC6ax%2FWYt8pIsS7yCY1grJ%2Fr7hB1PBBMjUvmX7Sb22YqgKuuEIjDskRI2I3isLOMLY855sVfuu8%2BwDvaN%2FXA1YtEy47OQ%2FRvcO362WSwJSkJBdZnTCOil3S99J6hk%2Bb3MaL7oiGU9ScJUS%2BRmSJw1LciWlujCcdsjJuSUHtm3NTmETfMhCR09f4wh1meI7E%2BiAXRZmGzjkmGa0DDl%2FzYiDpMivxk%2BxQykuSvikKLn%2ByjrXF67%2BeEY6N7stNXSFbux%2F0TzCbGyKT3vZmRSrxdibWE7MtPerRlB43TCn9pypnImwutgC5Pyint1JwdGNG%2BBUeFhO43T%2BfJtxLmC6JoBaczhXA%2F5%2Fm2%2BrZ3CmISyTV2MG2ElVhu8RyqnF4wLX5ORDragglHz1NyM7N9dNpXDUY33ZfRu%2BCKM1pWlH%2BZl8RQ1cuxsJDKWADeidoQl2nYVwKH%2FRlL4p58SKJ7V2ljv0wC8KWqBw%2B76tQpGAJl1Awix6easFhLHRBt6pjYSkTc5OIBC4V3%2F3oYsS9lt%2FAq799lYpNt%2BV4A5mMyKSp5TXWU59TLKSVIJXEx2ZycIXFkx%2BfEgOo9dvl4fJ9m4beIm4YCbXd4%2FiQTyybBuRaAHVI9v9ntRhOof1NEdigg2PTh0XVk69V2GnkVx0He5I6TOHS6ddwWRK8ERv8lPkl03g1pEOdW%2FgaWjUcnzVOQdzUpPsLy4jkExXj7LnBGLvb3gKJm29m%2FqH%2BzHF5mWBdQv7I1QDJZTi6DOoupPPGehikPw%2BqtPeFPfzbdnEOUhXmhyFCa7QZ44qitjGRxxR%2Bd8kET6K%2B%2BnhcNxrRHuAXBtNquCxSCH0%2FV3rAzUM0Cy0qPKNLz4eVo5ikqlYrAy9e%2BocVkXnLSTT3nVMJCxE9JOdxDTW8iU5usbf2jMtc%2BSTNpxNMNuQsDlgY%2B17Hnc38pgbhilB9fnqEJSwlT%2F3H41%2F9cxFMQk0Ej3EfnNrZcLpoVEyBGMjTF4nbLvV%2BCLxnCJqsZcXIU%2FNOFqcMVecn1yEc7p%2FYi0o8sURs%2FCZb%2BDzsrEpsYofK%2F9aE6I7gIMoZrBpgRKJ4Lfrlyalz%2FOLFrLPPHpsBG6y6xgSl8kwyV2totvd6I87no%2Flid3GrF9lbMJFDmrR3Sb4Lyp3c%2F4%2F6PzGDPfYf62Tulz%2FmFdA3XXSpFiDF9tr4crtdBJhO24tVtwE9JJmJb%2FI%2FpqSF7lUsRDYuf0knvQI8Q0BZh4y7ocP5Cii7n4RhUiP8tvmWn7FBJTF0SR4yQ9%2BxEDN%2BHBDooysLR6OLOvFM2lYAIj4wovKTP6syr3UJubhZUt90E4mDU09%2Fd2YO48EzVXCR07zZj6cjGy7e8wUYg1YVJlp3A9%2FXNwmPdo8rHkYlI8GYtc16gTFe46r6BuE6ZXaoQgewTiZtsXmZ4oqFB%2ByeF13PDfFsaAPdEYosa3k%2F9HQXPHzEUKjCzDGBGfh2xkUIjiEU2IvudSQzotCc0S42C%2FOoWhNX4NLjNHaitXziK5SOG64nZao2s6btfmiWpd%2F8MOFbeYweC2vlrWI7eyB5t9LlZGLiakYwuWHzUWDnmSaXOkDeQWTOfd9hBmjGoG249iKuc8mxsoNEHY5iF72AFKKC0YR7KIIHokkEEscRJp4206q2Xc1z9Hu8npkzK22va%2BA8noitFas4tj6Q43119iV2QL9QpYa2y8C5MdNsjjbpsFD66h8vJzmA%3D%3D%7CvQF3AfJ3qM8%3D%3ADKEbg0LBLcAglqb10WilXWzCXsTHHYBreMVi5TsX4aE%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:06 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC1B%3AE9DD_0A280907%3A01BB_67D3C479_1443706%3A70586%7C%7C; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:06 GMT; Secure; HttpOnly; SameSite=lax
x-unique-id: A752EC1B:E9DD_0A280907:01BB_67D3C479_1443706:70586
traceresponse: 00-7e21df32fd26f1c7bbf9651e3801760d-3227b77d66683703-01
content-encoding: gzip
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:06 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET www.tripadvisor.com/img/cdsi/img2/branding/v2/Tripadvisor_lockup_horizontal_secondary_registered-11900-2.svg
200 OK 5.6 kB URL GET www.tripadvisor.com/img/cdsi/img2/branding/v2/Tripadvisor_lockup_horizontal_secondary_registered-11900-2.svg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectwww.tripadvisor.com
FingerprintCC:81:62:D9:4B:68:B9:8F:50:52:F0:8D:28:D0:01:1A:79:FD:F7:E7
ValidityThu, 23 May 2024 15:37:05 GMT - Tue, 24 Jun 2025 13:36:06 GMT
File type SVG Scalable Vector Graphics image
Hash 64a93ee073b4c553833251c6d479e97d
dac35274ddab53e867f445126319c0fe9403c054
e2408a12040f3f61049cf272f3d88d29de8a2d426fadad0d75237c934e342769
GET /img/cdsi/img2/branding/v2/Tripadvisor_lockup_horizontal_secondary_registered-11900-2.svg HTTP/1.1
Host: www.tripadvisor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
cache-control: private, max-age=43200
expires: Fri, 14 Mar 2025 17:56:02 GMT
set-cookie: TADCID=bh6J0715C_PPhB1MABQCJ4S5rDsRRMescG99HippfoQ40cgTcePu1UnEfWRvaT6USPhIU1JBB0y1zTQy63f9rdny9odjkXCh1Qs; Domain=www.tripadvisor.com; Expires=Mon, 12-Mar-2035 05:56:02 GMT; Path=/; Secure; HttpOnly
TASameSite=1; Path=/; Max-Age=315360000; SameSite=Strict; Domain=www.tripadvisor.com; Secure; HttpOnly
TAUnique=%1%enc%3Atw%2BP1W8XGYxsAarWZ1%2BQaVeHxaQ%2BpU5LCDeElZ%2BP1ivJVsOO35J9jGsGDpiP7eiaNox8JbUSTxk%3D; Domain=.tripadvisor.com; Expires=Sun, 14-Mar-2027 05:56:02 GMT; Path=/; HttpOnly
__vt=WbKK9EkYK2bAa8mqABQCT24E-H_BQo6gx1APGQJPtzQWcV5lpdaLSSHNcP3Gx7hPtXEm8asCBhBZeRsM7XdZXSmTlqaI08DE7pjEXJ94-RRIP1KnArBT4jHe7tMzoOED6iJNgh0iCOcRtORXlwHAXWU-; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:56:02 GMT; Path=/; Secure; HttpOnly
TASession=V2ID.032E242D9158B668DFACE3E00209B7B9*SQ.1*HS.recommended*ES.popularity*DS.5*SAS.popularity*FPS.oldFirst*FA.1*TRA.true; Domain=.tripadvisor.com; Path=/
ServerPool=B; Domain=.tripadvisor.com; Path=/
TACds=A.1.11900.2.2025-03-13; Domain=.tripadvisor.com; Expires=Tue, 13-May-2025 05:56:02 GMT; Path=/
timing-allow-origin: https://www.tripadvisor.com
content-type: image/svg+xml
content-encoding: br
x-request-id: 2e8723a5-47d5-4f75-b5ae-ceecb8ab0ac1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:02 GMT
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931762.366203,VS0,VE112
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/IMG-20170911-WA0034.jpg
200 OK 334 kB URL GET www.cruzeiro-safaris.com/images/IMG-20170911-WA0034.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 1280x960, components 3
Size 334 kB (334410 bytes)
Hash 26f471c81cc4798ce264d7d6348dc4c6
177192f425c73e16764e0b20115258322bfcbec2
98de8d9ec5c4ff15fe55a74abc02de5c9fe591f6eab42fdaf921ac5ec37ad6da
GET /images/IMG-20170911-WA0034.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 334410
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/system/css/joomla-fontawesome.min.css?89febd398596b456839adf8abd6f1718
200 OK 76 kB URL GET www.cruzeiro-safaris.com/media/system/css/joomla-fontawesome.min.css?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with very long lines (59035)
Hash e6d2a113fab54674e6950193ef28b311
c0692a267e31de42ec74a96b01f269506a344bea
dacb7f4e40b13861610a757c430099f9088d741b1716e9b9f7bb53127d9c121e
GET /media/system/css/joomla-fontawesome.min.css?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 15443
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js
200 OK 19 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (19057), with no line terminators
Hash 1957a821717979614a76531edae6c209
b9f873d3a0931773d72b7a5aa0d7db0d70f492af
140462ae16cd3caa98b33b30a88cc5a63ff2b9d6be57633e966a307aed3e2093
GET /orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88CB_0A280475:01BB_67C665A9_D6B6E2:13C125
traceresponse: 00-f1d13a3902174adc907f60a26ab6561c-87636f1770b46c64-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1522
vary: accept-encoding, Accept-Encoding
content-length: 6050
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/b8.jpg
200 OK 31 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/b8.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 4c714caca4c1a77b366bf6774fb586b9
608e7aa6ea371f4eef0128eff30ffcfb56da303c
2b9a382dce3d51ed0a2d4167c5c6003c698e64bd44dac5e618a1f72d4e476f0b
GET /media/attractions-splice-spp-360x240/06/6a/a5/b8.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 31114
date: Wed, 12 Mar 2025 11:31:04 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 152703
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VaIrejVROyMEMlc4muvWVeqcoKagwU-JnkLFL6y1966QuMkhme9A_w==
X-Firefox-Spdy: h2
GET forlindma.online/api/v1/px?xmlid=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37
200 OK 93 kB URL User Request GET forlindma.online/api/v1/px?xmlid=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37
IP
Certificate IssuerAmazon
Subjectforlindma.online
FingerprintC5:0A:8F:01:42:60:DE:6A:27:88:D0:0D:7F:97:E3:5B:99:C5:6A:AD
ValidityMon, 03 Feb 2025 00:00:00 GMT - Wed, 04 Mar 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (7271)
Hash 9fed399db65a635c6f107bbfe4a81000
a7b4b155fe73b19fa4e0dadb3818da0f74a9df25
ebc9b052cbc5f5e0a2b196e0c7e39f0c020a4197afcbc1446c8596ecc694064d
GET /api/v1/px?xmlid=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37 HTTP/1.1
Host: forlindma.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:55:58 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"1698f-p7SxVf5zsZ+k4NrbOBjaD3Sp3yU"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET dd.prod.captcha-delivery.com/image/2025-03-14/c3a1a6e2028d536c73d1105111440871.jpg
200 OK 12 kB URL GET dd.prod.captcha-delivery.com/image/2025-03-14/c3a1a6e2028d536c73d1105111440871.jpg
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subjectdd.prod.captcha-delivery.com
Fingerprint78:DE:FA:F7:3D:63:84:2A:F7:68:BE:5E:19:5C:02:C6:7A:A4:A2:DA
ValidityMon, 27 Jan 2025 00:00:00 GMT - Wed, 25 Feb 2026 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 280x155, components 3
Hash 588466c0dca1520142c05fc8455cbfcc
7e7f822ab09db5ab08007f74f5a2cda02582dbe0
fa1dec971e1328dd569fe7499b26d5fbe8222222711a9274a78e4d52311f803d
GET /image/2025-03-14/c3a1a6e2028d536c73d1105111440871.jpg HTTP/1.1
Host: dd.prod.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://geo.captcha-delivery.com
DNT: 1
Connection: keep-alive
Referer: https://geo.captcha-delivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 12331
date: Fri, 14 Mar 2025 00:05:17 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3600
last-modified: Mon, 10 Mar 2025 05:00:41 GMT
x-amz-expiration: expiry-date="Tue, 18 Mar 2025 00:00:00 GMT", rule-id="auto-clean old captchas (7 days)"
etag: "588466c0dca1520142c05fc8455cbfcc"
x-amz-server-side-encryption: AES256
x-amz-version-id: CkZ2_X4J16MtEasgf0USYKfJQnNlUmdj
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GMfGemIRG09ftMCQ4mMZKNyRw1IehBxzLv_AtYbqVuJ-4K2MrtTRtg==
age: 21051
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/fb.png
200 OK 3.4 kB URL GET www.cruzeiro-safaris.com/images/social/fb.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Hash dd9b9178e2324bc658f824e4ccb52298
101a59701d9ad676d963b5ea21ed9f26051c4081
19ee1ef3b6f79fd79b0f091856705e0be115789fe2f13fb7bfa00279f04d6b04
GET /images/social/fb.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 3386
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20564), with no line terminators
Hash 328cf0531b6361f92ace0f38c8932c94
2055a058d5ec7dcc63a5f85c4382846e995d5d48
cb3406871e3c5a5cdf95a7ef292428f02b21f2b7c5cfb70670327aa41c5fcaa3
GET /orion/react/client/vendor-f155a1e0.605e4fed03c8d312.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.11.1
last-modified: Tue, 11 Mar 2025 13:11:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC15:148C_0A2809E5:01BB_67D00E80_130C87B:1BC07
traceresponse: 00-c66115a859894752a0856f54219cdd5f-afe26ca763c342f3-01
expires: Tue, 18 Mar 2025 10:20:48 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 243316
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 520
vary: accept-encoding, Accept-Encoding
content-length: 6016
X-Firefox-Spdy: h2
GET static.captcha-delivery.com/captcha/assets/tpl/6dc485c0c428c35b53577b146dc6f9179f55ef9ad41b327a2a179998839364bf/index.css
200 OK 6.2 kB URL GET static.captcha-delivery.com/captcha/assets/tpl/6dc485c0c428c35b53577b146dc6f9179f55ef9ad41b327a2a179998839364bf/index.css
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subject*.captcha-delivery.com
Fingerprint08:34:DB:37:CB:02:09:ED:82:0C:B3:27:9F:BA:AF:45:DA:77:DD:3D
ValidityThu, 13 Feb 2025 00:00:00 GMT - Sat, 14 Mar 2026 23:59:59 GMT
File type ASCII text, with very long lines (6892), with no line terminators
Hash d6882e46f843cd956a4ff0cc1906170f
9cce6f420346ea6fd2f96c6f5d257f2b28d0adb6
84da6d4da68c3ac37cab4889826253a4dedd37958eb23b100a2c27f13e5626ac
GET /captcha/assets/tpl/6dc485c0c428c35b53577b146dc6f9179f55ef9ad41b327a2a179998839364bf/index.css HTTP/1.1
Host: static.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://geo.captcha-delivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 11 Apr 2024 08:21:58 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: null
server: AmazonS3
date: Fri, 14 Mar 2025 02:49:06 GMT
etag: W/"1f113f0b6d6855568c684e354bb853d1"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: igoIyiJcYHlFVlTgPE4Ou-ateAFENniLGiSzj5WkjSznGVDIUHrh5A==
age: 11222
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/governors__camp_masai_mara_by_cruzeiro_safaris_kenya.jpg
200 OK 168 kB URL GET www.cruzeiro-safaris.com/images/governors__camp_masai_mara_by_cruzeiro_safaris_kenya.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, baseline, precision 8, 685x455, components 3
Size 168 kB (167480 bytes)
Hash 835898760d38fdae88b33cf45255d8af
37c0c985de81aa65040a809e7dcbc3e442232e0e
3d4a95141ec4780199f24ffa01b4dd3987c81b8528a0c7ba4c1a0e65e1221fef
GET /images/governors__camp_masai_mara_by_cruzeiro_safaris_kenya.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 167480
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
200 OK 67 kB URL GET www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2822c056-c159-4af0-8a4b-1b98277884b5
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-encoding: gzip
content-language: en
set-cookie: x-viator-tapersistentcookie=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=none
SEM_PARAMS=%7B%7D; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
SEM_MCID=42861; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
EXTERNAL_SESSION_ID=; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
LAST_TOUCH_SEM_MCID=42861; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
XSRF-TOKEN=7850d0d0-3e1d-422c-8801-f1cc69ff9230; Path=/; Secure
ORION_SESSION=pwFop4gRAIMrvI1AitLJHw%3D%3D%7CflOgWPNQTrGlZ7PGGBzQ%2BsNRNNfzxYbRVDQFtanj31Pw8ltN795OWRADtIH5MZrNuR3l7PmnK1JOPXKTrVnfLG%2B%2BA9sjdtjA89T0J26YQWnfb3sFhns6y%2FVwVGAPEjmv4dPcd6Yrh%2Fo0%2Bkp1To02V8dwE7s4bXJyswbsjICumFc%2FV8t4%2BlBc1fgdF1J4Q5LSBA0%2BiljRRwUGsMX0%2BJ67t%2BCblwlpgclTpKHUrszl36QPZZVH1m%2BvLawry%2Bi7IicGldx6G7mWEBluxBT1fwVoD%2Fp3qxF%2Fgx4fb55is1DZlEQ5jWO2IPp2MOBPpvY5Se9Q0ROx7Nw9LDObIV6RW1cnRHwZ56HI4c6XJ%2FH4HNZ%2FZNddVU%2F9YIPzlQdvVP7mxvrPEOU1PMjrbvcFmZ6q1n9q9c8AZgSWkIA9cjPlDLBX007M6ovLIRGhJ9XRoSaswoTRk%2F4HdU86P%2Bn3vcVrtDd%2FN60wrIxnZSXslbQoEo%2BcSi4%2FLidP%2FbEguCdTuHumy3dOomOhpGEH1xNsNMyjJhNwPo1gqkAqK7hVkaDfzN%2BtCHrH63EGpNZUl1WQYqHcs0qT1HIkrxFK2oIClNVmwhKNSAGywIIcAF2GZTzZpNTVt8KtFmuzsUGKXxH2658vH5rkL2qZ5Ym0CUpx1q7K53kgfxwlHMx42uCU5z84gHVNOHNM1yJS%2FHauVh3StFLercYmTXfnWV%2FpwcAVfLjc2%2FddPlDrUSjFVCYKqiKhO%2FCVvwxXy48PUFtV24%2F%2FcV8WXNj%2B2p90JfvthR3Bl%2BKam4XFwEg%2Bvk%2B%2Bf9ihP0u6XrMYWqKeVczNws%2FQ0sGZIRxVZGmoMrHZmD8yQW4gZ7GBf5qAcCW0Fp0LNhlUXZjAg0UWSt5k73ckSZOmU0Qk5mVaQmwRkS7PlqiPjYr5dSS0wcbID9qSJ9E6aK9qXHb23HD78Db0YTGA7%2BKVq12oJe4Rk6%2FFT3jI2F0w9rvl4bT7l8bJss%2B9iLpT0f7u5VbQ8jgyC0YNsZm2P%2B3Z65v0LwKiSA4ZK7WLVezdjTD5iFrVy%2B2XJmv8yEfsxcncOkYeaNHTB7ra28Iyf1Smukr9TW3gxucwbzsmJr4apUEAzvTJNbWoO96IYmAx%2Bz09YzhRS5OF%2FK2A7XCkg4OvOTCAlnpEdnDcETwhCWmsOsQo9%2BczMZQGrUGVbGIR7hEfBk0Ii0jXeHNndDBTGYTmSUEzWoOQIBKyP%2BWOp85RuvtG2dZSdWCKaIcU%2FJLyt2ecIK8x7h%2FOaYmjB3oWRCisDHG6stpwWn5657qGDEURTAJBMzJ%2BLGCorPhqx0wanZkGsyKBy3WiBxnz8mRO52OTiOpsB4qnxRVuflPXGU021bAMBCMAHc2Bp1ZEXpDSXjh6xzqBWYrT5SUJeDjOrbWU0x%2B8DpyvvWVoizFTYIK0ZIqtpDSbYAVbx6tyRMQYsRy3bYi489UXR2LEne3hpmHtid3kZm5Kufth5zXTcje%2BtPPU0mxsFfeohwe8xASpMc6iebdmAQooHv7gLmXxq77pdqu%2FZS5ZTUrQJJwxYZO7OgknnDF%2FtlxhHSv2ajmhdG95hgMf70e8JMJ6HYFTro2xLtT7qNdENQUqYHDMWKPbUFedxUtok7yV2kq3Id7GW5IKyoZh8GsHYnQ5YPlcusYqc2A7%2B2BIxy9hnyhhJRzbVukcHAbLxSDjnJ5jKRwwNNuVmjy8pJSIz3gDyilIGuUUtBk%2FkDzcOr911XmV5I8%2Ff9l7D9LaWaxUhnyxNJczcmNFr%2FD5msyi3Guuh8s4sgKkBlJTrK21g6STIIXLfxC5b2AZTTeJpsTETTQqtZtMMuln88n6wKzYcFLCxz0I3x5m8U%2BWvb4HcgOewyxN5AjVkWZEOsqXZ9HB0yTbFxpG4kaAtkwNgADkOIfVKK94YKFpbN2r9YrwQTxXXF2BLypN%2BQQvsfT9S%2BR6YroLnUPW2sAXiEEgWIVTUFNyVvpseCGNAVXc4ldbQUH4e8wJBrKYUg7EEMAE2ggYsTtjShY%2Fz4lWohU%2FFvgIh3DwlluY5GuXNTbv6nTgNYT6%2B39GiG%2FVDOwNCUMiQxI5mVkhIqW0I5Jddk4uXw6TymlYvPEB5ljYZwNPEy6o%2B%2F%2Bhkz96E0kaznQxLl4JFLdL3u%2F0aOhAeE3cPdTt3yl0ubH2uZzSef%2B5l5cJh8G%2Bc0xJqk4HgjbgxChVuLdawr8CbYNFQ%2FEfS1lTikeQ7TleO44OqCghtfyNhNqM8f%2BGMPAfcL3ZjIlxnSMDHdz0Zavy2Kgrg8ap2Ru%2BgFcwYC153D7le%2F8%3D%7C1Q6LqYZMf6I%3D%3Ad%2BdbQrlu1azNTpzuQZ8LtZSK%2F0DJo1FrQM6dYEA3Mcg%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC15%3A3DB7_0A280D35%3A01BB_67D3C4F4_1241C9E%3A7155A%7C%7CA752EC15%3A3DB7_0A280D35%3A01BB_67D3C4F4_1241C9E%3A7155A; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
profilingSession=Jm6rcSJBzTRLT6aVXjMsdA%253D%253D%257CxroVScOZPGtezwWSjLBx2tmb10wnwS7TQPji3dhZBJlBtUptdwb03bN1qVzmxIOrEdJTt1RH8V63YYgm6Z9XUcqCa03fZlzKLFi2ldJSv19MzQ%253D%253D%257C369faSHD3zs%253D%253AFOYutkTv1zlD5AM3AX5uTMfZoV%252FhhgUffR6WUCPg2vU%253D; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=None
x-unique-id: A752EC15:3DB7_0A280D35:01BB_67D3C4F4_1241C9E:7155A
traceresponse: 00-b4fc482af69a4ad49c2db7199886044e-96cfce58701a4321-01
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding, Accept-Encoding
x-datadome: protected
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/system/js/joomla-hidden-mail.min.js?6829a5ca62409c5d92c27b7c42bad9e81b3a480a
200 OK 1.4 kB URL GET www.cruzeiro-safaris.com/media/system/js/joomla-hidden-mail.min.js?6829a5ca62409c5d92c27b7c42bad9e81b3a480a
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with very long lines (1466), with no line terminators
Hash 39281109f97ef19af17292e59ea376ae
0207d5ea8edb3f68c96a01e122288400d1e0e3be
b1896732cf984f3e620902038fff2ae4d519d11df6e39156dee6e79937d39d23
GET /media/system/js/joomla-hidden-mail.min.js?6829a5ca62409c5d92c27b7c42bad9e81b3a480a HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:44 GMT
accept-ranges: bytes
content-length: 613
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css
200 OK 8.8 kB URL GET cache.vtrcdn.com/orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (8833), with no line terminators
Hash f1611bfe204a01111bb123ff27f49ae8
d3999e13f664b596612f3c28c705878af006644c
c1863bb330e428e18c72c6ab0cfd822b2ebe7217675a89736cc4bc0d8070df86
GET /orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88D0_0A280EF0:01BB_67C665A9_144050C:1917AF
traceresponse: 00-851cd81104864641941bcfd0caf3a9df-be021a8b0ab0cc3c-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 384
vary: accept-encoding, Accept-Encoding
content-length: 2060
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/elasticApm.3702f68e092052b2.js
200 OK 64 kB URL GET cache.vtrcdn.com/orion/react/client/elasticApm.3702f68e092052b2.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (64214), with no line terminators
Hash d041021af5b5f122803494fcd412f740
d2ac19ba539d095d1260d525f23ab2d445138588
74e1089714f41f898eefccf0a63475717a671082695dad4f49130db25b7d21af
GET /orion/react/client/elasticApm.3702f68e092052b2.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:22:50 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665A9_D6B777:13C125
traceresponse: 00-9774ba288524426184e12d8c37f3182c-81705bc8219d449d-01
expires: Tue, 11 Mar 2025 02:30:02 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1603
vary: accept-encoding, Accept-Encoding
content-length: 21224
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-6bc75065.00bd33f1fa449396.js
200 OK 26 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-6bc75065.00bd33f1fa449396.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25397)
Hash 27c925313ce833dbd6202188a42bfe80
9c6a6156280930566ca4f221aca5608a606abafe
614c8ae94c082a87e5bd8029ef2835a15e6e828383c46cebb1dacf47f489f34f
GET /orion/react/client/vendor-6bc75065.00bd33f1fa449396.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:EF06_0A280FEB:01BB_67C665A9_234901D:157BC4
traceresponse: 00-01546632105d496898319c488c2c0626-bec8e6f42b2ab943-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1508
vary: accept-encoding, Accept-Encoding
content-length: 8266
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
200 OK 1.9 kB URL GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1919), with no line terminators
Hash 0b5ae9ab2f70cad671eb3f299722a7a4
08405e7d29a2181cc0f9133a9179fc391934949c
27aa3103b3d2e6fb9b4f1139ab0958516083b7610aabea19fdf9f8c3f01e22b4
GET /orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1C:485F_0A2806EB:01BB_67D2B257_17A0A2B:53AAE
traceresponse: 00-cfbbadc0776348cb905962d148b0546f-b3d2ee2fcfb857a6-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:06 GMT
via: 1.1 varnish
age: 70303
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 131
vary: accept-encoding, Accept-Encoding
content-length: 966
X-Firefox-Spdy: h2
GET www.viator.com/orion/partner/widget.js
200 OK 1.4 kB URL GET www.viator.com/orion/partner/widget.js
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (1423), with no line terminators
Hash d799e639f2993c0d5949374b294069fd
33b41efc02a8eb3887269245e12f34e84c44e47d
409e29acadeb89ac9e4b61c22a57f13bd5862cab2d24f97fe87ff23fc681f465
GET /orion/partner/widget.js HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.02.27.1
last-modified: Thu, 27 Feb 2025 13:10:22 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC21:63BF_0A280BF4:01BB_67C0DC39_50B06B:2AC37E
traceresponse: 00-917cf10bbce64545859313e9077abb03-b060d554396847c6-01
expires: Thu, 06 Mar 2025 21:42:57 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:02 GMT
via: 1.1 varnish
age: 1239185
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 391
vary: accept-encoding, Accept-Encoding
content-length: 675
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-406ec44c.c78659db5d9e298d.js
200 OK 56 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-406ec44c.c78659db5d9e298d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-406ec44c.c78659db5d9e298d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC16:7518_0A2807A3:01BB_67D2B257_1AC9878:4FC0A
traceresponse: 00-521b2fb0157944ef8520950a1e830651-93ff850a1778b05d-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 17063
X-Firefox-Spdy: h2
GET ucarecdn.com/c2ea15bd-72f3-4f5c-895a-85a1ef1079e9/-/resize/200x200/
200 OK 3.6 kB URL GET ucarecdn.com/c2ea15bd-72f3-4f5c-895a-85a1ef1079e9/-/resize/200x200/
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerCertainly
Subjectucarecdn.com
Fingerprint10:83:87:EE:75:FD:E7:A1:15:32:17:CC:CC:A5:DC:D5:08:AB:5D:99
ValidityMon, 24 Feb 2025 08:36:50 GMT - Wed, 26 Mar 2025 08:36:49 GMT
Hash af43fa3fb786a73ab5266f166188a8b1
a460538b7dd626e0530ba6c444c542935e95dd85
278a61cb9ac23ef8afdccb36149a1dc77ab57a26afe24e4dff3c7d1a9872fe44
GET /c2ea15bd-72f3-4f5c-895a-85a1ef1079e9/-/resize/200x200/ HTTP/1.1
Host: ucarecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chat.chatra.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/avif
cache-control: public, max-age=31556926, immutable
content-disposition: inline
etag: "c213adc48ec0d521bfd482eda08f17fe"
server: Uploadcare
x-image-height: 200
x-image-width: 200
x-robots-tag: noindex, nofollow, nosnippet, noarchive
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-expose-headers: HEAD, GET, OPTIONS
accept-ranges: bytes
age: 300310
date: Fri, 14 Mar 2025 05:56:07 GMT
x-cache: HIT-CLUSTER
content-length: 3628
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/joomla-custom-elements/css/joomla-alert.css
200 OK 4.5 kB URL GET www.cruzeiro-safaris.com/media/vendor/joomla-custom-elements/css/joomla-alert.css
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with very long lines (4693), with no line terminators
Hash 5dc59419ae617a32c5a234183a23fcfa
6e576c8e4223023d911b94da254bdd477da1111a
9ced77849d551cd85642da8c41fc06daed40fe449a7b621423058427744f788f
GET /media/vendor/joomla-custom-elements/css/joomla-alert.css HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/vendor/joomla-custom-elements/joomla-alert.min.css?0.2.0
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 994
content-type: text/css
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-b23b11a0.08be412c223f21ca.js
200 OK 71 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-b23b11a0.08be412c223f21ca.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65446)
Hash d1a4af9557a9355bcd46a8a618671241
27dd97cc475ef78b4d7fccc739db1b5e4113968a
1c95cf99e238eeb6de5fe911302f37f10bd02f2ff28b943018a4310388f43291
GET /orion/react/client/vendor-b23b11a0.08be412c223f21ca.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC18:52D4_0A2806EB:01BB_67D2B257_17A0A5D:53AAE
traceresponse: 00-b7bb5838217b424098aba4c0c77ec794-bac73c1c8b710859-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 18551
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-b21522ef.49d3a63228cf708a.js
200 OK 183 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-b21522ef.49d3a63228cf708a.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 183 kB (182631 bytes)
Hash a66cadff53ac20d8560bee7b6b8d2cf4
ad49f64a48023c97a6abdb64f9a2b2920c6355f2
7549c0f4ab6cc10ac16f3567f20948b3408f062c9625d6bd8b8d596758402e18
GET /orion/react/client/vendor-b21522ef.49d3a63228cf708a.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC17:0AA4_0A2807A3:01BB_67D2B257_1AC9880:4FC0A
traceresponse: 00-3f6870bb8bd743e1bfe303c8dd10f0fc-99b0b3ce25d98d72-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 49011
X-Firefox-Spdy: h2
GET geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
200 OK 609 kB URL GET geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerAmazon
Subject*.captcha-delivery.com
FingerprintF2:9E:7E:72:25:57:E3:AF:B6:87:61:A0:0D:B1:85:B4:85:82:E6:96
ValidityThu, 13 Feb 2025 00:00:00 GMT - Sat, 14 Mar 2026 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (44065)
Size 609 kB (608703 bytes)
Hash 266d2090cf99f73dd966c43cb581932e
1eeafd748ad1ed45fb0a725d6b60991daaea238d
31f4fb389cffab8100766cb1a8653b8be1a6dcaafefb51f7c0b8a35165c6de11
GET /captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd HTTP/1.1
Host: geo.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 14 Mar 2025 05:56:07 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
GET www.cruzeiro-safaris.com/images/nairobi-tours/DSC02480.JPG
200 OK 942 kB URL GET www.cruzeiro-safaris.com/images/nairobi-tours/DSC02480.JPG
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, description= , manufacturer=SONY, model=DSC-W310, orientation=upper-left, xresolution=206, yresolution=214, resolutionunit=2, datetime=2022:07:23 03:56:43], baseline, precision 8, 1920x1080, components 3
Size 942 kB (942299 bytes)
Hash 6b8e890bb56f9071714a667e26b70579
9fde23f619eae4dc0243b45bca322f0f16fd1ca9
1b26c8bd1659e68e8e2254fe7cb47def3d7d02068ca72fffae03883c4a5217c7
GET /images/nairobi-tours/DSC02480.JPG HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 942299
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/hotairballonoverthemaasaimara.jpg
200 OK 404 kB URL GET www.cruzeiro-safaris.com/images/hotairballonoverthemaasaimara.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, manufacturer=NIKON CORPORATION, model=NIKON D70, orientation=upper-left, software=Adobe Photoshop CS Macintosh, datetime=2004:12:09 08:59:47], baseline, precision 8, 994x784, components 3
Size 404 kB (404158 bytes)
Hash cfb9e57678514aefc8c6651a03bb53bd
b753b3720258c536712944e767b3dcf050006308
b3cee6e2c67e544edaff7d7b78245968c3f6d449ee5bde35afaadf44d39630fd
GET /images/hotairballonoverthemaasaimara.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 404158
content-type: image/jpeg
X-Firefox-Spdy: h2
GET static.tacdn.com/css2/build/concat/t4b_widget_rated-v22950864998a.css
200 OK 6.6 kB URL GET static.tacdn.com/css2/build/concat/t4b_widget_rated-v22950864998a.css
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectstatic.tacdn.com
FingerprintDB:48:F1:E9:F3:4E:F9:70:2D:B0:50:3E:DB:E1:A9:77:B4:63:5F:F1
ValidityWed, 05 Mar 2025 07:47:01 GMT - Mon, 06 Apr 2026 07:16:00 GMT
File type ASCII text, with very long lines (6573), with no line terminators
Hash c08a154742eb3ce19ba71f09cd554afc
eedcae8d346d6661321a8c46f5817a2def427823
fe4a5df068fc238992c9917ae861a7c70ec138035b50e450e3458cf5861d93dc
GET /css2/build/concat/t4b_widget_rated-v22950864998a.css HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
last-modified: Sat, 15 Feb 2025 11:45:00 GMT
cache-control: max-age=31536000, immutable
expires: Wed, 18 Feb 2026 03:54:29 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-type: text/css
content-encoding: br
x-request-id: 826b7b02-3922-4d1c-8696-e0377cba6326
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 1313410
x-served-by: cache-hel1410020-HEL
x-cache: HIT
x-cache-hits: 406
x-timer: S1741931765.576215,VS0,VE0
vary: Accept-Encoding
content-length: 1503
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Black.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Black.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14776, version 1.0
Hash ae7c1eee3d8b7b9033654ea6cc05fab1
8bc8b77a6993ecaa1671d1b31d81cd5534888793
cac8a7a86533f6ae4924e2a9b77f6bbe758c6ce2a7b723ae12db50409fa0e007
GET /orion/fonts/Aeonik/AeonikV-Black.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:261C_0A280475:01BB_67C665A9_D6B6AD:13C125
traceresponse: 00-fec7c4e238da481183fd6faf3d4c5584-88d7e7265df34a96-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1548
content-length: 14776
X-Firefox-Spdy: h2
GET wss://chat.chatra.io/sockjs/718/ag5qjwbh/websocket
101 Switching Protocols 0 B URL GET wss://chat.chatra.io/sockjs/718/ag5qjwbh/websocket
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sockjs/718/ag5qjwbh/websocket HTTP/1.1
Host: chat.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chat.chatra.io
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /TJqJeQZWJu4111cAS5KYg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 14 Mar 2025 05:56:06 GMT
Connection: upgrade
Set-Cookie: AWSALB=I0k1HVKwK1IeFFa3gXV8xUYyMemonFJbv9Ntg6e1VW1v/sFlQaDgzTmbrMzw6biQ4l8reW5qmicfwmp3p3ZzUqUKu8WrEETC5L6wLFSc2PNq3B1CIg3gRhCQsffH; Expires=Fri, 21 Mar 2025 05:56:06 GMT; Path=/
AWSALBCORS=I0k1HVKwK1IeFFa3gXV8xUYyMemonFJbv9Ntg6e1VW1v/sFlQaDgzTmbrMzw6biQ4l8reW5qmicfwmp3p3ZzUqUKu8WrEETC5L6wLFSc2PNq3B1CIg3gRhCQsffH; Expires=Fri, 21 Mar 2025 05:56:06 GMT; Path=/; SameSite=None
Upgrade: websocket
Sec-WebSocket-Accept: cvY7mh6EQLQyatzGuBxxKLumR9U=
Sec-WebSocket-Extensions: permessage-deflate
cf-cache-status: DYNAMIC
Server: cloudflare
CF-RAY: 920186a4fa9556bd-OSL
alt-svc: h3=":443"; ma=86400
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/a4.jpg
200 OK 24 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/a4.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 0fec3bc2b995718543ae7504e2665863
cdf0b00e1bf9d2684b4a5db211fd7370dc2eee7f
0610d4b5585021c4d2330727327df28cb047489aa6ef227773b5db509060de17
GET /media/attractions-splice-spp-360x240/06/6a/a5/a4.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 23466
date: Wed, 12 Mar 2025 10:25:26 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 156641
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Z7Bx-6Vl51bh35DMq1COS2mzLw7Da1ORomNryyavymoaaVIuSF1paw==
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f945abb9.64d81c82c14ff815.js
200 OK 50 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f945abb9.64d81c82c14ff815.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (50142), with no line terminators
Hash faab1fcd5d4d78922703e1ee3503ac9e
2b7eae3245a59ee1abe98a2bbfe7c0d5d794db53
68e8e834745f7008949312647c29ecceb88684a64d097926916f7cf3d1c4d6ee
GET /orion/react/client/vendor-f945abb9.64d81c82c14ff815.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:BB59_0A2806EB:01BB_67D2B257_17A0A63:53AAE
traceresponse: 00-a61057c806df4319a2dd8245d2ef5c2b-95ce65cadba9bff6-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 151
vary: accept-encoding, Accept-Encoding
content-length: 12512
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/9673.3e9c6f8642be50f0.js
200 OK 99 kB URL GET cache.vtrcdn.com/orion/react/client/9673.3e9c6f8642be50f0.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash f1c9be860b5031a10f0c82c75aa04681
59d32f8ce0f585aed3b9950ae4150ed1b6149bf8
67a270f417984bdf11896e7a140e0e403ab9845e3d2727a668fece59c9c16b56
GET /orion/react/client/9673.3e9c6f8642be50f0.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1F:FB05_0A280F01:01BB_67D2B25A_156C719:55642
traceresponse: 00-0c8c44e7047c446e9d63f62a893eedf8-80e0be6feeaf6159-01
expires: Thu, 20 Mar 2025 10:24:27 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70298
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 40
vary: accept-encoding, Accept-Encoding
content-length: 22238
X-Firefox-Spdy: h2
DELETE www.viator.com/orion/ajax/firebase/credentials
403 Forbidden 2.9 kB URL DELETE www.viator.com/orion/ajax/firebase/credentials
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3121), with no line terminators
Hash 4bffe0df47271200f99bb4cd79a29d72
0c2aa43f21a12fe62e07b12927f37242c5270227
558d833328a3d66d39211cefc46a965cfe4ca0075c6cb7d36bd1b57301cd4148
DELETE /orion/ajax/firebase/credentials HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-XSRF-TOKEN: c9b2ad27-7267-4540-9f16-3882e0e87639
traceparent: 00-7e21df32fd26f1c7bbf9651e3801760d-53dbf42d8cb479fb-01
tracestate: es=s:0.1
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2822c056-c159-4af0-8a4b-1b98277884b5
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
content-language: en
set-cookie: x-viator-tapersistentcookie=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
XSRF-TOKEN=98502a48-239d-4071-92d3-5426afddbb52; Path=/; Secure
ORION_SESSION=9nBJJ014Iw7QlMWnz2eW5w%3D%3D%7CGTAMXD4UN3UfkKD3ZQkyQxv4LE0oYHBQb5cCgN4EyWsd52db4mjdXDln4%2BI3XvtN%2B4THO0JM%2BDbudS%2BqhGqEgbKhQKLuy2hLidd7k5JJXtdVKRWG9NLIbcHYhXcqjnjtKdXQLnF0suqYlnos1EeUmQ4j3R2C0yelltP2015SJ8rtxiqOeJobwg6%2BftSCND%2F396ABwzueMSBTZmkjjm7Lq09FM30IZjkKcc0z4eyrIz033YQc3hg0mrMGqIEaWAzn5ieBM0ZCcYZIbpviqD%2FLLZ6L9nWhCQq%2FB6Px20non35bBdUPMfrN%2B5nU1t%2FZADgwxaIs3Qhi9B6O7k9htnJSvNIGYviKqMfhKYb47J8XC0e1KyIVZe3NjCwrHR1N%2BgNph%2F5nN%2Ftdxs1%2B81IETJfmLp2%2BIEzxeJcPEqQBaaKJf3tD31PVZ0T98lLpRPq9AhU3frv4OuznufX2uts7146Y7hTJlCVX88nwbMoPa676uW5iWCQ1Lb4i%2B%2BGADIfWz4It9d4E5fUfLFAJCfNOEQe5rkHn1BmSsjoKaENKpZBGDUPrcphKqBo8Ty2R6wWxCvqYqbRl8ylPfYlXUkHWQUs1n70zOV6qYjOqbBhUQg%2FLmaAR2sDdkd8%2Fgtnny8dG1vO9RXYOTKaxTXhW7wh4kg6rC3y7zG%2B060RgmNJdgOrVA4Ls7KseVys3p%2F4J1YhDTdS1M0sdQhz4JtCOwxNB3ouz%2BfZiDxA1LHwbAWa829HYup6Z5HdI04TM5SDuNVl0P6IbvMemkAPAEL2gh93Cb%2Fp5GLbl%2BxpOtaXJ8DmJc599Wtf3DAKBRQOkPNz90Cwadu2M420%2Bl4qN4RPWH2cWCurcciaokAPwLv9YVGf70fyScCQ5hNIP6rFYr5%2B9UilsFeByTBZBWuGuqdADUMLRQC6OnfSwBj8r4w5B39%2BFPkUgG7YKWY429jnwXijX0UHuAKgKeyQeNmzOtO%2F68qMkvl9yR5nDKVBwajwbN5ZPbbFp%2F5Y8wF%2BzODx5bEDf%2Fv3c%2FPdQzr%2FHMcR78J9dBRG20XPRD5ssboSZO3w5Obd22b9vW7B4tr1N%2FtyPogxfOcPFVFxFUmKVz2q9lcX%2Bs3YARgTgM9MOM2dYcfF%2BKEZ7hT1yOqntkg3wieAGtLGZ8BreNgfIBKTL9u43SZ5%2FjkwrhadpzMiJ0YOUxC2pvXDmFp7uWaWoyKQjJSHZMyS7D%2BIqfd5r2%2FUeRwiCRCYUhQuoGFJO3zc0HGMMaUBxVEygYJkDc0%2FNnytR%2FV5selssQQuamZthMmtuQuZh0nSzSTpJ56zJgkXmZuBDzlZNTBTS%2FZoaAQktPnz%2Bwe3nL7iq02Ctm8Ik2lIuK%2B2d%2FsWQiS45B7peIBkaKfertyzOJTfIOtK7nkmHP%2Br0MtwKpWpZIzzcVt9gbLSpiyLzliYVK6dcvJzwSezFQkgNj9mWlHGGtYdHLQMIbQxcT%2FedRE3ZHgM9y%2FOO6OGupQcMoBWWoWo9Fxl6z6vT2n7gvU6P1MZSt40p%2FPBhK39LuQn%2FFbwlhH6DSpRA3k67xyQwUlXW5WakcANMcBvFcjjh0a7wT%2Fz4ZECwQQ%2BbaqK1z1XsFAi7OZu82WWTwIc76N1N19lbwRdLeMdGyOyawL%2F1sC2ccuWmiLYI8VdsrFg5Zer9MLRolh1bYGzZKlC2cx6icAy1Pu8eAnPebS7nmYepc3BK3dlctdTJgZL6Kq1bWoXogFuSno9Qfq47Y7fiOHsT26nI%2BQr9ZGZAaZNeW4G0d3CSBEynf1gzDiSU6D9wJXVfK5kt%2Fkp1wecMTkI1BR348oGft%2BPuxSt1S7o76mLJYb6ffm%2F0Rxmphk22r3QtP4pLgZjqvmDWfa5cR%2Fp3Zp8HY2IdI1vL%2BPoqzNHtAEfG81nxV%2BbvyCumOpP7FdfD6fn%2Buxe%2B7fxjRRJypZGJ9ih33Hp4pg98zJgPY4hYGC0oiRY7IHWLXc4pOna0FqhXcvgNUh5h9hkFXQpmbYKq9k%2BNsjdjiGZr8qnex3fI5SDSfXS6KyUQ1W4Czmn0JxClJ0ErH%2Ft2Kei9hbcaIm46MF%2F4I2f7Fzi8Lg5sXRzCkgVnkAV6d%2BUvqWQJATw0K7XiEgrT4u20nejShrr1MAlcmDt12dfjbLQVXG0rbGjkrnGVmqeCDKeFGFa1FFsgEm4VjVAf%2B7gM7cEUNW%2FUAGzFDveIzY%2F8%7CZ8XbBcxruUY%3D%3AZSjwSzD%2Fg%2BgnyDpXtlnlUb%2FJWY4lJJyRniVP6S3sIsA%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC1B%3A677A_0A280F01%3A01BB_67D3C47B_1035912%3A732DE%7C%7C; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
datadome=raadnqVnkiRgix~29qHWCJhWbHczGyft1HXAdQsV1sstTxCwZQr9wNaGeqN_YAnrOZ4aEcAapOo23RgFJA1AuXNuPTo1~TDmw97GERCbKwAXiPH4F84dCU4VWJRCKVR5; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=Lax
x-unique-id: A752EC1B:677A_0A280F01:01BB_67D3C47B_1035912:732DE
traceresponse: 00-7e21df32fd26f1c7bbf9651e3801760d-53dbf42d8cb479fb-01
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding
x-datadome: protected
X-Firefox-Spdy: h2
GET xml.sedodna.com/click?i=U8uIgOsdNps_0
302 Found 93 kB URL User Request GET xml.sedodna.com/click?i=U8uIgOsdNps_0
IP
ASN #27257 WEBAIR-INTERNET
Certificate IssuerGlobalSign nv-sa
Subject*.sedodna.com
Fingerprint78:18:D6:75:22:5D:AC:2E:48:3D:D4:A3:BD:61:5D:01:30:A2:B3:72
ValidityWed, 27 Mar 2024 09:07:28 GMT - Mon, 28 Apr 2025 09:07:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=U8uIgOsdNps_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww1.tomoback.work/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 14 Mar 2025 05:55:57 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: http://forlindma.online/api/v1/px?xmlid=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37
POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=65696974.1741931764&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&auid=761648866.1741931764&navt=n&npa=1>m=45je53d0v889129250za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tft=1741931764297&tfd=5511&apve=1
200 OK 0 B URL POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=65696974.1741931764&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&auid=761648866.1741931764&navt=n&npa=1>m=45je53d0v889129250za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tft=1741931764297&tfd=5511&apve=1
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2
ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=65696974.1741931764&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&auid=761648866.1741931764&navt=n&npa=1>m=45je53d0v889129250za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tft=1741931764297&tfd=5511&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cruzeiro-safaris.com
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
date: Fri, 14 Mar 2025 05:56:05 GMT
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.cruzeiro-safaris.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.tripadvisor.com/WidgetEmbed-rated?lang=en_US&locationId=2085077&display_version=2&uniq=11
200 OK 11 kB URL GET www.tripadvisor.com/WidgetEmbed-rated?lang=en_US&locationId=2085077&display_version=2&uniq=11
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectwww.tripadvisor.com
FingerprintCC:81:62:D9:4B:68:B9:8F:50:52:F0:8D:28:D0:01:1A:79:FD:F7:E7
ValidityThu, 23 May 2024 15:37:05 GMT - Tue, 24 Jun 2025 13:36:06 GMT
Hash 62c0238544ad17f517927a3aa55e5115
efdf8248e11843f8fad7022a5d4917c09f9db8f9
559b15cecafcb58ce2aaaca0028b4dfa46717e730dae96241364a19c30c13fba
GET /WidgetEmbed-rated?lang=en_US&locationId=2085077&display_version=2&uniq=11 HTTP/1.1
Host: www.tripadvisor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
expires: 0
cache-control: no-cache,no-store,must-revalidate
pragma: no-cache
set-cookie: TADCID=nWI4qSDPbo5v4CcCABQCJ4S5rDsRRMescG99HippfoQ40Y9iEOiwU_x3NDTwl6SoomGctK2qzwnZm4ODANlhhg1noHrQrPSpYSg; Domain=www.tripadvisor.com; Expires=Mon, 12-Mar-2035 05:56:04 GMT; Path=/; Secure; HttpOnly
TASameSite=1; Path=/; Max-Age=315360000; SameSite=Strict; Domain=www.tripadvisor.com; Secure; HttpOnly
TAUnique=%1%enc%3AIIBXJqdvxRNmJW400vEFBxYUmq93p9ZiyHW4RyJ%2FwdStv4uu05ClzQ8MriT4apOVNox8JbUSTxk%3D; Domain=.tripadvisor.com; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Path=/; HttpOnly
__vt=AGROX7mqTTGRABS_ABQCT24E-H_BQo6gx1APGQJPtzQWcUvAY8Tm4TZ24BsGN1vSzxkYFFdOfk246CpHhSrcIFBoWmlfBL6R6DdODS-aq9FIonSBmLnn-W4Vkm2PV3IjiKFAvXLkg8sgwtCqJpSR029ZIw; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:56:04 GMT; Path=/; Secure; HttpOnly
TASSK=enc%3AAIlR24dZI9CXrWUVKSyFlfP%2FRcwKcsD6X730ArGYJLku1uqnv4lyQML%2FMovG0bo7lxBWD%2FpMyeb066MGkMFu34dgIS2trplh38kP%2FZ%2FPWs0bMbepSRKW5JMPY9BzDBJQgw%3D%3D; Domain=www.tripadvisor.com; Expires=Wed, 10-Sep-2025 05:56:04 GMT; Path=/; HttpOnly
TASession=V2ID.9BA8D086FBB74F9E882E6833AB6CCA67*SQ.1*LS.WidgetEmbed-rated*HS.recommended*ES.popularity*DS.5*SAS.popularity*FPS.oldFirst*FA.1*DF.0*TRA.true; Domain=.tripadvisor.com; Path=/
SRT=TART_SYNC; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:26:04 GMT; Path=/
ServerPool=C; Domain=.tripadvisor.com; Path=/
PMC=V2*MS.8*MD.20250314*LD.20250314; Domain=www.tripadvisor.com; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Path=/; Secure; HttpOnly
TART=%1%enc%3A5O51oc1T0uqOq2NEZzyA7EC5V79VUBfS8rFAYVVglHhnNlEL%2BVw2BHiB5yYJOr%2FofTM2Cx7kRNA%3D; Domain=www.tripadvisor.com; Expires=Wed, 19-Mar-2025 05:56:04 GMT; Path=/; HttpOnly
TATravelInfo=V2*A.2*MG.-1*HP.2*FL.3*RS.1; Domain=.tripadvisor.com; Expires=Fri, 28-Mar-2025 05:56:04 GMT; Path=/
TAUD=RDD-1741931764231-2025_03_14; Domain=.tripadvisor.com; Expires=Fri, 28-Mar-2025 05:56:04 GMT; Path=/
TASID=9BA8D086FBB74F9E882E6833AB6CCA67; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:26:04 GMT; Path=/; Secure
timing-allow-origin: https://www.tripadvisor.com
content-type: text/javascript;charset=UTF-8
content-encoding: br
x-request-id: 648d6856-c792-4b27-80c7-c4447791a79a
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931764.158073,VS0,VE166
vary: User-Agent,Accept-Encoding
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css
200 OK 101 B URL GET cache.vtrcdn.com/orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 2059865fc8295b82003729f80a230ea7
d90b730929b05268ddf629691a9222cd8d84b652
d4a88bf8bed0f3dcd4e421110132e9e22de037d08efa1dd488d69f51c5926b52
GET /orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C6_0A280FEB:01BB_67C665A9_234901A:157BC4
traceresponse: 00-91b4ac18931a483b8894c863ca6cb09a-88a4b322745dc54d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
content-encoding: gzip
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 2157
vary: Accept-Encoding
content-length: 121
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js
200 OK 59 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (59220)
Hash bdfbbd4493fba84ca09044f8609531e5
619be47d676db9d45eedd80d8a7190ea869a791b
1575ced77d1aeec188d24c44516d70527ae20b76822f60844932de9b17c67867
GET /orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.02.26.1
last-modified: Wed, 26 Feb 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC20:968D_0A280BF4:01BB_67BF9A2D_604560:28E628
traceresponse: 00-21ef334025c2430ab46d855d1edc5308-80c3329e7bdb5e12-01
expires: Wed, 05 Mar 2025 22:48:13 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 1321671
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1515
vary: accept-encoding, Accept-Encoding
content-length: 16677
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/9b.jpg
200 OK 20 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/9b.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash bf0c390f8eedb4cdcdbd21b6f81380f2
51e7c10e3b9ff89920f04973c0be99006bc6790c
a41ec68c0d35bcb6c9de559ca51dab82d017b02211601024c26af270f4322282
GET /media/attractions-splice-spp-360x240/06/6a/a5/9b.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 20280
date: Wed, 12 Mar 2025 11:27:31 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 152916
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 67b6du2SIpLs1MfNTFFII3tlz7hvgecfMUpfKEQIX4aDvYxatUzKXA==
X-Firefox-Spdy: h2
GET ww1.tomoback.work/search/tsc.php?ses=ogcqgyjd8q_F3InJ6-n6Ex_Ly5UQSBA-kvx5tueGNnr40IuFV1u2uZ_uDZt3IiPcbVEqX9QXq_uzQ5hE6MIvNoZgkMXJDolpzbNyJEHe0AX6M9IAjNCPrZfRd_2Un2Jro2Y8A-MgvsAjBLYBpoY0UHz2cB4dFBmRStoGBolXv7L0o6pHOLpxvXkZxOrlGkPch_3WGc86gVFi3E3DH7qrVVp-JG8AoEBk7jrBx-JaXw9T_vL8hZBLJCYezGbFvuHKtVTBjM6X752OrTRYEO7TPsNuNuRq2k6Nd5c-xwu6wVTNycTX8Xvzk-ZgM-ks3UJyk83Z4aQ1V633f9_y2RIzWAJOtWhVZG9J5GA43ZRrkAkeLXA6EgYy8Oq-mNxpg&cv=2
200 OK 0 B URL GET ww1.tomoback.work/search/tsc.php?ses=ogcqgyjd8q_F3InJ6-n6Ex_Ly5UQSBA-kvx5tueGNnr40IuFV1u2uZ_uDZt3IiPcbVEqX9QXq_uzQ5hE6MIvNoZgkMXJDolpzbNyJEHe0AX6M9IAjNCPrZfRd_2Un2Jro2Y8A-MgvsAjBLYBpoY0UHz2cB4dFBmRStoGBolXv7L0o6pHOLpxvXkZxOrlGkPch_3WGc86gVFi3E3DH7qrVVp-JG8AoEBk7jrBx-JaXw9T_vL8hZBLJCYezGbFvuHKtVTBjM6X752OrTRYEO7TPsNuNuRq2k6Nd5c-xwu6wVTNycTX8Xvzk-ZgM-ks3UJyk83Z4aQ1V633f9_y2RIzWAJOtWhVZG9J5GA43ZRrkAkeLXA6EgYy8Oq-mNxpg&cv=2
IP
Requested by https://ww1.tomoback.work/?usid=26&utid=8999492620
Certificate IssuerDigiCert Inc
Subjectww1.tomoback.work
FingerprintB5:98:6E:57:77:93:F8:47:A9:1F:18:21:F7:BC:9D:38:F4:D7:3B:C2
ValidityWed, 15 Jan 2025 00:00:00 GMT - Thu, 15 Jan 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tsc.php?ses=ogcqgyjd8q_F3InJ6-n6Ex_Ly5UQSBA-kvx5tueGNnr40IuFV1u2uZ_uDZt3IiPcbVEqX9QXq_uzQ5hE6MIvNoZgkMXJDolpzbNyJEHe0AX6M9IAjNCPrZfRd_2Un2Jro2Y8A-MgvsAjBLYBpoY0UHz2cB4dFBmRStoGBolXv7L0o6pHOLpxvXkZxOrlGkPch_3WGc86gVFi3E3DH7qrVVp-JG8AoEBk7jrBx-JaXw9T_vL8hZBLJCYezGbFvuHKtVTBjM6X752OrTRYEO7TPsNuNuRq2k6Nd5c-xwu6wVTNycTX8Xvzk-ZgM-ks3UJyk83Z4aQ1V633f9_y2RIzWAJOtWhVZG9J5GA43ZRrkAkeLXA6EgYy8Oq-mNxpg&cv=2 HTTP/1.1
Host: ww1.tomoback.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww1.tomoback.work/?usid=26&utid=8999492620
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Fri, 14 Mar 2025 05:55:57 GMT
server: Parking/1.0
x-cache-miss-from: parking-77f77f4ddf-jpp5n
content-length: 0
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js
200 OK 45 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (44785), with no line terminators
Hash 11a21222f76ca07620bc7ebd66aad734
e0e239d86941d06344ef752afb52b0d467b976b0
cac2e97d1f04258a05d0eeb91f0a480969d9bcd49680bcd1f09c94fefcfef222
GET /orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1A:A0CE_0A2809E5:01BB_67D2B257_129DCB4:57377
traceresponse: 00-51835f2967c04b49bcde93ad78e84934-8086aa5a15b768a4-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 129
vary: accept-encoding, Accept-Encoding
content-length: 13234
X-Firefox-Spdy: h2
GET static.captcha-delivery.com/captcha/assets/set/ab2ad50ac42fc00245d3ed94ab56dce80d4c0642/logo.png?update_cache=1967907990183161961
200 OK 9.0 kB URL GET static.captcha-delivery.com/captcha/assets/set/ab2ad50ac42fc00245d3ed94ab56dce80d4c0642/logo.png?update_cache=1967907990183161961
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subject*.captcha-delivery.com
Fingerprint08:34:DB:37:CB:02:09:ED:82:0C:B3:27:9F:BA:AF:45:DA:77:DD:3D
ValidityThu, 13 Feb 2025 00:00:00 GMT - Sat, 14 Mar 2026 23:59:59 GMT
File type PNG image data, 464 x 117, 8-bit/color RGBA, non-interlaced
Hash de364c3481dffd1db880b825d55a596a
b58cdcae493f2aa3189561d3437d9b2e0ce26706
760e428e6c3766a219f996e37917f5cabf45351f6074af6ee2c092350f8604e7
GET /captcha/assets/set/ab2ad50ac42fc00245d3ed94ab56dce80d4c0642/logo.png?update_cache=1967907990183161961 HTTP/1.1
Host: static.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://geo.captcha-delivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 8991
date: Fri, 14 Mar 2025 05:56:08 GMT
last-modified: Wed, 10 Aug 2022 02:37:49 GMT
etag: "de364c3481dffd1db880b825d55a596a"
cache-control: public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BEGM8f_5Nh69AavByxFlxka04b5GOcHkmGvP7614dlnWK8eYnF-2JQ==
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Regular.woff2
200 OK 14 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Regular.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14340, version 1.0
Hash 727158a77952a97832975108b7c09c4f
5e67b5d0be1ef4b4f09bab6f65925d72d3738d85
179e311e63339f9f0870b1b98fe8da6e7c986ff694827b9e3202ee7c4b022ff4
GET /orion/fonts/Aeonik/AeonikV-Regular.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:C64D_0A280EF0:01BB_67C665A9_143D901:1917AF
traceresponse: 00-0d5548e5c9a64c07af5232a5bb0f1353-bf33c80db5b37fb0-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1563
content-length: 14340
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js
200 OK 24 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23844), with no line terminators
Hash 6649363d1eb2f3e24f07fbef59917ab3
14be773be1b16bbb74aeb71c952e3b9c029530c7
48ffa8ff48a16386aedeafa7a9f450b968381f014ac801dac87c00fe6827f859
GET /orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:DCCA_0A280FEB:01BB_67C665C5_234C397:157BC4
traceresponse: 00-170d78fbd87f4a7ba395e2615c11e76b-a629d08f11f99485-01
expires: Tue, 11 Mar 2025 02:30:29 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1514
vary: accept-encoding, Accept-Encoding
content-length: 7663
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG-20240906-WA0004%201.jpg
200 OK 384 kB URL GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG-20240906-WA0004%201.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1200, components 3
Size 384 kB (383769 bytes)
Hash 1a6a9d5bbffc58a2a59bb7b12a531219
84cdceecf12bc0cd4ca154d1a49f24f2bc500f4c
ef61bf88238862f018b61485684e69b00d9b765ffdeeb49eef1e4052addb4e31
GET /images/wildlife_animals/IMG-20240906-WA0004%201.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:06 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Fri, 06 Sep 2024 10:16:07 GMT
accept-ranges: bytes
content-length: 383769
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/phone.png
200 OK 7.7 kB URL GET www.cruzeiro-safaris.com/images/phone.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Hash 4755dd7732b8cbb11a19c488c19a1e6d
6c924c8cb64cc3e0277690fa3cea37c2afe421d6
2a6af9dabb1ffbeeecab784b10e99e7a9f1579fade1ad29a368e4f12667a72e3
GET /images/phone.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:40 GMT
accept-ranges: bytes
content-length: 7727
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/25623.3c791c6d33e38909.js
200 OK 199 kB URL GET cache.vtrcdn.com/orion/react/client/25623.3c791c6d33e38909.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Size 199 kB (199105 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/25623.3c791c6d33e38909.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:C8AB_0A2806EB:01BB_67D2B257_17A0A69:53AAE
traceresponse: 00-5d8240bbf44e4344849c9e2c8f56a7a3-8f2392e8f1d0c4bc-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 21679
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/12512.c9bb2e24c5c6e61f.js
200 OK 25 kB URL GET cache.vtrcdn.com/orion/react/client/12512.c9bb2e24c5c6e61f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (24939), with no line terminators
Hash 84b8efde945aea370029e5f3f00aa2fe
022ee989ba65b35442607e91a9a046fc7440e6b5
238eae894f4466a83be35a11ac1f64d5547ea6f4c86ee0dee8445fb4965587bc
GET /orion/react/client/12512.c9bb2e24c5c6e61f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:4B5D_0A280F01:01BB_67D2B257_156C16C:55642
traceresponse: 00-2f74a47077e74ed1bbe1c7f96b5666cf-bb0b244a97e7532e-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 131
vary: accept-encoding, Accept-Encoding
content-length: 7350
X-Firefox-Spdy: h2
GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RP6FEB55T&cid=271404735.1741931764>m=45je53d0v889129250za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&z=1942138325
200 OK 42 B URL GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RP6FEB55T&cid=271404735.1741931764>m=45je53d0v889129250za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&z=1942138325
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.google.no
Fingerprint26:B7:26:CB:C6:A9:06:E9:C0:85:18:1A:20:54:87:E3:8B:35:EC:7C
ValidityWed, 26 Feb 2025 15:35:45 GMT - Wed, 21 May 2025 15:35:44 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-3RP6FEB55T&cid=271404735.1741931764>m=45je53d0v889129250za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&z=1942138325 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 14 Mar 2025 05:56:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/header.97c35335b0055d8d.css
200 OK 25 kB URL GET cache.vtrcdn.com/orion/react/client/css/header.97c35335b0055d8d.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (2731)
Hash 7fda8566c577ad146e907a3db10c1abb
e7b5c7f0dfbc5ea0db56d366e8c0c85d346603cd
eb23a919250e4af88cb29158480c932448f7121902e5bcbb956774fb23fef102
GET /orion/react/client/css/header.97c35335b0055d8d.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:C652_0A280590:01BB_67C665A9_14DA8EB:19033E
traceresponse: 00-6f5fc50d8358470b8f9d0289b81dad4f-a7f1bace1640929d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1605
vary: accept-encoding, Accept-Encoding
content-length: 5523
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css
200 OK 8.8 kB URL GET cache.vtrcdn.com/orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (8833), with no line terminators
Hash f1611bfe204a01111bb123ff27f49ae8
d3999e13f664b596612f3c28c705878af006644c
c1863bb330e428e18c72c6ab0cfd822b2ebe7217675a89736cc4bc0d8070df86
GET /orion/react/client/css/PARTNER_WIDGET.57091959da0e9bf9.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88D0_0A280EF0:01BB_67C665A9_144050C:1917AF
traceresponse: 00-851cd81104864641941bcfd0caf3a9df-be021a8b0ab0cc3c-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 385
vary: accept-encoding, Accept-Encoding
content-length: 2060
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js
200 OK 56 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (55606)
Hash 937dbf63f48a4fdb6eeceae0f7fb7e5e
7bad5529bf0f2669aa1dedceab1feca31dc10b57
314e27ac3c3d2ccec22aaa118c24a3819a494fdd4adcde37ab7385f2a662c119
GET /orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.10.1
last-modified: Mon, 10 Mar 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:13E9_0A2809E5:01BB_67CFA8B1_C6F1D4:1BC07
traceresponse: 00-41c220b89bbd429eb8c2fa5fe54dcce5-a30bdf992673c9e5-01
expires: Tue, 18 Mar 2025 03:06:25 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 269380
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 575
vary: accept-encoding, Accept-Encoding
content-length: 17392
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-fe251e28.6bda1cb410073701.js
200 OK 58 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-fe251e28.6bda1cb410073701.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-fe251e28.6bda1cb410073701.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:A1AE_0A2809E5:01BB_67D2B257_129DC85:57377
traceresponse: 00-d3fecf63f908412e86d74dc539b1573e-b38dce987a1a69e8-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 134
vary: accept-encoding, Accept-Encoding
content-length: 18895
X-Firefox-Spdy: h2
GET xml-v4.jetlibong-d.online/click?seat=3195215&i=OxQVw2kvrtM_0
302 Found 136 kB URL User Request GET xml-v4.jetlibong-d.online/click?seat=3195215&i=OxQVw2kvrtM_0
IP
ASN #27257 WEBAIR-INTERNET
Certificate IssuerLet's Encrypt
Subjectjetlibong-d.online
FingerprintBC:6A:5E:2D:4D:54:86:53:DB:AD:13:71:85:37:9F:B9:09:0C:90:E2
ValidityWed, 12 Feb 2025 18:10:12 GMT - Tue, 13 May 2025 18:10:11 GMT
Size 136 kB (135948 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?seat=3195215&i=OxQVw2kvrtM_0 HTTP/1.1
Host: xml-v4.jetlibong-d.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 14 Mar 2025 05:55:59 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://zeep.ly/GAuHC
GET cache.vtrcdn.com/orion/react/client/vendor-b23b11a0.08be412c223f21ca.js
200 OK 71 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-b23b11a0.08be412c223f21ca.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65446)
Hash d1a4af9557a9355bcd46a8a618671241
27dd97cc475ef78b4d7fccc739db1b5e4113968a
1c95cf99e238eeb6de5fe911302f37f10bd02f2ff28b943018a4310388f43291
GET /orion/react/client/vendor-b23b11a0.08be412c223f21ca.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC18:52D4_0A2806EB:01BB_67D2B257_17A0A5D:53AAE
traceresponse: 00-b7bb5838217b424098aba4c0c77ec794-bac73c1c8b710859-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 18551
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/2803.75f2e2d5d7de5163.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/2803.75f2e2d5d7de5163.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (21235), with no line terminators
Hash f6606977505115e0089e807fc05efb4b
add65c1ed7da151e21a23262696a1ef3e9b1394b
73c09e68e5aab8d54b8c38d6a3289d5b6712dc13dec0e10437d7ec6f72c388be
GET /orion/react/client/2803.75f2e2d5d7de5163.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC19:0D9E_0A2809E5:01BB_67D2B257_129DCC1:57377
traceresponse: 00-211d6d1ca44645d9a660a3869c2642dc-92fe41e342a7bcc7-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 7406
X-Firefox-Spdy: h2
GET static.chatra.io/jscss/706cb74deb611e41ff04c7de86dc9af037fc6a2e.js?meteor_js_resource=true
200 OK 881 kB URL GET static.chatra.io/jscss/706cb74deb611e41ff04c7de86dc9af037fc6a2e.js?meteor_js_resource=true
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
Size 881 kB (881263 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jscss/706cb74deb611e41ff04c7de86dc9af037fc6a2e.js?meteor_js_resource=true HTTP/1.1
Host: static.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chat.chatra.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 28 Oct 2024 12:46:18 GMT
etag: W/"26e433e39b048389aee9f09ef1feac40"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 40e20db187b9959d3846f32db35de9bc.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: LkN0eyuHbgnmfsqe2TOJ4NJhar0jBoypJtscH73yQe3x5aNr4nIRRg==
age: 123161
cf-cache-status: HIT
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 920186976eda56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cache.vtrcdn.com/orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js
200 OK 45 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (44785), with no line terminators
Hash 11a21222f76ca07620bc7ebd66aad734
e0e239d86941d06344ef752afb52b0d467b976b0
cac2e97d1f04258a05d0eeb91f0a480969d9bcd49680bcd1f09c94fefcfef222
GET /orion/react/client/vendor-0dd3648c.7c486be9e60c0b45.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1A:A0CE_0A2809E5:01BB_67D2B257_129DCB4:57377
traceresponse: 00-51835f2967c04b49bcde93ad78e84934-8086aa5a15b768a4-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 128
vary: accept-encoding, Accept-Encoding
content-length: 13234
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/2803.75f2e2d5d7de5163.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/2803.75f2e2d5d7de5163.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (21235), with no line terminators
Hash f6606977505115e0089e807fc05efb4b
add65c1ed7da151e21a23262696a1ef3e9b1394b
73c09e68e5aab8d54b8c38d6a3289d5b6712dc13dec0e10437d7ec6f72c388be
GET /orion/react/client/2803.75f2e2d5d7de5163.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC19:0D9E_0A2809E5:01BB_67D2B257_129DCC1:57377
traceresponse: 00-211d6d1ca44645d9a660a3869c2642dc-92fe41e342a7bcc7-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 7406
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css
200 OK 101 B URL GET cache.vtrcdn.com/orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 2059865fc8295b82003729f80a230ea7
d90b730929b05268ddf629691a9222cd8d84b652
d4a88bf8bed0f3dcd4e421110132e9e22de037d08efa1dd488d69f51c5926b52
GET /orion/react/client/css/GoogleTagManager.b82f2bc3ed55b688.chunk.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C6_0A280FEB:01BB_67C665A9_234901A:157BC4
traceresponse: 00-91b4ac18931a483b8894c863ca6cb09a-88a4b322745dc54d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
content-encoding: gzip
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 2158
vary: Accept-Encoding
content-length: 121
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js
200 OK 48 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (47822), with no line terminators
Hash 0bbc6fbffe2beadfac3b53ac7755a007
8c14edd72dd5670f3ae908452d5ce7ba4e9985fc
c5cd12fe4aa7a73adcbc8c453190e57059d9665df0f66f168d19059b421506a3
GET /orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88D0_0A280EF0:01BB_67C665C4_1440543:1917AF
traceresponse: 00-2b50ca623dde422ea6bb7402468c46b7-904f818e0a02f13a-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1514
vary: accept-encoding, Accept-Encoding
content-length: 13425
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-e3924278.cb0191e0be8c460b.js
200 OK 42 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-e3924278.cb0191e0be8c460b.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (42274), with no line terminators
Hash bf733b5859c9dc89e8b301f6b27d50e7
e92515327aedb473b889429bf90b27f54e2db1b4
7932a3b92e0a87233cb72fcd24acda48caef2589de56e117e9db02d27994a554
GET /orion/react/client/vendor-e3924278.cb0191e0be8c460b.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.11.1
last-modified: Tue, 11 Mar 2025 13:11:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC18:4677_0A2806EB:01BB_67D00E73_18849E0:181EE
traceresponse: 00-3b7d5b88509540a3b69f6110f07338bc-85169c285d8ee782-01
expires: Tue, 18 Mar 2025 10:20:47 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 243318
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 525
vary: accept-encoding, Accept-Encoding
content-length: 14949
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/89869.c1f2556c6db04f41.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/89869.c1f2556c6db04f41.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20915), with no line terminators
Hash 90e05956496a01ac65847d44c52e6a3d
f0deef8bddd70dad007e32da7e20e459eab55f18
1a818e2e2289e08fed4362f7f7503812e059c5023be326a3c647cb503f68a764
GET /orion/react/client/89869.c1f2556c6db04f41.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:4B64_0A2806EB:01BB_67D2B258_17A0F65:53AAE
traceresponse: 00-a00d446f1cad4b2185f66c8a1ef01d7d-853bd98cdbbbb63b-01
expires: Thu, 20 Mar 2025 10:24:26 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70299
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 22
vary: accept-encoding, Accept-Encoding
content-length: 7947
X-Firefox-Spdy: h2
GET www.viator.com/orion/challenge
200 OK 46 B URL GET www.viator.com/orion/challenge
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type HTML document, ASCII text, with no line terminators
Hash af489f70d5c321fa7463dcbdd8002f33
c7802ab630d470a312fbe5335577628aa1a60ac7
0861b850bc7ff51332b06f0f94a7f877981c81ab98e6be34e11449abd89f9c26
GET /orion/challenge HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-XSRF-TOKEN: 7850d0d0-3e1d-422c-8801-f1cc69ff9230
traceparent: 00-526884b7e1945cace2402020e4db296d-ba6d33d341b2f458-01
tracestate: es=s:0.1
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2822c056-c159-4af0-8a4b-1b98277884b5
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-language: en
set-cookie: x-viator-tapersistentcookie=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION=YxFEzRZO8mpdhm7Z560peg%3D%3D%7CF5DbOcCf1rj2iffTV1Nziz5Tyjbzar4BlDjnCVQDOKx0w8sU3ceHmLddXsYBEU3JjnXweMx91rTKe4owIX%2BTaxiZx%2B4dbGeEOkxZdyyavVRFrQN2IQFwVhHqaOOhePFlMDUZWGKA2SCOPxPNV7MHix8EIHNHoqtAwaFJ9HSnWfGHOXvO16xveWNZGY3qb6huyFdMGuHRWbMa99hlfCpih4PTPybkymj3pls5Kfb4qZPy33OFFZR3OsPl%2BzdQZIhE5LxscDnQrKuCDw9xRHdzmkYWmb4DRbW7SVNO%2BuuUUr1yUUvtbxGH2SAOZ3%2FO3iLd79d9N00kAFecoNPDhSQrad4I5GBjtc6UuqxkEW6lHmZA5H35TJ6bPXGaMo0C8EGe6gW21P8cZjVum13TsSwQDF%2F2%2BVdSVWbXMJow1ZGhqxH667TYWOpAPSONqziJzj2yO%2FA0k0A9bCTXOjJDhck%2Fdk140KDCYSaLG14SbhyOhlC0Tl9ihWAK%2BqJ5EfwHXtZKg9UJHw5F5c%2BVZXo%2FCVCUYKBnAe0oXuNiA5Q%2BvYchGXOAe8xAHb244I55BtbtJdMjD4AppT5cTjhECnxW7Y78RwVdp7v1CMX5jqZzU16YApxA265GwWPU8krY6lUK1Q4dzpNqcZmdhxHLriCCstzd4hp3RuchgA%2FNReEZYvH0WwJa4nbAZradUFkGTpkEzA6yiwNh%2FOFoSz0971Di6OFtlFqLsF1vXzG%2Fb3H%2B9iCqLM31vBwJ9apC7tCM9SAoEZkcyzCirz8ySAyfhhBuusFzEpAIY68umcWnHAuP8MFOqUOeAetUKjRU6aWX0O503S%2FOL12%2BiahL6js3Zn5mzKi2bPHsQ3M2tQy94T%2BxD3rBY6DJzcn8r%2FcQhWgujR3EiDpsLTESb1CUPEIs%2FQsRojKFETxTyGfxYVvu%2BgyYydoBj2L%2Bl%2F7gVsiwb4v68JPH7jK%2BdwGW08DftqX2I5ucPOGoY8nNTJ%2BI%2FcFPdql6F7JVNxY%2BGQmZPurYsA64bDgLkDJ7AS5Kumq6dbsDRnaWOt71ge85vBXHC%2FOJfxFYPVXc6%2BntzUFA%2B6UTciV6U9pOguIjpyCzkOfVTBTjgaB0nmq1KnDjmc6dzk5T0QlYu5Hchc5zgSskBpSi%2F1gdNX3HkLXIHIJvIf5hUfCSDa3BBPzoGbwwi%2FR0CDR875VOS%2Fct5fMBJbXv39U%2F7%2B2OAMsOFmIR3aF26A3svQN%2FmsZNRujRnlYSzQPORF154TY0rqtq9UVLw1O4QWlkupAA1jUyRHZjuIvst19ilhigA9b76UiRnFPdfFXieA22u761oJeRLFnN1P6A%2F8O30FzUXbDMVvyKHR7xm8HLZjwLSX2SqRkWpsZF04zCQtA1NLLDHhUypvXX0vr3l9vnoHCzV7aAk709o1WFrF9%2FcameOb4zpDFyl%2Fh2JLLuGnslLkps2cN1BRWzIsIMsQaIJtIEOIAMIws1Ye3rF%2FQw8KYViv5X6WVvuRolMYRSvuoT%2F5%2FSfeD2cItciromZZeP9U0eEMh7Eo9xG68MZJriUGYNcrY3vYleoQtrWW2n%2Bai040MUCRCVUxOA2D6fFXEZDo7dN4AGiT%2BzuD6U8TVOLa0ifUxj%2FLCpgEPMu8uXjXjNsgxvnF7vCyI8S391DZF48np%2FfAIB3jS5vDZ5jDkNvllI3l7tbJNafxXqPwdWMF2uT4FbyD%2FeQtkqkWzzkrHQTVHBcNXp7PbGkzDs7jmLJVx0mLypyXuE%2FotHasQNLSGoftsBFku5bgJ9Gy1olQMTEIfKnce3cQRSJz9fxyNHNLkYgjryL0yZ2LkLG%2B1zsQvfLTYIT8l3SMGElh9Xxyd0%2BUFHZ794RQ3Wqsf2q%2F4RbaswQUVlET1Vf%2FFWLe6x3bvUGUWe9kuUhvhHPr%2F4L5xSvkY4IpAVl2R6aKkEHu3NlWnfA5avuNqgExutM0OxVRLbcPSNILZQUj5Pl5f9zZQvRbxeK6P0J6igeI2vn5wGvRRJMRpcd9Dw%2BE4TiRXd1tJxxq0UZEEiGqdZXloCVXNPKcOwT59wVLJXReLEjGP7gn%2BUSvyGnAKag4%2F6cKh%2F6hGol9cMTVvGK3DECS6EdJ7sFzSGJooLpx0hceU7nMeKBzICYf5LNdZqlAvQh5VNKTkStzwj0vPSwRxcS64I7h%2FvVA%3D%3D%7CsyovFpfsT4Q%3D%3A78eMDyXN68F7CuEjAani0mGIFqesbu8M9pdnPkIgxvc%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC1B%3A9BB0_0A2809E5%3A01BB_67D3C4F6_D7D02F%3A74FC1%7C%7C; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
x-unique-id: A752EC1B:9BB0_0A2809E5:01BB_67D3C4F6_D7D02F:74FC1
traceresponse: 00-526884b7e1945cace2402020e4db296d-ba6d33d341b2f458-01
content-encoding: gzip
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/global/colors_alternative.min.css?89febd398596b456839adf8abd6f1718
200 OK 106 B URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/global/colors_alternative.min.css?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with no line terminators
Hash 4edbd41ee64b752f84736b24c2b1f74e
eaa28bf20941f3bb3cf51ec10a71ebbe27ef6204
2733b7a20f4240abaa14e8a0f0d78f57666cecb4610422c33b94704ee7ff6e4e
GET /media/templates/site/cassiopeia/css/global/colors_alternative.min.css?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 90
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js
200 OK 59 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (59220)
Hash bdfbbd4493fba84ca09044f8609531e5
619be47d676db9d45eedd80d8a7190ea869a791b
1575ced77d1aeec188d24c44516d70527ae20b76822f60844932de9b17c67867
GET /orion/react/client/vendor-37a93c5f.fc9605ce6ebc9b5f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.02.26.1
last-modified: Wed, 26 Feb 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC20:968D_0A280BF4:01BB_67BF9A2D_604560:28E628
traceresponse: 00-21ef334025c2430ab46d855d1edc5308-80c3329e7bdb5e12-01
expires: Wed, 05 Mar 2025 22:48:13 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 1321672
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1516
vary: accept-encoding, Accept-Encoding
content-length: 16677
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/js/template.min.js?89febd398596b456839adf8abd6f1718
200 OK 836 B URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/js/template.min.js?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (864), with no line terminators
Hash 2da9b73c18cf94aa44f2fe14e8f34392
b32d4f480f7519359a8356cf3e6e904cf8195a85
22dbb744849a48209896fda9658b375c1b77f7d7a81fe24fa168be94aecc9efe
GET /media/templates/site/cassiopeia/js/template.min.js?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 476
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/nairobi-tours/dinnerandshow_cruzeirosafariskenya.JPG
200 OK 32 kB URL GET www.cruzeiro-safaris.com/images/nairobi-tours/dinnerandshow_cruzeirosafariskenya.JPG
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 591x443, components 3
Hash 6201dbc4c650f919e9f60b37dcf54429
4805b4eea46576a01f4eed2d5e73821a6facce21
89c34f6d7af2cc662e6aabe1358470ba756a91821ea1c1613f524d30ca653edc
GET /images/nairobi-tours/dinnerandshow_cruzeirosafariskenya.JPG HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 32479
content-type: image/jpeg
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjalmUiAo.woff2
200 OK 21 kB URL GET fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjalmUiAo.woff2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 20996, version 1.0
Hash 47581e04640cdf48a696aa57a43f6592
0bc739ea622a395d311d9472623beb716b61c77e
cec2c772ade5fece795bb18eeeab86323471acbd93fe2639a40aba644f9f24db
GET /s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjalmUiAo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cruzeiro-safaris.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20996
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:20:44 GMT
expires: Fri, 13 Mar 2026 09:20:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Jan 2025 18:23:11 GMT
content-type: font/woff2
age: 74119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/elasticApm.3702f68e092052b2.js
200 OK 64 kB URL GET cache.vtrcdn.com/orion/react/client/elasticApm.3702f68e092052b2.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (64214), with no line terminators
Hash d041021af5b5f122803494fcd412f740
d2ac19ba539d095d1260d525f23ab2d445138588
74e1089714f41f898eefccf0a63475717a671082695dad4f49130db25b7d21af
GET /orion/react/client/elasticApm.3702f68e092052b2.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:22:50 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665A9_D6B777:13C125
traceresponse: 00-9774ba288524426184e12d8c37f3182c-81705bc8219d449d-01
expires: Tue, 11 Mar 2025 02:30:02 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1604
vary: accept-encoding, Accept-Encoding
content-length: 21224
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js
200 OK 26 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25640), with no line terminators
Hash 0b940330025e83cfffb779f734dcbafa
f8e7222dac409c9993787ee4d421f794ba28f480
ad7d628f3d65dadf23a3f7147762bdd30d17f47153eb8f0667478133263aeb51
GET /orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:EF0C_0A280BF4:01BB_67C665A9_FA3DC7:3238E9
traceresponse: 00-26eb321fd28f4673905e9e6e97464dd8-95f63a944ee9f12c-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1536
vary: accept-encoding, Accept-Encoding
content-length: 8020
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Fira%20Sans:300
200 OK 2.3 kB URL GET fonts.googleapis.com/css?family=Fira%20Sans:300
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type ASCII text, with very long lines (2366), with no line terminators
Hash 0e4c70e89357237e198c33dfc26e824b
a7bef74145706eced035b8799560a253cc4875e0
3cf3d5eb6db9b9b9bfa33b939fda400f5e98bbd6d7fbae8fcb0886b526438d9d
GET /css?family=Fira%20Sans:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Mar 2025 05:56:02 GMT
date: Fri, 14 Mar 2025 05:56:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/97.jpg
200 OK 16 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/97.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash c4c505312d249209a451f18c7e8a27c8
7b2c297364c1b69303d96b25e8faddb252463794
2e5dc13aa256ae3cd73039787f39397a8392a346a0871b9b6ce3f6eada393ffa
GET /media/attractions-splice-spp-360x240/06/6a/a5/97.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 16424
date: Thu, 13 Mar 2025 14:50:55 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 54311
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g1ehXHczFcUFdDd0C9GUTSZOEhx_WAXDKi0xENEwAHZ9pz6vZ0GviQ==
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
200 OK 1.9 kB URL GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1919), with no line terminators
Hash 0b5ae9ab2f70cad671eb3f299722a7a4
08405e7d29a2181cc0f9133a9179fc391934949c
27aa3103b3d2e6fb9b4f1139ab0958516083b7610aabea19fdf9f8c3f01e22b4
GET /orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1C:485F_0A2806EB:01BB_67D2B257_17A0A2B:53AAE
traceresponse: 00-cfbbadc0776348cb905962d148b0546f-b3d2ee2fcfb857a6-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
age: 70303
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 966
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/email-icon.png
200 OK 5.7 kB URL GET www.cruzeiro-safaris.com/images/email-icon.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Hash f5546f288c112eb513a453e7856ba024
57aefb6d7c65c0457b45e070a8efd5dff4bddafe
5e11b77b10368d77a63315c53351bb3581254f1f00baff3213fe9f3ce270d2b4
GET /images/email-icon.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:40 GMT
accept-ranges: bytes
content-length: 5698
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-406ec44c.c78659db5d9e298d.js
200 OK 56 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-406ec44c.c78659db5d9e298d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-406ec44c.c78659db5d9e298d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC16:7518_0A2807A3:01BB_67D2B257_1AC9878:4FC0A
traceresponse: 00-521b2fb0157944ef8520950a1e830651-93ff850a1778b05d-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 17063
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/yt.png
200 OK 5.7 kB URL GET www.cruzeiro-safaris.com/images/social/yt.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Hash ac8caec94310fa12d840e74235ab7bc2
b0c7fb16777940b987d2333ef83bd4b116cb164b
951bce6cca58c0df67b1ca1edf8f897289ccf3ac0f7926c22e540a87599f4be1
GET /images/social/yt.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 5698
content-type: image/png
X-Firefox-Spdy: h2
GET call.chatra.io/chatra.js
200 OK 47 kB IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatra.js HTTP/1.1
Host: call.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
content-type: text/javascript; charset=utf-8
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=300, stale-if-error=1800
last-modified: Thu, 13 Feb 2025 12:56:46 GMT
etag: W/"b800-194ff6216b0"
cf-cache-status: HIT
age: 104
vary: Accept-Encoding
server: cloudflare
cf-ray: 92018692a8ff56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-547c1394.615a6afbf5b80769.js
200 OK 49 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-547c1394.615a6afbf5b80769.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (48681), with no line terminators
Hash fa7963f5dc38ee3999d6bc4869d89f0e
6e9ad3747658fe0e95cbbe0718b35e096ce48b0a
30a966b7f0484fe821b774da14b3347ca2251b10b2351dd914329583d83a12ee
GET /orion/react/client/vendor-547c1394.615a6afbf5b80769.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665A9_D6B6CB:13C125
traceresponse: 00-6d35a104192e4012a32d52e7121c85c7-acb955f0a03ca3b6-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1525
vary: accept-encoding, Accept-Encoding
content-length: 15265
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js
200 OK 75 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6d010831f32482ecb21b45bdb7590c72
1fec2983b266ce686519f2d89496177605c65511
26b811b40e04a00e3394ce8cd0f2b9f9521d0b68bef15e92ef8c7c255ce48679
GET /orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:261C_0A280475:01BB_67C665A9_D6E5B3:13C125
traceresponse: 00-97488b99829a480e8e120b8cff53d528-bc539eab192aabd7-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1540
vary: accept-encoding, Accept-Encoding
content-length: 18417
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
200 OK 1.9 kB URL GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1919), with no line terminators
Hash 0b5ae9ab2f70cad671eb3f299722a7a4
08405e7d29a2181cc0f9133a9179fc391934949c
27aa3103b3d2e6fb9b4f1139ab0958516083b7610aabea19fdf9f8c3f01e22b4
GET /orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1C:485F_0A2806EB:01BB_67D2B257_17A0A2B:53AAE
traceresponse: 00-cfbbadc0776348cb905962d148b0546f-b3d2ee2fcfb857a6-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 129
vary: accept-encoding, Accept-Encoding
content-length: 966
X-Firefox-Spdy: h2
GET static.captcha-delivery.com/common/fonts/roboto/font-face.css
200 OK 519 B URL GET static.captcha-delivery.com/common/fonts/roboto/font-face.css
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subject*.captcha-delivery.com
Fingerprint08:34:DB:37:CB:02:09:ED:82:0C:B3:27:9F:BA:AF:45:DA:77:DD:3D
ValidityThu, 13 Feb 2025 00:00:00 GMT - Sat, 14 Mar 2026 23:59:59 GMT
File type ASCII text, with very long lines (536), with no line terminators
Hash a370d9d59540656224214ae978fce991
03c3d4674d94d5addf8f3a1f26e3dd940b182e4d
a70f32e6ff224c585082844cca93cd17d5d33be7b075fbd0ef22251ca5b3e368
GET /common/fonts/roboto/font-face.css HTTP/1.1
Host: static.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://geo.captcha-delivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 519
last-modified: Fri, 19 Jul 2024 12:42:09 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 14 Mar 2025 02:40:44 GMT
etag: "e4f77074c0ffbfab377011e19283eb13"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vDUznTddkUs8FG7LXiYo3pEkeQxAGICEvc-FE-O9NnfvHJenrGDOlw==
age: 11725
X-Firefox-Spdy: h2
GET ww1.tomoback.work/img.sedoparking.com/images/js_preloader.gif
441 No Reason Phrase 0 B URL GET ww1.tomoback.work/img.sedoparking.com/images/js_preloader.gif
IP
Requested by https://ww1.tomoback.work/?usid=26&utid=8999492620
Certificate IssuerDigiCert Inc
Subjectww1.tomoback.work
FingerprintB5:98:6E:57:77:93:F8:47:A9:1F:18:21:F7:BC:9D:38:F4:D7:3B:C2
ValidityWed, 15 Jan 2025 00:00:00 GMT - Thu, 15 Jan 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img.sedoparking.com/images/js_preloader.gif HTTP/1.1
Host: ww1.tomoback.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww1.tomoback.work/?usid=26&utid=8999492620
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 441 No Reason Phrase
date: Fri, 14 Mar 2025 05:55:57 GMT
server: Parking/1.0
content-length: 0
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/images/10067/viator-top-rated.png
301 Moved Permanently 0 B URL GET cache.vtrcdn.com/images/10067/viator-top-rated.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/10067/viator-top-rated.png HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
location: https://cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
strict-transport-security: max-age=15724800; includeSubDomains
x-unique-id: A752EC1F:DF7E_0A280907:01BB_67D01014_1A52F5A:170C2
traceresponse: 00-e35a0006ee7741e793ad8f10b227b8ef-96f3122d646ce3b8-01
expires: Tue, 18 Mar 2025 10:27:32 GMT
server: Apache
accept-ranges: bytes
age: 242910
date: Fri, 14 Mar 2025 05:56:02 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 0
content-length: 274
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/pesapal_logo.png
200 OK 24 kB URL GET www.cruzeiro-safaris.com/images/pesapal_logo.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 252 x 108, 8-bit/color RGB, non-interlaced
Hash 496b5a6e4c7514d0435ef508fa48a9b1
4792eaa5f5e74d7d4d99f3bc75b27226cff3d49a
f599e3ab1494466eb0d0b049e6b61a06d0a6bc441ba5b0a2d796c1d0d028f02e
GET /images/pesapal_logo.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 24448
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
404 Not Found 0 B URL GET cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/images/widgets/viator-top-rated.png HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cruzeiro-safaris.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html;charset=utf-8
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
content-language: en
x-unique-id: A752EC15:9BC0_0A2807A3:01BB_67D3C4F2_15F867F:6D86C
traceresponse: 00-0dd2c99352ef4e1c93aa2e90df5c579c-a57ae6fb567146a4-01
expires: Fri, 21 Mar 2025 05:56:03 GMT
server: Apache
accept-ranges: bytes
age: 0
date: Fri, 14 Mar 2025 05:56:03 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding, Accept-Encoding
content-length: 944
X-Firefox-Spdy: h2
GET ww1.tomoback.work/search/tcerider.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL
302 Found 93 kB URL User Request GET ww1.tomoback.work/search/tcerider.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL
IP
Certificate IssuerDigiCert Inc
Subjectww1.tomoback.work
FingerprintB5:98:6E:57:77:93:F8:47:A9:1F:18:21:F7:BC:9D:38:F4:D7:3B:C2
ValidityWed, 15 Jan 2025 00:00:00 GMT - Thu, 15 Jan 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tcerider.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL HTTP/1.1
Host: ww1.tomoback.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww1.tomoback.work/?usid=26&utid=8999492620
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-type: text/html; charset=UTF-8
date: Fri, 14 Mar 2025 05:55:57 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 14 Mar 2025 05:55:57 GMT
location: https://xml.sedodna.com/click?i=U8uIgOsdNps_0
pragma: no-cache
server: Parking/1.0
x-cache-miss-from: parking-77f77f4ddf-jpp5n
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/jquery/js/jquery.min.js?3.6.3
200 OK 90 kB URL GET www.cruzeiro-safaris.com/media/vendor/jquery/js/jquery.min.js?3.6.3
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /media/vendor/jquery/js/jquery.min.js?3.6.3 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 31046
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/tw.png
200 OK 4.0 kB URL GET www.cruzeiro-safaris.com/images/social/tw.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Hash ff5a46434a077162166add229a02d9ae
af11a6b6d0882b3d1b908cc9bd4ca8f3d62912d9
240ccfca0c6d63360debf27c8a84ffb56c191fdb1d542bcbea21d3dbf6890ccd
GET /images/social/tw.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 3970
content-type: image/png
X-Firefox-Spdy: h2
GET www.tripadvisor.com/wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2
200 OK 247 B URL GET www.tripadvisor.com/wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectwww.tripadvisor.com
FingerprintCC:81:62:D9:4B:68:B9:8F:50:52:F0:8D:28:D0:01:1A:79:FD:F7:E7
ValidityThu, 23 May 2024 15:37:05 GMT - Tue, 24 Jun 2025 13:36:06 GMT
File type JavaScript source, ASCII text, with no line terminators
Hash ae0e75dd31bffd89a33d0db8b5262a28
4b62acfb89f3d2162d7b2e929f0cf8735415aa25
3f5fcf22c610d322287c5fd91562dff327cd148db5dcda8508f8f9ac150a8989
GET /wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2 HTTP/1.1
Host: www.tripadvisor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cruzeiro-safaris.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
expires: 0
cache-control: no-cache,no-store,must-revalidate
pragma: no-cache
set-cookie: TADCID=t7Ti2XuXqrtMCNZxABQCJ4S5rDsRRMescG99HippfoQ40TX5UqSnJlGkYK85XkLQNxiBoSgxKdxlz73GBijKlBiasLKJl1ubu-w; Domain=www.tripadvisor.com; Expires=Mon, 12-Mar-2035 05:56:03 GMT; Path=/; Secure; HttpOnly
TASameSite=1; Path=/; Max-Age=315360000; SameSite=Strict; Domain=www.tripadvisor.com; Secure; HttpOnly
__vt=9mtw9PgIgETr-3HaABQCT24E-H_BQo6gx1APGQJPtzQWcTzuk3W2ANIjAyOfeXsk-kzXsLgMlzrftsdMRASOfreO4n7uUcYtyByqgvSCSQXEFGxR2Z89aTYt3s-8jrCmyR9877dZF6jBFf5_YFoK4ynx; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:56:03 GMT; Path=/; Secure; HttpOnly
timing-allow-origin: https://www.tripadvisor.com
content-type: application/x-javascript;charset=UTF-8
content-encoding: br
x-request-id: bbd2d3b6-4fb1-4035-94ea-70fee4d878a6
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:03 GMT
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931763.957852,VS0,VE120
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/metismenujs/js/metismenujs.min.js?1.4.0
200 OK 4.2 kB URL GET www.cruzeiro-safaris.com/media/vendor/metismenujs/js/metismenujs.min.js?1.4.0
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (4275), with no line terminators
Hash 3e880e9406ba5ba20a9f4c4d698306ba
ef0d9dc663a86df6513a322109b78a6c292a2393
8e971cf411d76350688fc78cafe4c695310d29017ee2b09906939cbfa15e83ef
GET /media/vendor/metismenujs/js/metismenujs.min.js?1.4.0 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:42 GMT
accept-ranges: bytes
content-length: 1519
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/bookmundi.png
200 OK 5.9 kB URL GET www.cruzeiro-safaris.com/images/social/bookmundi.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 203 x 48, 8-bit/color RGBA, non-interlaced
Hash 45bff72e5f9eeeb63dea8823c5b1489e
0bed815e8841fb39c3e125e0e30cc38cdc7d1fc1
6fc9f517559a199ebf55eccf6df69382ccb96e3b3d374f2b5dc8a56fdf9bd0be
GET /images/social/bookmundi.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 5908
content-type: image/png
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjaln6iArmlw.woff2
200 OK 11 kB URL GET fonts.gstatic.com/s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjaln6iArmlw.woff2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 10796, version 1.0
Hash 4b797bf23aa9c860435c138ee9329905
921610368202115ad96ed1d018b2f59d295469ec
a68929959750fba2f6aec7649a51635077b43414ec1f119988cbc06e97387715
GET /s/roboto/v47/KFOMCnqEu92Fr1ME7kSn66aGLdTylUAMQXC89YmC2DPNWuYjaln6iArmlw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cruzeiro-safaris.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:28:14 GMT
expires: Fri, 13 Mar 2026 09:28:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Jan 2025 18:23:11 GMT
content-type: font/woff2
age: 73669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
404 Not Found 0 B URL GET cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/images/widgets/viator-top-rated.png HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cruzeiro-safaris.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html;charset=utf-8
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
content-language: en
x-unique-id: A752EC15:A67E_0A280907:01BB_67D3C4F4_14435A1:70586
traceresponse: 00-55ee21cee6bd4b69ae4c92a748f42619-bcafbc3ae5a55d9f-01
expires: Fri, 21 Mar 2025 05:56:04 GMT
server: Apache
accept-ranges: bytes
age: 0
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding, Accept-Encoding
content-length: 944
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js
200 OK 39 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (39147), with no line terminators
Hash cc5785d39ccae18244cfee477d57e5f6
6b62d44b283928d2d75e1edff303644af9119c7b
8c424c0842c44d91f5288748913650eca4e3691bfd97d7185c489e8752803a49
GET /orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC17:A25A_0A2806EB:01BB_67D2B257_17A0A65:53AAE
traceresponse: 00-259cd20a51b64698bb46779fc3a121a2-831a8052c9acf42c-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 11089
X-Firefox-Spdy: h2
POST www.viator.com/graphql/
200 OK 217 B IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 06ca3c50f8ec9fc75a2fc3021a987203
d56543cbb0710fe13d8a08d36d67fdd75f2fe382
1baffec593e14e91bd2ac3bfa6e1e52a942611409518763daa7f47ead7c68b26
POST /graphql/ HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
content-type: application/json
viator-currency: USD
viator-visit-id: 17b3af69-702d-4fbe-8535-b0e589386dac
viator-visitor-ref: VIS-1f635046-4812-4a9d-ac0c-12e772c67102
viator-persistent-cookie-id: 2822c056-c159-4af0-8a4b-1b98277884b5
viator-platform: WEB
viator-device: DESKTOP
x-forwarded-for: 91.90.42.154
apollographql-client-name: com.viator.orion-browser-prod
traceparent: 00-526884b7e1945cace2402020e4db296d-d2db1b5a722e24e2-01
tracestate: es=s:0.1
Content-Length: 1175
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-encoding: gzip
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
x-unique-id: A752EC1B:DBAD_0A280D35:01BB_67D3C4F7_1241F11:7155A
traceresponse: 00-526884b7e1945cace2402020e4db296d-d2db1b5a722e24e2-01
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: origin, Accept-Encoding
x-datadome: protected
set-cookie: datadome=clNRNQHAVhdLDarWDa4_Uha9q0X~loRgVZkVCRtFHlCPtt0n6_XAOXMTaCEM4Ds2JErnmunzlCuWAgrxBNDPt0U5QkJQS0qohivgTuXteWFA~dd4Z1mKjdnPvWMhbwGe; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=Lax
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/TRANSPORT/AIRPORT_TRANSFERS.jpg
200 OK 154 kB URL GET www.cruzeiro-safaris.com/images/TRANSPORT/AIRPORT_TRANSFERS.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 596x611, components 3
Size 154 kB (154180 bytes)
Hash 0e5860696d6227e2a0f24473ef86a7f5
f2abd81b1e0e2788f343ae5d33995bae6e49a068
1462f39064a45bf6f5b4723d0d805d3b338374a6d73b8986ef0ac6bf8646edb5
GET /images/TRANSPORT/AIRPORT_TRANSFERS.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:15 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 154180
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-3RP6FEB55T
200 OK 451 kB URL GET www.googletagmanager.com/gtag/js?id=G-3RP6FEB55T
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11077)
Size 451 kB (450715 bytes)
Hash e75fcc296d5edc983c1e139e4225f9d9
8f6ee9572f99de1003a1c4f0d04e2a049beb239f
896098ab53724eda65976d81ab4346037c58cf43f0d2aba24b72f0e55d398124
GET /gtag/js?id=G-3RP6FEB55T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 14 Mar 2025 05:56:03 GMT
expires: Fri, 14 Mar 2025 05:56:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 144540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cache.vtrcdn.com/orion/react/client/css/67937.a1bc662d84d96ea1.css
200 OK 74 kB URL GET cache.vtrcdn.com/orion/react/client/css/67937.a1bc662d84d96ea1.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (23380)
Hash 1f9648e020e570e6692ba4169b7a3211
955b7eea6a5ff8d7d0548d1776353fedced31060
91bdd756b0d2aeb8e1144628163b6be943e657a200d2a029fe47b9d2330a93a7
GET /orion/react/client/css/67937.a1bc662d84d96ea1.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.10.1
last-modified: Mon, 10 Mar 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC21:4576_0A28047F:01BB_67CEB77F_CD71CB:3030
traceresponse: 00-67276c47f7964ebea03e401761edcfa8-97a61eb1aa1377fb-01
expires: Mon, 17 Mar 2025 09:57:19 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 331125
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 716
vary: accept-encoding, Accept-Encoding
content-length: 18360
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-8cbd2506.5947b5891afc688b.js
200 OK 45 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-8cbd2506.5947b5891afc688b.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (45333)
Hash 6022c0ff1318d20baad68e38b86b2de4
565f00a0b70e126f17333513e74e3cb13bbca3bd
98e0afd7525558cc15a32775b64f745d9011bc6240a72e40314e37352581f4c5
GET /orion/react/client/vendor-8cbd2506.5947b5891afc688b.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:DCC0_0A280EF0:01BB_67C665C4_14405AF:1917AF
traceresponse: 00-8b473d6949834883ba1d571c74e9a9db-bede94be766f05a9-01
expires: Tue, 11 Mar 2025 02:30:29 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1549
vary: accept-encoding, Accept-Encoding
content-length: 15117
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/af.jpg
200 OK 26 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/af.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash bf5560e1a78358be813c781b27868569
8578f35ac9bf7871a0f2a61f37258149a3589d44
d44f21bf07f12f1fd85cd428dde8770ac0cd7128240c7167261c3e062ef3902f
GET /media/attractions-splice-spp-360x240/06/6a/a5/af.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 26330
date: Wed, 12 Mar 2025 10:58:04 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 154683
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -_EkM512VfaQt2jwmIXh5ypLM8MxEH0cpId95-42KlaBcQqkKpFcIQ==
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/07/36/87/78.jpg
200 OK 24 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/07/36/87/78.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 360x240, components 3
Hash ba9e7b43cf4abf3e902ea0b65cf30bb6
e46714df3bc24a162e0eabc44924b1d320f228af
d504fff111c981045e21a2968a558a1835371f28b11765714ec78375cb20a9ec
GET /media/attractions-splice-spp-360x240/07/36/87/78.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 24058
date: Wed, 12 Mar 2025 11:31:04 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 152703
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8uxI6yGCNAIdFGdA2mETLvz8_Bd1SzCqWy7J2jI5dp_yWdJ3VSIO0Q==
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/viator_tripadvisor_cruzeiro_safaris_kenya_logo.jpg
200 OK 7.2 kB URL GET www.cruzeiro-safaris.com/images/viator_tripadvisor_cruzeiro_safaris_kenya_logo.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 289x175, components 3
Hash 255b6c6ae144fe7505ee99f616a687b4
7dc13495703b3dae6de77af1c6ccc2c365cdbfe6
0f7f4b52af2380074196a845a2c408a7a54c8e34099260f6909148062ddb0750
GET /images/viator_tripadvisor_cruzeiro_safaris_kenya_logo.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 7184
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/kato_logo_white.png
200 OK 140 kB URL GET www.cruzeiro-safaris.com/images/kato_logo_white.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 1400 x 497, 8-bit gray+alpha, non-interlaced
Size 140 kB (139873 bytes)
Hash 8f247d5ccfad5e73fc4699e0370d5476
6a3b8c71f2da9d9ff0caf71053b0aa9585fd1672
def691083f7608d5d1e52b509460b655ceda8bfc7a4931f3039090ee42165392
GET /images/kato_logo_white.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 139873
content-type: image/png
X-Firefox-Spdy: h2
GET cruzeiro-safaris.com/
200 OK 0 B IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-powered-by: PHP/8.2.27
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 1d50258f26c6cf42d5b9a980771c1baa=uhvc3pqplqbksqf2b9pogbaduh; path=/; HttpOnly
x-content-type-options: nosniff
last-modified: Fri, 14 Mar 2025 05:56:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 26345
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-bc050c32.88de059f5179f7cc.js
200 OK 15 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-bc050c32.88de059f5179f7cc.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (14990)
Hash e9c405ed8113fbea8e7ffc7a294cac97
cae32acf1186771637e9ec2ef6f77e962225d98a
c3431401befe9436bf15edce2f0ed8e336d5034fa6b13e85b82cb5a6f69f9471
GET /orion/react/client/vendor-bc050c32.88de059f5179f7cc.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC16:419A_0A280AEC:01BB_67C5BD82_F5E44F:15B44D
traceresponse: 00-a91a657ea2174101925309d197a4f311-8927c52ec4335564-01
expires: Mon, 10 Mar 2025 14:32:35 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 919410
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1541
vary: accept-encoding, Accept-Encoding
content-length: 5484
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/team%20members/cruzeiro_safaris_team.jpg
200 OK 1.7 MB URL GET www.cruzeiro-safaris.com/images/team%20members/cruzeiro_safaris_team.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, manufacturer=TECNO, model=TECNO CI6, GPS-Data], baseline, precision 8, 3456x2002, components 3
Size 1.7 MB (1671253 bytes)
Hash 4b5402a83272f984baa1decc25ad0104
7239c03d3019b6cb5bbf0489055aa8ae0377ce4f
a0c50747757e091d7af8b049dcd7cd4a2805197e76f914c7183c8533e7869c01
GET /images/team%20members/cruzeiro_safaris_team.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Fri, 29 Nov 2024 11:55:17 GMT
accept-ranges: bytes
content-length: 1671253
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/fontawesome-free/webfonts/fa-solid-900.woff2
200 OK 78 kB URL GET www.cruzeiro-safaris.com/media/vendor/fontawesome-free/webfonts/fa-solid-900.woff2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
GET /media/vendor/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/media/system/css/joomla-fontawesome.min.css?89febd398596b456839adf8abd6f1718
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:05 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:42 GMT
accept-ranges: bytes
content-length: 78268
vary: Accept-Encoding,User-Agent
content-type: font/woff2
X-Firefox-Spdy: h2
POST www.viator.com/intake/v2/rum/events
202 Accepted 0 B URL POST www.viator.com/intake/v2/rum/events
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 745
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=ZLjPdMHSQscLe9eo8lrKHg2J0yp0gs7a_Dv_KietuR2anacBHxvCueYSdUTQ~_r~rQzrPEGnAI5m8VkhbcLkO0SlN6UasyOVEQibK0g2FRyUsifpcXU4m_fkEArep~ab
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
access-control-allow-origin: https://www.viator.com
x-content-type-options: nosniff
x-unique-id:
traceresponse:
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:08 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
content-length: 0
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/images/10067/viator-top-rated.png
301 Moved Permanently 0 B URL GET cache.vtrcdn.com/images/10067/viator-top-rated.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/10067/viator-top-rated.png HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
location: https://cache.vtrcdn.com/orion/images/widgets/viator-top-rated.png
strict-transport-security: max-age=15724800; includeSubDomains
x-unique-id: A752EC1F:DF7E_0A280907:01BB_67D01014_1A52F5A:170C2
traceresponse: 00-e35a0006ee7741e793ad8f10b227b8ef-96f3122d646ce3b8-01
expires: Tue, 18 Mar 2025 10:27:32 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:03 GMT
via: 1.1 varnish
age: 242911
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1
content-length: 274
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/header.97c35335b0055d8d.css
200 OK 25 kB URL GET cache.vtrcdn.com/orion/react/client/css/header.97c35335b0055d8d.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (2731)
Hash 7fda8566c577ad146e907a3db10c1abb
e7b5c7f0dfbc5ea0db56d366e8c0c85d346603cd
eb23a919250e4af88cb29158480c932448f7121902e5bcbb956774fb23fef102
GET /orion/react/client/css/header.97c35335b0055d8d.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:C652_0A280590:01BB_67C665A9_14DA8EB:19033E
traceresponse: 00-6f5fc50d8358470b8f9d0289b81dad4f-a7f1bace1640929d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1604
vary: accept-encoding, Accept-Encoding
content-length: 5523
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-fe251e28.6bda1cb410073701.js
200 OK 58 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-fe251e28.6bda1cb410073701.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-fe251e28.6bda1cb410073701.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:A1AE_0A2809E5:01BB_67D2B257_129DC85:57377
traceresponse: 00-d3fecf63f908412e86d74dc539b1573e-b38dce987a1a69e8-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 18895
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/images/joomla-favicon.svg
200 OK 1.1 kB URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/images/joomla-favicon.svg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type SVG Scalable Vector Graphics image
Hash 961f84367a731355addba3e27dd56817
84687486fd226c88c332d821ec1783bf36032904
208f007a11b9ce42989529e78b5a3c3dc902de7de76280d4ce55694e9449f581
GET /media/templates/site/cassiopeia/images/joomla-favicon.svg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:05 GMT
server: Apache
x-content-type-options: nosniff
content-security-policy: script-src 'none'
last-modified: Wed, 23 Aug 2023 10:04:24 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 608
content-type: image/svg+xml
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js
200 OK 24 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (23844), with no line terminators
Hash 6649363d1eb2f3e24f07fbef59917ab3
14be773be1b16bbb74aeb71c952e3b9c029530c7
48ffa8ff48a16386aedeafa7a9f450b968381f014ac801dac87c00fe6827f859
GET /orion/react/client/vendor-48b8d778.cfe69639f6ccb52c.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:DCCA_0A280FEB:01BB_67C665C5_234C397:157BC4
traceresponse: 00-170d78fbd87f4a7ba395e2615c11e76b-a629d08f11f99485-01
expires: Tue, 11 Mar 2025 02:30:29 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876335
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1513
vary: accept-encoding, Accept-Encoding
content-length: 7663
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/52866.105e1f9058b181cf.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/52866.105e1f9058b181cf.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (21036), with no line terminators
Hash 3d5c4b8e27a0d1a09d21e124682aa3cf
fd06119a7390615ad31aafaf6e499ca443c723bc
18691d706849fab2019bc651d7e0c7a849bda7ed7be7a2a16bb915e7a506612d
GET /orion/react/client/52866.105e1f9058b181cf.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:482D_0A280F01:01BB_67D2B257_156C110:55642
traceresponse: 00-9b352fad58114f378570bda1b6fd93b8-93a75ded24a5ea40-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 7597
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Medium.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Medium.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14756, version 1.0
Hash a5a04c4bf5607bd7b781ce11c8afb0f7
7dc3af88945e025e8580083eb01554f2932aedfa
4f20d6d9a67bc83b70a6dac6b472d28617d86648565c1545893e624e34ab400e
GET /orion/fonts/Aeonik/AeonikV-Medium.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C4_0A280FEB:01BB_67C665A9_2348FE9:157BC4
traceresponse: 00-5cefdb6505594f4bb0147f7b259b39cb-9964d987518c680d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1533
content-length: 14756
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/69237.ef43f32fca27686f.js
200 OK 6.6 kB URL GET cache.vtrcdn.com/orion/react/client/69237.ef43f32fca27686f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6706), with no line terminators
Hash 26a78afd68866a355165d05ebb36755e
741dbd65bc2e9f7a95d042d487252ceab43fac55
7b07e46499eaed52b5f393bca951dcac091f343d7cd7f691df39b9b98044fdf8
GET /orion/react/client/69237.ef43f32fca27686f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1A:A0CF_0A2806EB:01BB_67D2B258_17A0F66:53AAE
traceresponse: 00-71f89d9ae7ea4047b55d5ef3175065b3-9a21110a75603c9b-01
expires: Thu, 20 Mar 2025 10:24:26 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70299
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 41
vary: accept-encoding, Accept-Encoding
content-length: 2747
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
200 OK 1.9 kB URL GET cache.vtrcdn.com/orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1919), with no line terminators
Hash 0b5ae9ab2f70cad671eb3f299722a7a4
08405e7d29a2181cc0f9133a9179fc391934949c
27aa3103b3d2e6fb9b4f1139ab0958516083b7610aabea19fdf9f8c3f01e22b4
GET /orion/react/client/GoogleTagManager.0c230f8d93ab5000.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1C:485F_0A2806EB:01BB_67D2B257_17A0A2B:53AAE
traceresponse: 00-cfbbadc0776348cb905962d148b0546f-b3d2ee2fcfb857a6-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 130
vary: accept-encoding, Accept-Encoding
content-length: 966
X-Firefox-Spdy: h2
POST www.viator.com/intake/v2/rum/events
202 Accepted 0 B URL POST www.viator.com/intake/v2/rum/events
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 32009
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
access-control-allow-origin: https://www.viator.com
x-content-type-options: nosniff
x-unique-id:
traceresponse:
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
content-length: 0
X-Firefox-Spdy: h2
GET ww1.tomoback.work/?usid=26&utid=8999492620
200 OK 2.9 kB URL User Request GET ww1.tomoback.work/?usid=26&utid=8999492620
IP
Certificate IssuerDigiCert Inc
Subjectww1.tomoback.work
FingerprintB5:98:6E:57:77:93:F8:47:A9:1F:18:21:F7:BC:9D:38:F4:D7:3B:C2
ValidityWed, 15 Jan 2025 00:00:00 GMT - Thu, 15 Jan 2026 23:59:59 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (2966), with no line terminators
Hash 38ba7023b76e847be3f1e2577490ffc8
0b54f4af1afcdb61b147c1d240a68e023e3aa678
bd6b455ff1eebe8b91965a2c2e3fa74e6406b7d6ca85c103a29cfe1691c17a45
GET /?usid=26&utid=8999492620 HTTP/1.1
Host: ww1.tomoback.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Fri, 14 Mar 2025 05:55:57 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 14 Mar 2025 05:55:56 GMT
pragma: no-cache
server: Parking/1.0
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_snqT2DHm27ELYCFvjn4Mr1J6Ncgfdo3kq4S8VlKLezU7heUgv20R6WS3F30poMPEG3LuXHx3UWB8ejPyQt3h8Q==
x-cache-miss-from: parking-77f77f4ddf-q5xln
X-Firefox-Spdy: h2
GET forlindma.online/api/v1/pxcheck?impId=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cHM6Ly9mb3JsaW5kbWEub25saW5lL2FwaS92MS9weD94bWxpZD1zYUxyb0pFNjRlZFBmN082R2F3ODNnenZNeU0ybTBCdlBVWlprVjM3IiwiZGV2aWNlU3JlZW5TaXplIjoiMTAyNHgxMjgwIiwiZGV2aWNlV2luZG93U2l6ZSI6IjEwMjR4MTI4MCIsInduZDJzcmNSYXRpb0x3cjA2IjpmYWxzZSwidHoiOjAsInR6SW50bCI6IlVUQyIsImlzQm90IjpmYWxzZSwiZkJvdE5hbWUiOiIiLCJmUmVhc29ucyI6IiJ9
302 Found 136 kB URL User Request GET forlindma.online/api/v1/pxcheck?impId=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37&minfo=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
IP
Certificate IssuerAmazon
Subjectforlindma.online
FingerprintC5:0A:8F:01:42:60:DE:6A:27:88:D0:0D:7F:97:E3:5B:99:C5:6A:AD
ValidityMon, 03 Feb 2025 00:00:00 GMT - Wed, 04 Mar 2026 23:59:59 GMT
Size 136 kB (135948 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/pxcheck?impId=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37&minfo=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 HTTP/1.1
Host: forlindma.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forlindma.online/api/v1/px?xmlid=saLroJE64edPf7O6Gaw83gzvMyM2m0BvPUZZkV37
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 14 Mar 2025 05:55:58 GMT
content-type: text/html; charset=utf-8
content-length: 100
location: http://xml-v4.jetlibong-d.online/click?seat=3195215&i=OxQVw2kvrtM_0
access-control-allow-origin: *
vary: Accept, Accept-Encoding
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/25623.3c791c6d33e38909.js
200 OK 199 kB URL GET cache.vtrcdn.com/orion/react/client/25623.3c791c6d33e38909.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Size 199 kB (199105 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/25623.3c791c6d33e38909.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:C8AB_0A2806EB:01BB_67D2B257_17A0A69:53AAE
traceresponse: 00-5d8240bbf44e4344849c9e2c8f56a7a3-8f2392e8f1d0c4bc-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 131
vary: accept-encoding, Accept-Encoding
content-length: 21679
X-Firefox-Spdy: h2
GET digitalasset.intuit.com/render/content/dam/intuit/mc-fe/en_us/images/intuit-mc-rewards-text-dark.svg
200 OK 11 kB URL GET digitalasset.intuit.com/render/content/dam/intuit/mc-fe/en_us/images/intuit-mc-rewards-text-dark.svg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectdigitalasset.intuit.com
FingerprintB3:F6:DD:E8:0B:A4:C9:A0:E6:A3:53:94:46:41:52:58:12:E2:44:DE
ValidityTue, 23 Jul 2024 00:00:00 GMT - Tue, 12 Aug 2025 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash bc9683d99df53c62563a5b0f8f6df7f8
fc28e957f09cb0f48e27406442a25cb2c40564e0
accfeda559fe5ed42799382b66b15b55efa0d610e4857f2ef02c763ad3bf3997
GET /render/content/dam/intuit/mc-fe/en_us/images/intuit-mc-rewards-text-dark.svg HTTP/1.1
Host: digitalasset.intuit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: frame-ancestors https://*.intuit.com https://*.google.com https://*.ampproject.org https://*.ampify.io https://*.mailchimp.com;
content-type: image/svg+xml
etag: "2ca6-601df65c4e040-gzip"
last-modified: Tue, 01 Aug 2023 16:54:17 GMT
server: Apache
x-content-type-options: nosniff
x-dispatcher: dispatcher2uswest1-b80
x-frame-options: ALLOW-FROM https://*.intuit.com https://*.mailchimp.com
x-vhost: publish-oidam
content-length: 4576
cache-control: max-age=86400
date: Fri, 14 Mar 2025 05:56:02 GMT
vary: Accept-Encoding
content-disposition: inline
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js
200 OK 26 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25640), with no line terminators
Hash 0b940330025e83cfffb779f734dcbafa
f8e7222dac409c9993787ee4d421f794ba28f480
ad7d628f3d65dadf23a3f7147762bdd30d17f47153eb8f0667478133263aeb51
GET /orion/react/client/vendor-fb5debe7.e7009b7b0825f474.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:EF0C_0A280BF4:01BB_67C665A9_FA3DC7:3238E9
traceresponse: 00-26eb321fd28f4673905e9e6e97464dd8-95f63a944ee9f12c-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1535
vary: accept-encoding, Accept-Encoding
content-length: 8020
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/52866.105e1f9058b181cf.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/52866.105e1f9058b181cf.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (21036), with no line terminators
Hash 3d5c4b8e27a0d1a09d21e124682aa3cf
fd06119a7390615ad31aafaf6e499ca443c723bc
18691d706849fab2019bc651d7e0c7a849bda7ed7be7a2a16bb915e7a506612d
GET /orion/react/client/52866.105e1f9058b181cf.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:482D_0A280F01:01BB_67D2B257_156C110:55642
traceresponse: 00-9b352fad58114f378570bda1b6fd93b8-93a75ded24a5ea40-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 134
vary: accept-encoding, Accept-Encoding
content-length: 7597
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/blg.png
200 OK 4.7 kB URL GET www.cruzeiro-safaris.com/images/social/blg.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Hash f4d353b1d3caac5b371e6df7a6ede420
c92121e8da79b0ddafd67a492b6a6106a221a92f
6a1b922e613b6a597bb2c51d93ea739056afcdf9e6cfc25bd9e8854cbbcce6c1
GET /images/social/blg.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 4737
content-type: image/png
X-Firefox-Spdy: h2
GET dd.viator.com/tags.js
200 OK 120 kB IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerLet's Encrypt
Subjectdd.viator.com
Fingerprint90:BC:30:A5:4F:2F:02:52:E0:D6:91:07:48:E0:33:2C:73:31:BD:48
ValiditySun, 05 Jan 2025 12:05:04 GMT - Sat, 05 Apr 2025 12:05:03 GMT
File type JavaScript source, ASCII text, with very long lines (65426)
Size 120 kB (119628 bytes)
Hash caf9cc585f5fb714f2d76e05f94c0213
7a7b69aa83f8718d7c922df158c1d5cc9c173dbe
655512a3c81383016e64e211bb9845d099cbcf63bda3ee19934079942b3513de
GET /tags.js HTTP/1.1
Host: dd.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Cookie: datadome=i4YOviCywvhyvGuMUnpdXrMHhfvX9NfZFLbx6WZjDqSXasVAzFWD8Ql_PZ29fWFPEXaY3yfcz5tvPBr4qzlS6flFeIXtmGmU59kVwiAGpg1G6uhIiLklthblj4xYmkge
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 11 Mar 2025 11:41:52 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: NL7Laj3g2rNflMEmNQOVASNS8gpjcYjD
server: AmazonS3
date: Fri, 14 Mar 2025 05:38:33 GMT
cache-control: max-age=3600, public
etag: W/"caf9cc585f5fb714f2d76e05f94c0213"
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PmyWbXq76eVZtWFi8xiZc5odHC23BqyAzmP2ZAJwjwYUVu12tkxaHA==
age: 1067
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: accept-encoding, Origin
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-547c1394.615a6afbf5b80769.js
200 OK 49 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-547c1394.615a6afbf5b80769.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (48681), with no line terminators
Hash fa7963f5dc38ee3999d6bc4869d89f0e
6e9ad3747658fe0e95cbbe0718b35e096ce48b0a
30a966b7f0484fe821b774da14b3347ca2251b10b2351dd914329583d83a12ee
GET /orion/react/client/vendor-547c1394.615a6afbf5b80769.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665A9_D6B6CB:13C125
traceresponse: 00-6d35a104192e4012a32d52e7121c85c7-acb955f0a03ca3b6-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1526
vary: accept-encoding, Accept-Encoding
content-length: 15265
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/7d.jpg
200 OK 21 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/7d.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 97894551029e1578b29c47a7711294e1
2f8717c26777d083c198a973cf6328dfc5f871af
9271562197136bf4f1c7495dbf0480ad45c1dba171150bc35a3c7190c177c877
GET /media/attractions-splice-spp-360x240/06/6a/a5/7d.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 20840
date: Thu, 13 Mar 2025 02:16:11 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 99596
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sh0U-t_a5OPZ5JWg0yz0nqXhaF_8PrS9u8W-ftpJLpxrHxmRF4EyVg==
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/css/camera.css
200 OK 26 kB URL GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/css/camera.css
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
Hash 42977856e33ca09215da85d6041d967b
c13e27efbce1f782bbd5b9a191690cbd72a61d95
dbce83d270868f78f8043c2ef7d2c9169b4d8882a5dbebd83b0de3ca6d1476da
GET /modules/mod_slideshowck/themes/default/css/camera.css HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 17 Aug 2023 08:37:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3334
content-type: text/css
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Regular.woff2
200 OK 14 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Regular.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14340, version 1.0
Hash 727158a77952a97832975108b7c09c4f
5e67b5d0be1ef4b4f09bab6f65925d72d3738d85
179e311e63339f9f0870b1b98fe8da6e7c986ff694827b9e3202ee7c4b022ff4
GET /orion/fonts/Aeonik/AeonikV-Regular.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:C64D_0A280EF0:01BB_67C665A9_143D901:1917AF
traceresponse: 00-0d5548e5c9a64c07af5232a5bb0f1353-bf33c80db5b37fb0-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1562
content-length: 14340
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-8cbd2506.5947b5891afc688b.js
200 OK 45 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-8cbd2506.5947b5891afc688b.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (45333)
Hash 6022c0ff1318d20baad68e38b86b2de4
565f00a0b70e126f17333513e74e3cb13bbca3bd
98e0afd7525558cc15a32775b64f745d9011bc6240a72e40314e37352581f4c5
GET /orion/react/client/vendor-8cbd2506.5947b5891afc688b.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:DCC0_0A280EF0:01BB_67C665C4_14405AF:1917AF
traceresponse: 00-8b473d6949834883ba1d571c74e9a9db-bede94be766f05a9-01
expires: Tue, 11 Mar 2025 02:30:29 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1550
vary: accept-encoding, Accept-Encoding
content-length: 15117
X-Firefox-Spdy: h2
POST dd.viator.com/js/
200 OK 232 B IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerLet's Encrypt
Subjectdd.viator.com
Fingerprint90:BC:30:A5:4F:2F:02:52:E0:D6:91:07:48:E0:33:2C:73:31:BD:48
ValiditySun, 05 Jan 2025 12:05:04 GMT - Sat, 05 Apr 2025 12:05:03 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash e1b784fb72a410b0ed80582f3e6b3057
97e4b75797515e48f9baf418cee7b6f02091edca
b4b3fd71aa71f3968242c1f343b58af59546cc05e344e50b7634e8a6d7389c30
POST /js/ HTTP/1.1
Host: dd.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4850
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 232
date: Fri, 14 Mar 2025 05:56:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
server: DataDome
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9jp7HAwY2GPfeK2EPlDIZBqs4_2eOY87iUCZv2BTYMblSklo0Wr7SQ==
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/com_slideshowck/assets/jquery.easing.1.3.js
200 OK 3.3 kB URL GET www.cruzeiro-safaris.com/media/com_slideshowck/assets/jquery.easing.1.3.js
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (3336), with no line terminators
Hash fbf89a15e14dc7d71ec2077ee2b83a48
58424608aa78df95ccac85e699ae52469554e4a8
6ac2e1c739a46cbc9df4b8613d94cc3cbee702cc04435dbf60509de851fa3975
GET /media/com_slideshowck/assets/jquery.easing.1.3.js HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 17 Aug 2023 08:37:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 823
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288
200 OK 26 B URL GET www.cruzeiro-safaris.com/media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with no line terminators
Hash 4784e5a3120a814edde6c6088aa30964
04499b98c0305b16b373dff09fe79d1290976288
47084350921ff4f9e4908afef36723b84de4247eaf51c403950638b9126c8f4b
GET /media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:44 GMT
accept-ranges: bytes
content-length: 46
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/safaris/lions.jpg
200 OK 32 kB URL GET www.cruzeiro-safaris.com/images/safaris/lions.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x375, components 3
Hash 17122a30ad6fba04840e2b4cca5863a2
39850dd41cfd40f7830db6b855033a93eb5c1a3a
8fac717efb1751584ea446f2861fddacb48deb5f016337ab017f3ba92dae7c1c
GET /images/safaris/lions.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 31662
content-type: image/jpeg
X-Firefox-Spdy: h2
GET dd.viator.com/tags.js
200 OK 120 kB IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerLet's Encrypt
Subjectdd.viator.com
Fingerprint90:BC:30:A5:4F:2F:02:52:E0:D6:91:07:48:E0:33:2C:73:31:BD:48
ValiditySun, 05 Jan 2025 12:05:04 GMT - Sat, 05 Apr 2025 12:05:03 GMT
File type JavaScript source, ASCII text, with very long lines (65426)
Size 120 kB (119628 bytes)
Hash caf9cc585f5fb714f2d76e05f94c0213
7a7b69aa83f8718d7c922df158c1d5cc9c173dbe
655512a3c81383016e64e211bb9845d099cbcf63bda3ee19934079942b3513de
GET /tags.js HTTP/1.1
Host: dd.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Cookie: datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 11 Mar 2025 11:41:52 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: NL7Laj3g2rNflMEmNQOVASNS8gpjcYjD
server: AmazonS3
date: Fri, 14 Mar 2025 05:38:33 GMT
cache-control: max-age=3600, public
etag: W/"caf9cc585f5fb714f2d76e05f94c0213"
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7g1PiXNA2x9hc_MWlEwxSXGRpuvhv5DKh-F9WOSWTGkkUNGlFPB9fw==
age: 1067
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: accept-encoding, Origin
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-bc050c32.88de059f5179f7cc.js
200 OK 15 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-bc050c32.88de059f5179f7cc.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (14990)
Hash e9c405ed8113fbea8e7ffc7a294cac97
cae32acf1186771637e9ec2ef6f77e962225d98a
c3431401befe9436bf15edce2f0ed8e336d5034fa6b13e85b82cb5a6f69f9471
GET /orion/react/client/vendor-bc050c32.88de059f5179f7cc.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC16:419A_0A280AEC:01BB_67C5BD82_F5E44F:15B44D
traceresponse: 00-a91a657ea2174101925309d197a4f311-8927c52ec4335564-01
expires: Mon, 10 Mar 2025 14:32:35 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 919411
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1542
vary: accept-encoding, Accept-Encoding
content-length: 5484
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js
200 OK 71 kB URL GET cache.vtrcdn.com/orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 74247d6d50c68b22525d6822a315277b
5e0ccd6b4c94fc890d879cd6743ff5d54356785a
5e8be71276454065e904aefb1e740649ed1da80746a3eebde93349dd3a676301
GET /orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:6B38_0A280F01:01BB_67D2B25A_156C71B:55642
traceresponse: 00-ea846490e23a4d16956366a4929da38c-b0e25194752e37ca-01
expires: Thu, 20 Mar 2025 10:24:27 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70299
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 74
vary: accept-encoding, Accept-Encoding
content-length: 23906
X-Firefox-Spdy: h2
GET static.captcha-delivery.com/common/fonts/roboto/roboto.woff2
200 OK 16 kB URL GET static.captcha-delivery.com/common/fonts/roboto/roboto.woff2
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subject*.captcha-delivery.com
Fingerprint08:34:DB:37:CB:02:09:ED:82:0C:B3:27:9F:BA:AF:45:DA:77:DD:3D
ValidityThu, 13 Feb 2025 00:00:00 GMT - Sat, 14 Mar 2026 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15688, version 1.0
Hash aa23b7b4bcf2b8f0e876106bb3de69c6
106ac454ba4e503e0a1cd15e1275130918049182
cc46322d5c4d41da447f26f7fa714827f2ec9a112968c12ef5736c7494985eca
GET /common/fonts/roboto/roboto.woff2 HTTP/1.1
Host: static.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://geo.captcha-delivery.com
DNT: 1
Connection: keep-alive
Referer: https://static.captcha-delivery.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2
content-length: 15688
access-control-allow-origin: https://geo.captcha-delivery.com
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
access-control-allow-credentials: true
last-modified: Fri, 06 May 2022 16:47:07 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 14 Mar 2025 02:43:23 GMT
etag: "aa23b7b4bcf2b8f0e876106bb3de69c6"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dta1SSPj_gjRMXur7npOHAlHeDC6LDcJOoTWBFD2OT20VDZh1v2WZg==
age: 11566
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/a0.jpg
200 OK 25 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/a0.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 6f8498eab432d3d64eed26bddd607f41
d1c07820e5ad4e7ec0208c94b7a28c62ce81eae3
c1948b808f179ca4d12f34590f384938e31b8656c495511aa58ed9937b541a2c
GET /media/attractions-splice-spp-360x240/06/6a/a5/a0.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 25310
date: Thu, 13 Mar 2025 14:50:55 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 54311
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4NmOCBNbylBCxbuisbIYM7URXyQ2MBceak6PK2V1QPxUOUZC8R1Enw==
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/template.min.css?89febd398596b456839adf8abd6f1718
200 OK 274 kB URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/template.min.css?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
Size 274 kB (274107 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/templates/site/cassiopeia/css/template.min.css?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 38378
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117
200 OK 5.4 kB URL GET www.cruzeiro-safaris.com/media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with very long lines (5637), with no line terminators
Hash a824625002246860074351b611f56e26
fa2e0124c53a956df914231c18565822cd596793
2beacc6b6f4700bbf1b5d051061a3cb34fc8d78d874b4d1e675fa531ef508129
GET /media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:44 GMT
accept-ranges: bytes
content-length: 1704
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js
200 OK 56 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (55606)
Hash 937dbf63f48a4fdb6eeceae0f7fb7e5e
7bad5529bf0f2669aa1dedceab1feca31dc10b57
314e27ac3c3d2ccec22aaa118c24a3819a494fdd4adcde37ab7385f2a662c119
GET /orion/react/client/vendor-454f869a.ed6d78ec37a6c4fb.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.10.1
last-modified: Mon, 10 Mar 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:13E9_0A2809E5:01BB_67CFA8B1_C6F1D4:1BC07
traceresponse: 00-41c220b89bbd429eb8c2fa5fe54dcce5-a30bdf992673c9e5-01
expires: Tue, 18 Mar 2025 03:06:25 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 269379
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 574
vary: accept-encoding, Accept-Encoding
content-length: 17392
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-3RP6FEB55T
200 OK 451 kB URL GET www.googletagmanager.com/gtag/js?id=G-3RP6FEB55T
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11077)
Size 451 kB (450731 bytes)
Hash 24b57cb848b9294db3bfdd06e54d8905
532f1d7847c93685c0c8e778777aa661f5a1c50c
3ba802cd1c227fb42985a0c6233635aace641ebe73904560e7f1bf1bbe2bd949
GET /gtag/js?id=G-3RP6FEB55T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 14 Mar 2025 05:56:02 GMT
expires: Fri, 14 Mar 2025 05:56:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 144650
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG_20170216_231431.jpg
200 OK 32 kB URL GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG_20170216_231431.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 460x385, components 3
Hash d1d692b376d19894d3ef50087a8c6279
a5ad89e438862bab87b0c330f867052de4080fb4
92690b3b0a73ea3f4a67f49b7381f99606b102b104c81fd34e3d2aa7cc15ef32
GET /images/wildlife_animals/IMG_20170216_231431.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 32385
content-type: image/jpeg
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Black.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Black.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14776, version 1.0
Hash ae7c1eee3d8b7b9033654ea6cc05fab1
8bc8b77a6993ecaa1671d1b31d81cd5534888793
cac8a7a86533f6ae4924e2a9b77f6bbe758c6ce2a7b723ae12db50409fa0e007
GET /orion/fonts/Aeonik/AeonikV-Black.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:261C_0A280475:01BB_67C665A9_D6B6AD:13C125
traceresponse: 00-fec7c4e238da481183fd6faf3d4c5584-88d7e7265df34a96-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1547
content-length: 14776
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js
200 OK 19 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (19057), with no line terminators
Hash 1957a821717979614a76531edae6c209
b9f873d3a0931773d72b7a5aa0d7db0d70f492af
140462ae16cd3caa98b33b30a88cc5a63ff2b9d6be57633e966a307aed3e2093
GET /orion/react/client/vendor-1f387de6.9ed8d10f081c1201.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88CB_0A280475:01BB_67C665A9_D6B6E2:13C125
traceresponse: 00-f1d13a3902174adc907f60a26ab6561c-87636f1770b46c64-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1523
vary: accept-encoding, Accept-Encoding
content-length: 6050
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/8251.0e9de452613f6441.chunk.js
200 OK 181 kB URL GET cache.vtrcdn.com/orion/react/client/8251.0e9de452613f6441.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Size 181 kB (180555 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/8251.0e9de452613f6441.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:C65A_0A280EF0:01BB_67C665C4_14407B3:1917AF
traceresponse: 00-e77db08bceb1465390f3c8e0947311ad-8b2556e3ded8e561-01
expires: Tue, 11 Mar 2025 02:30:30 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:06 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1318
vary: accept-encoding, Accept-Encoding
content-length: 56621
X-Firefox-Spdy: h2
GET static.tacdn.com/img2/brand_refresh/Tripadvisor_lockup_horizontal_registered.png
200 OK 11 kB URL GET static.tacdn.com/img2/brand_refresh/Tripadvisor_lockup_horizontal_registered.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectstatic.tacdn.com
FingerprintDB:48:F1:E9:F3:4E:F9:70:2D:B0:50:3E:DB:E1:A9:77:B4:63:5F:F1
ValidityWed, 05 Mar 2025 07:47:01 GMT - Mon, 06 Apr 2026 07:16:00 GMT
File type PNG image data, 1024 x 156, 8-bit/color RGBA, non-interlaced
Hash 110a98da13403f224126135a6c652164
aaca8d9161ffb3baea982f949445c81eab40761b
9f9448610a4bc545e641a9c019a5b1e57e4efcd3b1da38b95936ec297eb02ea4
GET /img2/brand_refresh/Tripadvisor_lockup_horizontal_registered.png HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
last-modified: Thu, 02 Jul 2020 16:01:49 GMT
cache-control: max-age=2592000
expires: Sun, 13 Oct 2024 04:10:25 GMT
timing-allow-origin: *
content-type: image/png
x-request-id: beb7465a-ae32-4a5b-b3ee-9cf579e05214
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:06 GMT
via: 1.1 varnish
age: 270158
x-served-by: cache-hel1410020-HEL
x-cache: HIT
x-cache-hits: 403
x-timer: S1741931767.757358,VS0,VE0
content-length: 11042
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/0f/70/8f/ef.jpg
200 OK 32 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/0f/70/8f/ef.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3
Hash 91eee2dd1ace4d177b80dbe0766015a5
c3f6c20351700b71d4b0597ddeed85dfc03c80f1
999cf92ff945e5455e2e464100a0886935fe32d322988c99f4923144e2c65a5e
GET /media/attractions-splice-spp-360x240/0f/70/8f/ef.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 31985
date: Wed, 12 Mar 2025 10:49:14 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 155213
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xAdSEanceGMT8svbYbohRZ1WBso2PKvywQREAfRWodmvVIDhLaP6og==
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/bootstrap/js/collapse.min.js?5.2.3
200 OK 5.0 kB URL GET www.cruzeiro-safaris.com/media/vendor/bootstrap/js/collapse.min.js?5.2.3
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (5121), with no line terminators
Hash a5a5a1ed3d7821050c1c8840d7f4861c
a521c0c7ffa464f691fd1374d9e8493b82a43805
efc27622102a7bfc85ad29d56928e1cea16940931a3f0202c91a3097a72e09dd
GET /media/vendor/bootstrap/js/collapse.min.js?5.2.3 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:42 GMT
accept-ranges: bytes
content-length: 1737
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/74108.175c3d89ea23d403.js
200 OK 76 kB URL GET cache.vtrcdn.com/orion/react/client/74108.175c3d89ea23d403.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/74108.175c3d89ea23d403.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC20:8B8A_0A2807A3:01BB_67D2B1B7_1AC97FE:4FC0A
traceresponse: 00-6e8eb016e31e4d0c8675853de25cd3e5-a56c40a02e5d02c3-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 24623
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/safaris/amboseli-elephants.jpg
200 OK 60 kB URL GET www.cruzeiro-safaris.com/images/safaris/amboseli-elephants.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=500, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=919], baseline, precision 8, 640x348, components 3
Hash def3e64d85661aace1a7c0502515bdd5
898a8cba872ad70ef089c0972cbdafe6a81fdeae
8e06e6777f5daf17c713f83199f88be546c45b42593452330e9602183841592e
GET /images/safaris/amboseli-elephants.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 59912
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/accomodation/olare_masai_mara_tented_camp.jpg
200 OK 131 kB URL GET www.cruzeiro-safaris.com/images/accomodation/olare_masai_mara_tented_camp.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 1280x900, components 3
Size 131 kB (131302 bytes)
Hash 010622fc3b3cb778638eb49f996b9e09
2b69c4396159f47ab0270082c917b2fd1c1ab70b
d8b7ec7b1011f0677757f4a79470b869a181f6b0e66ffe525d04a3d3879aa881
GET /images/accomodation/olare_masai_mara_tented_camp.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 131302
content-type: image/jpeg
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/69237.ef43f32fca27686f.js
200 OK 6.6 kB URL GET cache.vtrcdn.com/orion/react/client/69237.ef43f32fca27686f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (6706), with no line terminators
Hash 26a78afd68866a355165d05ebb36755e
741dbd65bc2e9f7a95d042d487252ceab43fac55
7b07e46499eaed52b5f393bca951dcac091f343d7cd7f691df39b9b98044fdf8
GET /orion/react/client/69237.ef43f32fca27686f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1A:A0CF_0A2806EB:01BB_67D2B258_17A0F66:53AAE
traceresponse: 00-71f89d9ae7ea4047b55d5ef3175065b3-9a21110a75603c9b-01
expires: Thu, 20 Mar 2025 10:24:26 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70298
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 40
vary: accept-encoding, Accept-Encoding
content-length: 2747
X-Firefox-Spdy: h2
POST www.viator.com/intake/v2/rum/events
202 Accepted 0 B URL POST www.viator.com/intake/v2/rum/events
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /intake/v2/rum/events HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-ndjson
Content-Length: 36316
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=ZLjPdMHSQscLe9eo8lrKHg2J0yp0gs7a_Dv_KietuR2anacBHxvCueYSdUTQ~_r~rQzrPEGnAI5m8VkhbcLkO0SlN6UasyOVEQibK0g2FRyUsifpcXU4m_fkEArep~ab
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
access-control-allow-origin: https://www.viator.com
x-content-type-options: nosniff
x-unique-id:
traceresponse:
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:08 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
content-length: 0
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/js/mod_menu/menu-metismenu.min.js?89febd398596b456839adf8abd6f1718
200 OK 370 B URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/js/mod_menu/menu-metismenu.min.js?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (382), with no line terminators
Hash 333dd5bce98067a8e2742af2df14a9f3
90e711af42758194704f5c833b99a015ef8d1287
6dee194c2cd601b0583eb4d3e284201073ba73d6565cdb310bfa6bc5e4fce003
GET /media/templates/site/cassiopeia/js/mod_menu/menu-metismenu.min.js?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 252
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
200 OK 63 kB URL GET www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2e2d19ce-a0cf-4731-9e73-0ae271364581
orion-implementation-version: 2025.03.13.1
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-encoding: gzip
content-language: en
set-cookie: x-viator-tapersistentcookie=2e2d19ce-a0cf-4731-9e73-0ae271364581; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
x-viator-tapersistentcookie-xs=2e2d19ce-a0cf-4731-9e73-0ae271364581; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=none
SEM_PARAMS=%7B%7D; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
SEM_MCID=42861; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
EXTERNAL_SESSION_ID=; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
LAST_TOUCH_SEM_MCID=42861; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
XSRF-TOKEN=c9b2ad27-7267-4540-9f16-3882e0e87639; Path=/; Secure
ORION_SESSION=iVCyEGTEscHbVhwX2EVCnA%3D%3D%7CcibaTCSV29HR9QJoJ2wM6aorBafoSDV4bOiUQe2GLHSr8wHSgJ9C1GElrzH6xIzT2POHZdKU2wgsiV3ttCTHYu97XP73yHYceUNup3yb05uhSm21Mg2aTmtjcE89GYR%2BODu2bn9YJFa4hsVl6k0kPGvQipKnCiyWod5syD3vhtv6WnBw9x8mvHr1BLlopNwbhXQ6G5eqm6CYkQm95G2EbprpuYgGQX7sAvCnu9pRkvc7kSumZUdqm76s4zdtg7CyacdgJTuM3eGYBRFM2uyUgCZVfY0tpHCKTNjZOcKsg1S7Fyy9XVfchSdO6eLrx%2B%2FyBIQzNEPVWyxuvC8UAOQnkBCHFBooaS7L3y5Pc3NkUCoQ8zw6%2B%2FDLARFlVtzu0xwMsc5haLgY4OB0e9oE6ZDR55N14ZrfCbFpwCX%2FsfWE3UesPA6MXwjk82tjNQHNx1J71HPDQpfKPPVLIy4TyenXctJGRfzm%2BjOX0LBpXzuhph1Bk2mo8Ow74PWUboyUCDucnu7VAptVVDIwD4HphO5PRfC9bIUgWxTYIFQz9qldtjivs6oMAzoIitsVTU8%2Ft6JtjNLupUFzAGHwz0eN0SaJqaBoTKkdpnCnUkMIafTzCCkuXOh6LQy7xBsjHQ5uCB6m%2BGGgQwuB8nL76g3a%2BN9tONhrn2nTrjAIpWUyjP%2BEjer183YOJD19KDXYyaPudap85py8ZMxMQpPH4LSvYgnueJCkhKWtE%2Ffk0xcKRwjvtQJnDWwm1wPZ1nIpoF%2FkY9PgluokU55AkhIcsvxmj92d%2BNZHwC9%2B5xTShLdWM52xHygCSPura2w3Pb0mat7Aif6khx0DYbJR3EicUddexXf9VArBv4Qhm%2BPHl5%2FRmJKfIvwQR3jCQCEPWquYOaYX2kaKf3z%2BAUWDJDycpA9jGWB3KBS2K8gp%2Bs1zoKwU9TZBj9fZN37v1m0%2FEm57C2R0xcy3%2FAaP4YezNLTq%2Be%2BFsiM93CAmY7URe%2F0dhax4Jaaj%2BfLMJbS0GXvcbVwWFdPlL%2FqbL0e%2FUhu62DUky3ASzm3m9sp%2FnL9zLOO7EMIIRRDNl7WSoHUiR9VvoHRIJLFOC6lwY1SbDXniewJwBZcB39ZsEDLVga8TSeCi4G9cY%2FUM%2F6NljXdrLxtN7sLkgftS5u8Orr1Hp7ZuQ7xaS6bD00tezO8l%2BGsXMT2MkZ4JDNBTI2fMmNZ1mkSZcH%2FJrB5taeK4AfXhnFIjkfr2p%2Bk%2B%2FXmt0n58yli4Gcc3bpfY8hfJVpL2cxlej9h%2FspCgLl2vEi90h9h7HpBDcCTrBf4jaicrdyi3G5z%2BocJlAO0EO2LHpVIa%2B%2FlE9i5YLYd0k7TO1Egk8UcOLH8ulofT3Zd%2FLDDJZTDG%2FVFfLmoMJbNWoQXNBrt6QcxKPxhYzreFFDF1jaB%2Bxomll8CcFx6XjNTL82Wyi%2F8EfVUq4tZDj%2BTAHecA43oWa74qdDfOavVximXfQrfOb5%2FlDpkc1ae4sffl5xRFRl9DJH3eq6YUWWMSxhqRwULZLxhgB1dptwaJVSUQbG%2B82irO3lDdXTCFudJXnNAWiqXS5cwYB9dbuG45BmgRtj4Df5pHMS7jZIj5%2BEwf5ZCh7usWSZ63unqgk9WL6eKG7oQMVcg0xGNa%2Fow8y0jEeaUZOBWVGQBRi2U71ujrZxtuKPEB7G1uuQVLqUj6kQUmm820ugPPVFcMhtS2NDVTeidVGhWgEYQybU0pXlAKFG07onYD81vpMt4BZDE09Je%2FVk2gYspUNrbcXdo2W6uJsm96N49SVaYI8ccWym%2Faxe0mYaILsCwW%2B1qCFZr9%2BJUsFri1OCVcmNOlYGFcikAgkqekailIRl6sF%2BbzwNzXhx1MS83Brkp8mH3VCdMijKAPcuzFXUJ3pEgsYx2CDcOBKVffsasstDP%2FFyWfy8vDpVSNZiCA5UAXjfQkvHAZHT5kATTRfQLf9Q5kVAAbwUZM2Ss7jmx3QdaxBFj2jAj0LQCMnN6%2BEPEOzZ6OJc%2BcDBQdGfudQ1BsQjDVmdvtMqKrbsU50XiS0E6WyfoK3QQ38fSIRtSqv3D7QY7%2FbAQ3Zeyr9zmRn2Fqs0ARijD%2FHqBSTQ7QtQqGKKmML6CqLXC8nIFNcDtJukF%2BBhGarfS6CCSLhe3LP3bkaL1%2BILNJNRx0uMzIi1Jq4Wtyjz5NTkCJSjQ8X1SICxzfLad%2Fk7c12g2nnQ35mozUME4hjn3PIa69aldDXOFNtfSCNSdF7UXRiXMZ5HqKIrgjy9fUP%2F1z6YirzxrX8QPMuwUtK5yhWuUwvINEXGQ%3D%7CbuP14Zuj8S4%3D%3AunDES54PXW5FlDmy2z7xSEqJ%2BkmE5xJr%2BXyd3hNOwLo%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC1E%3AB974_0A2806EB%3A01BB_67D3C477_1275E0F%3A7176D%7C%7CA752EC1E%3AB974_0A2806EB%3A01BB_67D3C477_1275E0F%3A7176D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
profilingSession=93IIvPrfLkUnMqZxMO%252BXOg%253D%253D%257CG%252FkxoXlRWO1typJpmVS7IvPNXjDz%252BQCWAKZC4nxKfZGyXwzjUCbrN71pG%252F13xQ0z1IPyjQxTxKW7Oew%252BLrmeE5nxSc2YeRCS%252FEwp2qTWVL2YmA%253D%253D%257CXEWKYUiShPY%253D%253ARsUuQCr1iOTuhx%252F0kHH%252BqxagpE8viHHGHr%252FC57pUpZc%253D; Path=/; Max-Age=604800; Expires=Fri, 21-Mar-2025 05:56:04 GMT; Secure; HttpOnly; SameSite=lax
datadome=i4YOviCywvhyvGuMUnpdXrMHhfvX9NfZFLbx6WZjDqSXasVAzFWD8Ql_PZ29fWFPEXaY3yfcz5tvPBr4qzlS6flFeIXtmGmU59kVwiAGpg1G6uhIiLklthblj4xYmkge; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=None
x-unique-id: A752EC1E:B974_0A2806EB:01BB_67D3C477_1275E0F:7176D
traceresponse: 00-b4082e9b58e2409a9fe3a49931690b2e-acdec49cb9e90023-01
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding, Accept-Encoding
x-datadome: protected
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js
200 OK 71 kB URL GET cache.vtrcdn.com/orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 74247d6d50c68b22525d6822a315277b
5e0ccd6b4c94fc890d879cd6743ff5d54356785a
5e8be71276454065e904aefb1e740649ed1da80746a3eebde93349dd3a676301
GET /orion/react/client/PARTNER_WIDGET.9863577cf86c2663.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:6B38_0A280F01:01BB_67D2B25A_156C71B:55642
traceresponse: 00-ea846490e23a4d16956366a4929da38c-b0e25194752e37ca-01
expires: Thu, 20 Mar 2025 10:24:27 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70298
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 73
vary: accept-encoding, Accept-Encoding
content-length: 23906
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Bold.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Bold.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 15012, version 1.0
Hash cc0d07567912434a0ced128ad57266d6
804d104c654357f140200d9bca375a9b86ea44e8
6c32406e74d6414154fbf20a63eaae697b8e0d632868d0194dcfe80702bedb35
GET /orion/fonts/Aeonik/AeonikV-Bold.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C1_0A280FBA:01BB_67C665A9_15A0C0F:11FE0
traceresponse: 00-c0c242eab460498d863e1cfa123f607b-89312f93fcf9b7de-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876364
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1573
content-length: 15012
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/e6/b2/be.jpg
200 OK 23 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/e6/b2/be.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 87d39e8703484e82495f4816a64dfddc
9f9ba25139ce139b9947d9ab880935ddb525813a
c86ec1a9094024841c8f2df29105180b5e3ee3fc7cf49823674f0fdd0aceacd5
GET /media/attractions-splice-spp-360x240/06/e6/b2/be.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 22977
date: Wed, 12 Mar 2025 11:31:03 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 152704
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -hJW1-e4bDRQ4YK1EFV8RJPFl0vbYobNT9nMQasN0IY1CuuiwwJNfQ==
X-Firefox-Spdy: h2
301 Moved Permanently 136 kB IP
ASN #24940 Hetzner Online GmbH
Certificate IssuerGoGetSSL
Subjectzeep.ly
Fingerprint32:41:7F:01:EF:81:80:A7:6E:12:EC:6C:6E:70:88:57:B4:D4:CF:F0
ValidityFri, 31 Jan 2025 00:00:00 GMT - Thu, 01 May 2025 23:59:59 GMT
Size 136 kB (135948 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /GAuHC HTTP/1.1
Host: zeep.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=4e40bf764dc3f740efb31d6f95d21243; path=/; secure
short_517674=1; expires=Fri, 14-Mar-2025 06:10:59 GMT; Max-Age=900; path=/; HttpOnly; secure
location: https://www.cruzeiro-safaris.com/
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 14 Mar 2025 05:55:59 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Roboto:700
200 OK 5.5 kB URL GET fonts.googleapis.com/css?family=Roboto:700
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type ASCII text, with very long lines (5629), with no line terminators
Hash 9029a1cd84e809f9d86b291f56465355
cebf4a08467b7afd270181100e404b2fc1e2cccc
2ee232d5c9ee5ba45eea7a365f67f2714bc6637cbe3aaec41f5dd9e13c87d4bf
GET /css?family=Roboto:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Mar 2025 05:56:02 GMT
date: Fri, 14 Mar 2025 05:56:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js
200 OK 39 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (39147), with no line terminators
Hash cc5785d39ccae18244cfee477d57e5f6
6b62d44b283928d2d75e1edff303644af9119c7b
8c424c0842c44d91f5288748913650eca4e3691bfd97d7185c489e8752803a49
GET /orion/react/client/vendor-34320dc2.2f1dd27d1892333d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC17:A25A_0A2806EB:01BB_67D2B257_17A0A65:53AAE
traceresponse: 00-259cd20a51b64698bb46779fc3a121a2-831a8052c9acf42c-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 134
vary: accept-encoding, Accept-Encoding
content-length: 11089
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/9a.jpg
200 OK 30 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/9a.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash 7bffde191cac7d2f3f86fea51a11cb9e
f4e36d93e6e570cfabbd43a2c58e5869f2c12135
a931e97a8f264602c3ecab71a4ca0eccb4c5a8dc54796af28f617b7a977b0b4f
GET /media/attractions-splice-spp-360x240/06/6a/a5/9a.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 30124
date: Thu, 13 Mar 2025 14:50:55 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 54311
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hzM2V0NDyPVrOMI25WTOcfsMrf0fPVgLLaDQ36e2J1dkvJNsAegobQ==
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js
200 OK 129 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65446)
Size 129 kB (129088 bytes)
Hash 68452a3a95a06ad3f83f2af5a7f3f196
f76f8e96eb74b07d1fa457325cf5e04e8dd178b5
ffda8659e1eb2688b446742b86949b066dbb6f1eb580558cbbd30f6c035cc100
GET /orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88CB_0A280475:01BB_67C665A9_D6E5E0:13C125
traceresponse: 00-92e67c4b4f0a4f829999af571c695225-b0f9ee0b48b757b5-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1551
vary: accept-encoding, Accept-Encoding
content-length: 41564
X-Firefox-Spdy: h2
POST region1.analytics.google.com/g/collect?v=2&tid=G-3RP6FEB55T>m=45je53d0v889129250za200&_p=1741931763546&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&cid=271404735.1741931764&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1741931764&sct=1&seg=0&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5497
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-3RP6FEB55T>m=45je53d0v889129250za200&_p=1741931763546&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&cid=271404735.1741931764&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1741931764&sct=1&seg=0&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5497
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3RP6FEB55T>m=45je53d0v889129250za200&_p=1741931763546&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102803279~102813109~102814060~102825837~102879719&cid=271404735.1741931764&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1741931764&sct=1&seg=0&dl=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F&dt=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=5497 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cruzeiro-safaris.com/
Origin: https://www.cruzeiro-safaris.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.cruzeiro-safaris.com
date: Fri, 14 Mar 2025 05:56:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/vendor/joomla-custom-elements/joomla-alert.min.css?0.2.0
200 OK 6.4 kB URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/vendor/joomla-custom-elements/joomla-alert.min.css?0.2.0
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type ASCII text, with very long lines (6439), with no line terminators
Hash 8c0c9fd947fda46e9f8b6b3b586cfeb0
5689bfc59a1febd85e6930c11f5a0a04e646700e
668a4bd8d041e34d13ba51c6a9d0435299c40f2e77e69ff829aedfded459baac
GET /media/templates/site/cassiopeia/css/vendor/joomla-custom-elements/joomla-alert.min.css?0.2.0 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 1697
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
GET www.viator.com/orion/partner/widget-main.js?widgetPreview=false&date=1741931763618
200 OK 2.9 kB URL GET www.viator.com/orion/partner/widget-main.js?widgetPreview=false&date=1741931763618
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3056), with no line terminators
Hash 43674e7d8088253c6b0c2542db585ae2
e86c88d746132ff36486241aa745a37a0bb35ec3
eeca667a7f654e067ef09fc293fd9b34362757c18e5309f38c9f2566170d07d4
GET /orion/partner/widget-main.js?widgetPreview=false&date=1741931763618 HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC19:8BA2_0A2806EB:01BB_67D3C4C6_1275DB9:7176D
traceresponse: 00-b4b8b92e24ce425ab456d2a999a0b449-8a2b1589529b6a61-01
expires: Fri, 21 Mar 2025 05:56:03 GMT
server: Apache
accept-ranges: bytes
age: 0
date: Fri, 14 Mar 2025 05:56:03 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding, Accept-Encoding
content-length: 1334
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/safari%20rally%20kenya/cruzeirosafaris_safarirallykenya_2.jpg
200 OK 292 kB URL GET www.cruzeiro-safaris.com/images/safari%20rally%20kenya/cruzeirosafaris_safarirallykenya_2.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x820, components 3
Size 292 kB (291828 bytes)
Hash 09646b4e07c5c2224b8f05112d96064b
203282033b8509df693b8e40f31dc5ee6919c384
0aa2bd167d473bbe56bc0ab661fbac1327bbc313ae4d2e490f5cf47bc4560923
GET /images/safari%20rally%20kenya/cruzeirosafaris_safarirallykenya_2.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 20 Nov 2024 09:54:32 GMT
accept-ranges: bytes
content-length: 291828
content-type: image/jpeg
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-6bc75065.00bd33f1fa449396.js
200 OK 26 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-6bc75065.00bd33f1fa449396.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (25397)
Hash 27c925313ce833dbd6202188a42bfe80
9c6a6156280930566ca4f221aca5608a606abafe
614c8ae94c082a87e5bd8029ef2835a15e6e828383c46cebb1dacf47f489f34f
GET /orion/react/client/vendor-6bc75065.00bd33f1fa449396.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:EF06_0A280FEB:01BB_67C665A9_234901D:157BC4
traceresponse: 00-01546632105d496898319c488c2c0626-bec8e6f42b2ab943-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1507
vary: accept-encoding, Accept-Encoding
content-length: 8266
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-b21522ef.49d3a63228cf708a.js
200 OK 183 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-b21522ef.49d3a63228cf708a.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 183 kB (182631 bytes)
Hash a66cadff53ac20d8560bee7b6b8d2cf4
ad49f64a48023c97a6abdb64f9a2b2920c6355f2
7549c0f4ab6cc10ac16f3567f20948b3408f062c9625d6bd8b8d596758402e18
GET /orion/react/client/vendor-b21522ef.49d3a63228cf708a.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC17:0AA4_0A2807A3:01BB_67D2B257_1AC9880:4FC0A
traceresponse: 00-3f6870bb8bd743e1bfe303c8dd10f0fc-99b0b3ce25d98d72-01
expires: Thu, 20 Mar 2025 10:24:24 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 49011
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/12512.c9bb2e24c5c6e61f.js
200 OK 25 kB URL GET cache.vtrcdn.com/orion/react/client/12512.c9bb2e24c5c6e61f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (24939), with no line terminators
Hash 84b8efde945aea370029e5f3f00aa2fe
022ee989ba65b35442607e91a9a046fc7440e6b5
238eae894f4466a83be35a11ac1f64d5547ea6f4c86ee0dee8445fb4965587bc
GET /orion/react/client/12512.c9bb2e24c5c6e61f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:4B5D_0A280F01:01BB_67D2B257_156C16C:55642
traceresponse: 00-2f74a47077e74ed1bbe1c7f96b5666cf-bb0b244a97e7532e-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 7350
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/newtrendsexpress_logo_holiday.jpg
200 OK 21 kB URL GET www.cruzeiro-safaris.com/images/newtrendsexpress_logo_holiday.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 495x213, components 3
Hash 750faf77424508ba2cdc2c469705694a
59e7c82c60468151f25b41ade096da584d299ed5
1c72bd8a4052f2e2d9b0dc7c2969be914845b3feb4a9c1a484165b91ec59f6f3
GET /images/newtrendsexpress_logo_holiday.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 20789
content-type: image/jpeg
X-Firefox-Spdy: h2
GET www.yourafricansafari.com/static/operators/img/widget/logo-and-text.png
200 OK 13 kB URL GET www.yourafricansafari.com/static/operators/img/widget/logo-and-text.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectyourafricansafari.com
Fingerprint21:E3:6B:0F:BB:6E:5E:EF:77:1B:34:29:4C:56:DE:45:AC:61:83:EB
ValidityMon, 03 Feb 2025 05:01:36 GMT - Sun, 04 May 2025 06:00:13 GMT
File type PNG image data, 172 x 113, 8-bit/color RGBA, non-interlaced
Hash 0e5c9caa3bada8ccf142c67abb1c595a
6094d118963dbaa4c30a08477f18b311437537e8
8590fdac408550759a65aece492f133664273f297089f797e08c81ddcfa05de2
GET /static/operators/img/widget/logo-and-text.png HTTP/1.1
Host: www.yourafricansafari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
content-type: image/png
content-length: 12667
last-modified: Wed, 10 May 2023 15:10:44 GMT
etag: "645bb3f4-317b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 920116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QhNEChT9AzCsWMoXm8jlHtQIYLkNByurRmUR3nHFmmPrG3zpM89bFF1AODz0LGM1S7jYFXoF2vsKFeKa9Rg8eX5R74NrC2ySb5xAtnKULOoqtFyyskuKQ2CfmSHOSJ4Tz7svBy5vPP1R9jz9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201868a8ecc56cb-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=714&min_rtt=414&rtt_var=473&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3304&recv_bytes=1257&delivery_rate=7288590&cwnd=249&unsent_bytes=0&cid=7a14aaab7f69ca26&ts=89&x=0"
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js
200 OK 38 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (37990), with no line terminators
Hash 2a20f06aa6a03d21447fc926eb702840
4d5bc08785a041f2a8de13f77802b86199518139
5c0174b05cbf99217e484ad6fdf72da0b763ab4cc693be746972d4ef2558f9d6
GET /orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665C4_D6E5E1:13C125
traceresponse: 00-9bb1c00592b0463eab700d061462d022-953dbb54cf27e646-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1513
vary: accept-encoding, Accept-Encoding
content-length: 7673
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js
200 OK 46 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:A1A6_0A280907:01BB_67D2B257_192A11F:5290E
traceresponse: 00-937dc823e8c54207b08d4eb3580aae39-8b498dfb63ca8225-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 132
vary: accept-encoding, Accept-Encoding
content-length: 15871
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js
200 OK 75 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 6d010831f32482ecb21b45bdb7590c72
1fec2983b266ce686519f2d89496177605c65511
26b811b40e04a00e3394ce8cd0f2b9f9521d0b68bef15e92ef8c7c255ce48679
GET /orion/react/client/vendor-a136a7a2.4069311fe4a6718f.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:261C_0A280475:01BB_67C665A9_D6E5B3:13C125
traceresponse: 00-97488b99829a480e8e120b8cff53d528-bc539eab192aabd7-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1541
vary: accept-encoding, Accept-Encoding
content-length: 18417
X-Firefox-Spdy: h2
GET www.tripadvisor.com/img/cdsi/img2/badges/ollie-11424-2.gif
200 OK 551 B URL GET www.tripadvisor.com/img/cdsi/img2/badges/ollie-11424-2.gif
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectwww.tripadvisor.com
FingerprintCC:81:62:D9:4B:68:B9:8F:50:52:F0:8D:28:D0:01:1A:79:FD:F7:E7
ValidityThu, 23 May 2024 15:37:05 GMT - Tue, 24 Jun 2025 13:36:06 GMT
File type GIF image data, version 89a, 31 x 20
Hash c49ee6486f965a57bd7580eefa23c260
41ecc79ff7dd26b4950b04d24c7c5e3eb33742c4
10671a700bbd5ce00557871cc4ee9608332dc396bfea680b700260efaf4e059d
GET /img/cdsi/img2/badges/ollie-11424-2.gif HTTP/1.1
Host: www.tripadvisor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
cache-control: private, max-age=43200
expires: Fri, 14 Mar 2025 17:56:02 GMT
set-cookie: TADCID=OkJaHIVME1V02vtJABQCJ4S5rDsRRMescG99HippfoQ40Y1gGX1CzrgTMeyNsjt5EqPd0A5jw7CzZjY9Sj-RWpCCZLJWhty4MMc; Domain=www.tripadvisor.com; Expires=Mon, 12-Mar-2035 05:56:02 GMT; Path=/; Secure; HttpOnly
TASameSite=1; Path=/; Max-Age=315360000; SameSite=Strict; Domain=www.tripadvisor.com; Secure; HttpOnly
TAUnique=%1%enc%3ANwRZ4TVfeg%2FoERVLgPynkPuEb%2FlOZApOyw%2BKy2fWtQEQ4fRkVrmisdLqBMqFjkwNNox8JbUSTxk%3D; Domain=.tripadvisor.com; Expires=Sun, 14-Mar-2027 05:56:02 GMT; Path=/; HttpOnly
__vt=svnn70X6RvTFLiBXABQCT24E-H_BQo6gx1APGQJPtzQWcQ0Gy7eZD6vYowQwSi6HP4F5bFrPJzOvvWYKOMNq0xalOVOtbhXD7TwPZ6ysfzbKXpt_zc3ai_0Ig6OA5U39Vpe8JuYz3f-iKTqWcGkL5dKDnxc; Domain=www.tripadvisor.com; Expires=Fri, 14-Mar-2025 06:56:02 GMT; Path=/; Secure; HttpOnly
TASession=V2ID.56A31809CBF4E1A8A0A4309C905DB2CF*SQ.1*HS.recommended*ES.popularity*DS.5*SAS.popularity*FPS.oldFirst*FA.1*TRA.true; Domain=.tripadvisor.com; Path=/
ServerPool=A; Domain=.tripadvisor.com; Path=/
TACds=A.1.11424.2.2025-03-13; Domain=.tripadvisor.com; Expires=Tue, 13-May-2025 05:56:02 GMT; Path=/
timing-allow-origin: https://www.tripadvisor.com
content-type: image/gif
x-request-id: 9a86cb5b-964a-4c95-bb01-714ef16ab701
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:02 GMT
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931762.361249,VS0,VE112
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-e3924278.cb0191e0be8c460b.js
200 OK 42 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-e3924278.cb0191e0be8c460b.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (42274), with no line terminators
Hash bf733b5859c9dc89e8b301f6b27d50e7
e92515327aedb473b889429bf90b27f54e2db1b4
7932a3b92e0a87233cb72fcd24acda48caef2589de56e117e9db02d27994a554
GET /orion/react/client/vendor-e3924278.cb0191e0be8c460b.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.11.1
last-modified: Tue, 11 Mar 2025 13:11:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC18:4677_0A2806EB:01BB_67D00E73_18849E0:181EE
traceresponse: 00-3b7d5b88509540a3b69f6110f07338bc-85169c285d8ee782-01
expires: Tue, 18 Mar 2025 10:20:47 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 243317
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 524
vary: accept-encoding, Accept-Encoding
content-length: 14949
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/bdg_now_accepting_pp_2line_w.png
200 OK 13 kB URL GET www.cruzeiro-safaris.com/images/bdg_now_accepting_pp_2line_w.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 334 x 127, 8-bit/color RGBA, non-interlaced
Hash 29b112f4344afeb41834a4b28ef4c0be
37e4289c874cd2236add4a7013a2b0310cc59a63
b5796db96672733b8b49dc498bd4e1e03f54b3b9a9944e202e1f5e418534d1a2
GET /images/bdg_now_accepting_pp_2line_w.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 12843
content-type: image/png
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/images/camera_skins.png
200 OK 24 kB URL GET www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/images/camera_skins.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 220 x 1280, 8-bit/color RGBA, non-interlaced
Hash 44234b21bebe6b318aab47d9e9bbbee9
4e04ceab44860e1863ee24b83cb77750920b2638
a99f5a6bab7efec1d87835d754900adffe01497c407a8749fec13456a3f5baa2
GET /modules/mod_slideshowck/themes/default/images/camera_skins.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/modules/mod_slideshowck/themes/default/css/camera.css
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; _ga_3RP6FEB55T=GS1.1.1741931764.1.0.1741931764.60.0.0; _ga=GA1.1.271404735.1741931764; _gcl_au=1.1.761648866.1741931764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 17 Aug 2023 08:37:36 GMT
accept-ranges: bytes
content-length: 24198
content-type: image/png
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/css/67937.a1bc662d84d96ea1.css
200 OK 74 kB URL GET cache.vtrcdn.com/orion/react/client/css/67937.a1bc662d84d96ea1.css
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type ASCII text, with very long lines (23380)
Hash 1f9648e020e570e6692ba4169b7a3211
955b7eea6a5ff8d7d0548d1776353fedced31060
91bdd756b0d2aeb8e1144628163b6be943e657a200d2a029fe47b9d2330a93a7
GET /orion/react/client/css/67937.a1bc662d84d96ea1.css HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
orion-implementation-version: 2025.03.10.1
last-modified: Mon, 10 Mar 2025 13:10:14 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC21:4576_0A28047F:01BB_67CEB77F_CD71CB:3030
traceresponse: 00-67276c47f7964ebea03e401761edcfa8-97a61eb1aa1377fb-01
expires: Mon, 17 Mar 2025 09:57:19 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 331126
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 717
vary: accept-encoding, Accept-Encoding
content-length: 18360
X-Firefox-Spdy: h2
GET dd.prod.captcha-delivery.com/image/2025-03-14/c3a1a6e2028d536c73d1105111440871.frag.png
200 OK 7.5 kB URL GET dd.prod.captcha-delivery.com/image/2025-03-14/c3a1a6e2028d536c73d1105111440871.frag.png
IP
Requested by https://geo.captcha-delivery.com/captcha/?initialCid=AHrlqAAAAAMAEKL35WmoosYAW1oqmg==&cid=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~&referer=https%3A%2F%2Fwww.viator.com%2Fgraphql%2F&hash=5D768A5D53EF4D2F5899708C392EAC&t=fe&s=45180&e=94673be27ed0ee18d6cc77d67dfe5d3e4491c3b8b305e124a33ced60350aafef&dm=jd
Certificate IssuerAmazon
Subjectdd.prod.captcha-delivery.com
Fingerprint78:DE:FA:F7:3D:63:84:2A:F7:68:BE:5E:19:5C:02:C6:7A:A4:A2:DA
ValidityMon, 27 Jan 2025 00:00:00 GMT - Wed, 25 Feb 2026 23:59:59 GMT
File type PNG image data, 63 x 155, 8-bit/color RGBA, non-interlaced
Hash 3a9147727fc0b420e47da3dd946b7a19
d62a02cdac7b0fcdf13fab50f42c09f40239abb8
f97ef1a649dfca57cc2c1aafb2acde6f9a0e8be4fa10985ab364f025466abaa5
GET /image/2025-03-14/c3a1a6e2028d536c73d1105111440871.frag.png HTTP/1.1
Host: dd.prod.captcha-delivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://geo.captcha-delivery.com
DNT: 1
Connection: keep-alive
Referer: https://geo.captcha-delivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 7484
date: Fri, 14 Mar 2025 00:05:17 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3600
last-modified: Mon, 10 Mar 2025 05:00:41 GMT
x-amz-expiration: expiry-date="Tue, 18 Mar 2025 00:00:00 GMT", rule-id="auto-clean old captchas (7 days)"
etag: "3a9147727fc0b420e47da3dd946b7a19"
x-amz-server-side-encryption: AES256
x-amz-version-id: sxqP2uIO8cwcK1D4razy6Y6LgqDLOIMJ
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 14vAbZsoqT4lxBrZRkkdxati1RAQGSP0uFCNr8c9bGEA0p1pxayrew==
age: 21051
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET static.chatra.io/jscss/78e37d4769f5368f32fc629d8f7d355d533e20a6.css?meteor_css_resource=true
200 OK 83 kB URL GET static.chatra.io/jscss/78e37d4769f5368f32fc629d8f7d355d533e20a6.css?meteor_css_resource=true
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5442587032599594668aa8760b6925e3
2bc5368738f43e2247f3130f32f61779f612d740
8f344c960627db8664cce13a311aa50ce10d2a64515056bfd34103e2300b79b5
GET /jscss/78e37d4769f5368f32fc629d8f7d355d533e20a6.css?meteor_css_resource=true HTTP/1.1
Host: static.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chat.chatra.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
content-type: text/css; charset=UTF-8
last-modified: Mon, 28 Oct 2024 12:46:22 GMT
etag: W/"5442587032599594668aa8760b6925e3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IiYsCfIT8yyVVOYqpX9Yc5JzkA5YaImWIZWZO8z3Lbnx0dhu9iTSuw==
age: 2243165
cf-cache-status: HIT
priority: u=2,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 920186976ed856c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cache.vtrcdn.com/orion/react/client/89869.c1f2556c6db04f41.js
200 OK 21 kB URL GET cache.vtrcdn.com/orion/react/client/89869.c1f2556c6db04f41.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (20915), with no line terminators
Hash 90e05956496a01ac65847d44c52e6a3d
f0deef8bddd70dad007e32da7e20e459eab55f18
1a818e2e2289e08fed4362f7f7503812e059c5023be326a3c647cb503f68a764
GET /orion/react/client/89869.c1f2556c6db04f41.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1E:4B64_0A2806EB:01BB_67D2B258_17A0F65:53AAE
traceresponse: 00-a00d446f1cad4b2185f66c8a1ef01d7d-853bd98cdbbbb63b-01
expires: Thu, 20 Mar 2025 10:24:26 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70298
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 21
vary: accept-encoding, Accept-Encoding
content-length: 7947
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/system/js/core.min.js?576eb51da909dcf692c98643faa6fc89629ead18
200 OK 7.7 kB URL GET www.cruzeiro-safaris.com/media/system/js/core.min.js?576eb51da909dcf692c98643faa6fc89629ead18
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (7978), with no line terminators
Hash e4697d8c60a144543718b2cf17045d32
227198a3573a4612acdcc424b2eb65c98ec48888
2719d44dbcb9928d29713ff54f5d0478bfb553430141c7dcbcf7fef4b0148f37
GET /media/system/js/core.min.js?576eb51da909dcf692c98643faa6fc89629ead18 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:44 GMT
accept-ranges: bytes
content-length: 3163
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET chat.chatra.io/meteor_runtime_config.js?hash=17b088ec6c042bdb83d8bfaadf80a4ecebb4b3e8
200 OK 720 B URL GET chat.chatra.io/meteor_runtime_config.js?hash=17b088ec6c042bdb83d8bfaadf80a4ecebb4b3e8
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
File type ASCII text, with very long lines (800), with no line terminators
Hash 9891f80318da5c1970d2ac8198c02a54
634d0d9958aa7408c8d771e852475816599f46d4
33d466f9adf1d8d6d515d0cec045431869ee0b88ecd9b2ba4e519d7ae8026b5f
GET /meteor_runtime_config.js?hash=17b088ec6c042bdb83d8bfaadf80a4ecebb4b3e8 HTTP/1.1
Host: chat.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chat.chatra.io/?isModern=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"c74e0b779776c03a627c730c95d0f1556fa5401f"
vary: Accept-Encoding
cf-cache-status: HIT
age: 128
priority: u=3,i=?0
server: cloudflare
cf-ray: 920186975ed256c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.cruzeiro-safaris.com/
200 OK 136 kB URL User Request GET www.cruzeiro-safaris.com/
IP
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
Size 136 kB (135948 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:00 GMT
server: Apache
x-powered-by: PHP/8.2.27
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651; path=/; HttpOnly
x-content-type-options: nosniff
last-modified: Fri, 14 Mar 2025 05:56:01 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 26348
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Medium.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Medium.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 14756, version 1.0
Hash a5a04c4bf5607bd7b781ce11c8afb0f7
7dc3af88945e025e8580083eb01554f2932aedfa
4f20d6d9a67bc83b70a6dac6b472d28617d86648565c1545893e624e34ab400e
GET /orion/fonts/Aeonik/AeonikV-Medium.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C4_0A280FEB:01BB_67C665A9_2348FE9:157BC4
traceresponse: 00-5cefdb6505594f4bb0147f7b259b39cb-9964d987518c680d-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1532
content-length: 14756
X-Firefox-Spdy: h2
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/90.jpg
200 OK 30 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/90.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash a9e07d708719a1414062c2f29a9374da
1c5282d035d05cd08806557937dc8fd6d8a107e4
d9cda57fb41d34f1f388ecb7a4661f5b83ca5a5734eb86b20dc01e5770065643
GET /media/attractions-splice-spp-360x240/06/6a/a5/90.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 30434
date: Wed, 12 Mar 2025 11:31:05 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 152702
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CBUdkJAqt8Gw1Vqmax7vlL7egOMHFj34zFSkIGRR55nX8tBqjsi2Mw==
X-Firefox-Spdy: h2
POST dd.viator.com/js/
200 OK 232 B IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerLet's Encrypt
Subjectdd.viator.com
Fingerprint90:BC:30:A5:4F:2F:02:52:E0:D6:91:07:48:E0:33:2C:73:31:BD:48
ValiditySun, 05 Jan 2025 12:05:04 GMT - Sat, 05 Apr 2025 12:05:03 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 8e0117709d50ce2b1b2e8fca4380be57
457478cf703610f0437321cdedaffa046312a356
544cc2c6d4ef8aafd64003bf27d49dc7fb9fec13316d2f7d803c1512800a6f44
POST /js/ HTTP/1.1
Host: dd.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5009
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 232
date: Fri, 14 Mar 2025 05:56:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
server: DataDome
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uqew9cFzpDLKINZd_afCJtvWY1K7NQtUMp_3d-OsvGZj5o-IHsRGhw==
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
GET ww1.tomoback.work/search/redirect.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL
302 Found 93 kB URL User Request GET ww1.tomoback.work/search/redirect.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL
IP
Certificate IssuerDigiCert Inc
Subjectww1.tomoback.work
FingerprintB5:98:6E:57:77:93:F8:47:A9:1F:18:21:F7:BC:9D:38:F4:D7:3B:C2
ValidityWed, 15 Jan 2025 00:00:00 GMT - Thu, 15 Jan 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/redirect.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL HTTP/1.1
Host: ww1.tomoback.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww1.tomoback.work/?usid=26&utid=8999492620
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-type: text/html; charset=UTF-8
date: Fri, 14 Mar 2025 05:55:57 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 14 Mar 2025 05:55:57 GMT
location: /search/tcerider.php?f=https%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DU8uIgOsdNps_0&v=MGZmZDQyZjAxMTJhOTI4MDBiOTM3MGFjN2M5MzIxYjUJMQl3dzEudG9tb2JhY2sud29yazY3ZDNjNGVjMWI4ZDkyLjE3NDMzODg2CXd3MS50b21vYmFjay53b3JrNjdkM2M0ZWMxYjkwMzcuNTQ0Njk3NDAJMTc0MTkzMTc1NwlhZF82M18w&l=ogcwof9HOFhfNVJpCkhPEtWH-7L5WtLZi8BDxyeQk6ft-vXma_rLv8L1Y8jurXFKfRFfB5pRMc9kd3xMVrUrNHxEmfZo5_mWe8NRUjlz-q41J3RvpvL26kOOgzgAN37H_ZSf4a8oFzstlXO9Q0ZSxQM4RHtkCXGiw0KvWsWItpBwWWW8X-RH3STU2FZ9grikLFevBhRGs8lctz3d4EMsCUS509hzx8QJt-cAlyLnWSWHLrfp-iSBfSRgbnfhipOSBbGrcsXXYqVpAhg1mthaS_1l77EI6LrvTqU9gPESLT06OnPoxaMW6P82Obvkz-myU94qmmBvkaStqAPfF02Rdz8ZzoPzEkQ7nFLl7YdWXZcl-yrIVy1OSXeh_cxIBHGNelq1djE0h9bhtnf6H0WpNzy6KsehF2Y0xM6_Qa3xFBDYcgbXWUjF1y7j02c_n-iATaJO9m_0SR0H2yGfgrNP7a6nr3PGjFAbjGfYp9cTBvC6RCIuQt14WvJMncN3Al6Mg5HJUm2y5GNGY0sxYKvgX6fMNa0LcXj0slMS_QsFOuwQAdRuSEOqo-dOZnTJrlOfIK2AejThJQyQ0ST7REKwGxPSKfuV52tpCuTDFqKYNvnAieG-H59n579xfwc4ZEMS6iz7-TMWLkaEBTSq3LCI9MYZ8vysPoT7G6aINF1TgFSAs1Z7SAxeD9znRjN8kk5q2hSxLSL
pragma: no-cache
server: Parking/1.0
x-cache-miss-from: parking-77f77f4ddf-q5xln
content-length: 0
X-Firefox-Spdy: h2
GET chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
200 OK 1.0 kB URL GET chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
File type HTML document, ASCII text, with very long lines (1090), with no line terminators
Hash 6d59392153bb3f5292a589ee644b01e9
5c450bec51137c959f8675a8917149ba00bebcb9
f0131d2a43a608ad01e368f2fbb7ff779681b0bc4cf1684ed7e657d768045b0c
GET /?isModern=true HTTP/1.1
Host: chat.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
content-type: text/html; charset=utf-8
content-security-policy: default-src 'self'; script-src 'self' https://static.chatra.io; child-src 'none'; img-src https://static.chatra.io 'self' data: blob: https://ucarecdn.com https://uc.chatra.io https://uc.chatra-usercontent.com; connect-src 'self' data: https://upload.uc.chatra.io ws://chat.chatra.io/ wss://chat.chatra.io/; style-src 'self' 'unsafe-inline' https://static.chatra.io; media-src data:; form-action 'none'; block-all-mixed-content; frame-src 'none'
strict-transport-security: max-age=31536000
cache-control: public, max-age=300, s-maxage=300, stale-while-revalidate=300, stale-if-error=1800
etag: W/"appV0.0.1739451426"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 218
priority: u=4,i=?0
server: cloudflare
cf-ray: 92018695ed9856c7-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET static.tacdn.com/js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js
200 OK 15 kB URL GET static.tacdn.com/js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectstatic.tacdn.com
FingerprintDB:48:F1:E9:F3:4E:F9:70:2D:B0:50:3E:DB:E1:A9:77:B4:63:5F:F1
ValidityWed, 05 Mar 2025 07:47:01 GMT - Mon, 06 Apr 2026 07:16:00 GMT
File type ASCII text, with very long lines (13794)
Hash 9d1a046b5d9f975765a5adc3c8f2722e
fd964609d091c301d408e879aa431a2a52e74a2c
e94e0140ad5ee0dd772ad05d9ba5cc4cf3e2a1f5d420ea5cb783edbdbdda9f10
GET /js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: envoy
last-modified: Sun, 02 Mar 2025 11:41:28 GMT
cache-control: max-age=31536000, immutable
expires: Wed, 11 Mar 2026 02:38:51 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: br
x-request-id: 8f1f6948-f5d0-4e08-9e94-6b3f23a28e74
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 271033
x-served-by: cache-hel1410020-HEL
x-cache: HIT
x-cache-hits: 3069
x-timer: S1741931765.575457,VS0,VE0
vary: Accept-Encoding
content-length: 4400
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js
200 OK 46 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/vendor-aacc2dbb.7b9f601b95214bc5.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:02 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC14:A1A6_0A280907:01BB_67D2B257_192A11F:5290E
traceresponse: 00-937dc823e8c54207b08d4eb3580aae39-8b498dfb63ca8225-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 70301
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 131
vary: accept-encoding, Accept-Encoding
content-length: 15871
X-Firefox-Spdy: h2
GET chat.chatra.io/sockjs/info?t=1741931765382
200 OK 78 B URL GET chat.chatra.io/sockjs/info?t=1741931765382
IP
Requested by https://chat.chatra.io/?isModern=true#hostId=Ws4pTiu5nACMoQJyb&mode=widget&clientId=oQjd9SJkS2ZuItlpLH2ALd8sF1p-RsJFMi0HliPH&lang=en¤tPage=https%3A%2F%2Fwww.cruzeiro-safaris.com%2F¤tPageTitle=Cruzeiro%20Safaris%20Kenya%20%3A%20African%20Safari%20Holidays%2C%20Book%20Nairobi%20Tour%20or%20Attraction%2C%20Wildlife%20Vacations&prevPage=&referrer=
Certificate IssuerGoogle Trust Services
Subjectchatra.io
Fingerprint41:2A:24:0B:43:BD:6E:00:3A:75:7A:64:73:86:5C:7B:DD:1F:A1:B5
ValidityWed, 05 Mar 2025 06:54:37 GMT - Tue, 03 Jun 2025 07:54:33 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f13bd25e773c644a7e7c245896df1a4b
597c170e04a4e4ad00b12330d751538a1323aba0
2939d7bb916f3db12a6cff48fc8c8557af50edece1f328f89e55353ccfdc6c3d
GET /sockjs/info?t=1741931765382 HTTP/1.1
Host: chat.chatra.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://chat.chatra.io/?isModern=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 14 Mar 2025 05:56:05 GMT
content-type: application/json; charset=UTF-8
access-control-allow-origin: *
vary: Origin, Accept-Encoding
cache-control: no-store, no-cache, no-transform, must-revalidate, max-age=0
cf-cache-status: MISS
last-modified: Fri, 14 Mar 2025 05:56:05 GMT
priority: u=3,i=?0
server: cloudflare
cf-ray: 920186a08dae56c7-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/94.jpg
200 OK 28 kB URL GET media.tacdn.com/media/attractions-splice-spp-360x240/06/6a/a5/94.jpg
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerAmazon
Subjectmedia.tacdn.com
FingerprintCB:F6:1B:CC:00:C1:3C:ED:2C:BF:D6:D4:65:14:CC:4F:7B:0F:24:F5
ValidityThu, 24 Oct 2024 00:00:00 GMT - Sat, 22 Nov 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 360x240, components 3
Hash be3617fed35999e8fe43f7b99187b3ca
3dde1dcbc7929ad77a0854f23ca9205e43a8d7ec
0127c20316f1d7ecce636f425852a9dec94f28f2f6814ba8916f2f61d440ed35
GET /media/attractions-splice-spp-360x240/06/6a/a5/94.jpg HTTP/1.1
Host: media.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/jpeg
content-length: 27508
date: Thu, 13 Mar 2025 14:58:32 GMT
cache-control: max-age=2592000, public
surrogate-control: max-age=2592000
access-control-allow-methods: GET
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: VGh1LCAwMSBKYW4gMTk3MCAwMDowMDowMCBHTVQ=
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
age: 53854
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hdi65FsXWM9dKFvgOGWroXtUTyQq0Nvvaa1VzfKxX_17oagPRtb-sw==
X-Firefox-Spdy: h2
DELETE www.viator.com/orion/ajax/firebase/credentials
403 Forbidden 2.9 kB URL DELETE www.viator.com/orion/ajax/firebase/credentials
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3121), with no line terminators
Hash 4bffe0df47271200f99bb4cd79a29d72
0c2aa43f21a12fe62e07b12927f37242c5270227
558d833328a3d66d39211cefc46a965cfe4ca0075c6cb7d36bd1b57301cd4148
DELETE /orion/ajax/firebase/credentials HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-XSRF-TOKEN: 7850d0d0-3e1d-422c-8801-f1cc69ff9230
traceparent: 00-526884b7e1945cace2402020e4db296d-4fb0bb33ddc5f2b9-01
tracestate: es=s:0.1
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: text/html;charset=utf-8
x-viator-tapersistentcookie: 2822c056-c159-4af0-8a4b-1b98277884b5
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
content-language: en
set-cookie: x-viator-tapersistentcookie=2822c056-c159-4af0-8a4b-1b98277884b5; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
XSRF-TOKEN=7132eac6-0799-4351-a5c5-1903d106f3a7; Path=/; Secure
ORION_SESSION=O7w8TN1494il0IEKmw2BNA%3D%3D%7CjXbBZuKKMRxdjTK4RXO2tT6n9IUFuIAS9CoErDGPbfnnGfV5BLPZfdtb5fEBq8w6z8jgafwWjUen%2Byhp8J%2FcCWCC0qDeVMVK9xbSGf6ArWJLRpUY9rCq%2Fe9jtaSg4Eozn7q9spSmLma1xgjvOiHC1i96vz%2Fcb4qTiDVhv8YAoZnGQm9W3ilvd8WddHiStLbpg6fWv6gKIiW%2FSJONQ%2BJACMOU5ZcjPLByy%2B%2BiqhcLc38PXjbA1jBgbGySMnL7hjdN6r1EuVGN6Lgxdjll8HETvuwHC8Jvv9H6BGnAjps3GUb5I1x%2BvDiIhxjkaKWyDe97%2BAuzfwgSKEJdhhc4%2FvJwjBt8u7B2XCYKJt9J3Ux52jCix789IQHZrrskMHE245lXQDEDrQSC4glPe9NBueO60zrs4qfRd9WpIFiGDCtRLS%2B2WW4150EUh4hBLY%2FS61XI7rYmPkvV8849qpHV1N62u9qlerv5rPO264H3RSXjOADj9A6hMA3v2ge6dGGWf6L0h4b%2By498ogOxx8QQHNsso4x23IgYQzOoKCXLov6TGaK5TPqhpig5jafs%2FvtdBu6HMaDvwE9XlhG6c6YpoL%2FGw5AUdUjf7XEaJzdxzix%2B0LHE%2BYxZr4Dy8zuVpcTWCIQocb8DjUwTmBgKSwVvKa4xNbsUit77tnWQrjsXc101KF7jJudKfdhgaSi3FZtammZrrk0K%2BOkfBccg%2B2P8uWGLdTG%2BgOGgdtDcR7w2fxMdZIhhTlsw%2FcJELarXie4HJIkUnqyO0H9BCtLHVtzzJrrObHXGthl%2Fs3bxaAf1RHY7Xlls%2B62eji8pS9ATFUnWef1TXLvNX0UgvLyB6v1yhj62FVaLgJbBVDBPEEPdKhuIU5zgRpI6YUtFLYj5yyhMkrvejOQgiC9FJ4qQNmTIMxneoSh85%2BJ%2BeUM7G%2BZIgW3KaXuxnMf9jArX7zz5OsXONYChtSCoYxMxOm8Z3cuzGp06Phz2hSGRAzbuTvcQ6a02py8rWCWpCT7rXd6lN82FdidDCQB1rubxJ2VHGLQAvhU8TpjFU%2FzMd8O3GpKNMpp6cYAWWsgCVeFgEIFw2TsLuJx2NC%2BW%2FoozrS%2BpO%2BRSUc4E%2F7AwVZQbIQQpvHfHGzpbwFhbxx9UiJbHfG25mH3bXUznj6T7ygQbqQ8amQehKIforWniytYYR87njxBisyxfYXeCtYlim5H5bU38grSOxZ7Da8DmgDdz7NKAHslgtApkDkXRLBR0NSsvO6h%2FLJbS6To%2B6A06%2B49jHygp2ETdXU280nFuynCevZCweJXIemUsqWBTozC17zdQ79ZcG6eaSlQQif4YeZ6UUXHLvtKpU%2B6Vxwa3%2Bn7409JfW6K4UCyAm5s70Z16I7Z3hYWCblyyufPgsxlyGY%2BmrKuvC9ZW29gsMn0L8kWVl09Mor2duYhaOV9eZGT5OXtQMmTkZsU1YRZUbfoZENcL24GJxJx96YSsRm6Uzk2JCC%2FFRt6jEVRWvY5wYbLFOvoijDvr1AjVUfpwUGDDXfo4yYktq%2BeLP5iIYmCKgf9xPf7qeoKr8CFyGY1gKmIizTYPipaRIwvllN%2FAgMf4IzlZxxsS7JaFZGLmTEaiINjm1x4Us%2FCR%2FLYvxByOmmKZ7X7lrA30LJhE%2FWWK3iFWwsU%2FdU2xWYk5KdM04ARAclDIhoCO5WTSEdPF%2Fo2LzijAtQj2SQFmiJL3EslUxX1dnC7SktkpFWF94LVABwWhTySOnaBlK2tn4BY6RTAhoquEwLZvsBLu%2F3WcqXh38u7NINRbye1nkd6NAsVxaLj5vhk3mVyTxNMIYtOFNfc4XkGe2LZiuJGpuFd2MO%2FgKF63XOEXaxCX2R61bHJ3frldszVCicnMmKayDQDJuQ%2FqRgJMIYL31AuEuD3G6ko79wNsI4mzQCTNGG9ByO7USZMX64aVO%2FHtMXVJaQQFBixk%2FcAeNeHxrbO1gJ81SJoPSvsv06ftOpaAFv3Vy%2F5If8gyfem%2FBpUP1NnO3zdAD2lvnVHCq6c6Rv3G6UsgI7nM9XIiPtX1sh%2BtailPpwThkBDQhS8ezltuGW5hMgn0Rj4C3B4juW%2F2jckVeDQXaCsL7sfFYriNDBW9HUckwULPweTjNhmYSFB1klcx%2BIZ3iYy8k%2FTrF28Dzd0TYIJozQFn%2FhwZwChRlKgXn5XiOTWxx6kqzMLrw%2Fyj%7CUtN7To3kN3g%3D%3AtuwbgH%2Brax0WjJBA6P7Pg7RqWco5b4EUlQgYPULPNVQ%3D; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
ORION_SESSION_REQ=A752EC1B%3AE9DD_0A280907%3A01BB_67D3C4F6_14437D7%3A70586%7C%7C; Path=/; Max-Age=63072000; Expires=Sun, 14-Mar-2027 05:56:07 GMT; Secure; HttpOnly; SameSite=lax
datadome=~UPyoA4KTDoVm0rpL0Hk7c1qX8wolIL44X5432niqHm0RsYi_cQN9BznryX1UVcsKhOUSRZ~eqha3GNT4HlIm7Nebj4Kse7i3g8As364phJbazmDi21m8hXxRvYLrHRV; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=Lax
x-unique-id: A752EC1B:E9DD_0A280907:01BB_67D3C4F6_14437D7:70586
traceresponse: 00-526884b7e1945cace2402020e4db296d-4fb0bb33ddc5f2b9-01
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
vary: accept-encoding
x-datadome: protected
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Bold.woff2
200 OK 15 kB URL GET cache.vtrcdn.com/orion/fonts/Aeonik/AeonikV-Bold.woff2
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 15012, version 1.0
Hash cc0d07567912434a0ced128ad57266d6
804d104c654357f140200d9bca375a9b86ea44e8
6c32406e74d6414154fbf20a63eaae697b8e0d632868d0194dcfe80702bedb35
GET /orion/fonts/Aeonik/AeonikV-Bold.woff2 HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viator.com/
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2;charset=UTF-8
access-control-allow-origin: *
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:13:56 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
x-unique-id: A752EC1B:88C1_0A280FBA:01BB_67C665A9_15A0C0F:11FE0
traceresponse: 00-c0c242eab460498d863e1cfa123f607b-89312f93fcf9b7de-01
expires: Tue, 11 Mar 2025 02:30:01 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876363
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1572
content-length: 15012
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js
200 OK 48 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (47822), with no line terminators
Hash 0bbc6fbffe2beadfac3b53ac7755a007
8c14edd72dd5670f3ae908452d5ce7ba4e9985fc
c5cd12fe4aa7a73adcbc8c453190e57059d9665df0f66f168d19059b421506a3
GET /orion/react/client/vendor-19dc620f.f9ea3b7c9b6882e9.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88D0_0A280EF0:01BB_67C665C4_1440543:1917AF
traceresponse: 00-2b50ca623dde422ea6bb7402468c46b7-904f818e0a02f13a-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:04 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1513
vary: accept-encoding, Accept-Encoding
content-length: 13425
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/vendor/bootstrap/js/dom.min.js?5.2.3
200 OK 22 kB URL GET www.cruzeiro-safaris.com/media/vendor/bootstrap/js/dom.min.js?5.2.3
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (22274), with no line terminators
Hash 08ddf956affaaea21bdd246cd86a18b2
bbaec9659264b7fcb000a4f5649bfb652b0fb31a
afaa6db303aae287193bac9ccfb7b30574c99cf1c5a394c12e427d1e7b39d753
GET /media/vendor/bootstrap/js/dom.min.js?5.2.3 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/media/vendor/bootstrap/js/collapse.min.js?5.2.3
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:03 GMT
server: Apache
x-content-type-options: nosniff
vary: Accept-encoding,User-Agent
last-modified: Wed, 16 Aug 2023 07:17:42 GMT
accept-ranges: bytes
content-length: 7316
content-encoding: gzip
content-type: text/javascript
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
200 OK 24 kB URL GET fonts.gstatic.com/s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 23620, version 1.0
Hash 6798f8f19d0631ef01d56a7ebed65f73
345e7a3f1b50ccd8569988f4c54d1994a8ab7a31
f8fb86afe5b79eaff2c4a5a44459de5444d04a7b395fd7bd627e70b95e5e5347
GET /s/firasans/v17/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cruzeiro-safaris.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:22:21 GMT
expires: Fri, 13 Mar 2026 09:22:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:50:03 GMT
content-type: font/woff2
age: 74022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/8251.0e9de452613f6441.chunk.js
200 OK 181 kB URL GET cache.vtrcdn.com/orion/react/client/8251.0e9de452613f6441.chunk.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Size 181 kB (180555 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/8251.0e9de452613f6441.chunk.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:C65A_0A280EF0:01BB_67C665C4_14407B3:1917AF
traceresponse: 00-e77db08bceb1465390f3c8e0947311ad-8b2556e3ded8e561-01
expires: Tue, 11 Mar 2025 02:30:30 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:06 GMT
via: 1.1 varnish
age: 876336
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1317
vary: accept-encoding, Accept-Encoding
content-length: 56621
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/social/g+.png
200 OK 5.6 kB URL GET www.cruzeiro-safaris.com/images/social/g+.png
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Hash aff40945bf410a8c3ca75d65b0b9bb48
ca09a09d19cec73cb4086717eeb19912311cb7ad
1db6c0f5293f66c93abd7c066d692d1a7873b5556e9873b7f75d7d775ccbab56
GET /images/social/g+.png HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 5552
content-type: image/png
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/wildlife_animals/african%20epehant%20with%20baby.cruzeirosafaris.ai.jpg
200 OK 808 kB URL GET www.cruzeiro-safaris.com/images/wildlife_animals/african%20epehant%20with%20baby.cruzeirosafaris.ai.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 1024x1024, components 3
Size 808 kB (807474 bytes)
Hash 42d50ec199011a97599b1ce799ed3537
e27abcb7bd628a60973114b1aa5655dd3d903ced
18b37306ef72cbff78a0073939a952d99cd0fb2f240697adb788db411a12e8f9
GET /images/wildlife_animals/african%20epehant%20with%20baby.cruzeirosafaris.ai.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:04 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 14 Nov 2024 10:19:43 GMT
accept-ranges: bytes
content-length: 807474
content-type: image/jpeg
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/74108.175c3d89ea23d403.js
200 OK 76 kB URL GET cache.vtrcdn.com/orion/react/client/74108.175c3d89ea23d403.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /orion/react/client/74108.175c3d89ea23d403.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.13.1
last-modified: Thu, 13 Mar 2025 13:10:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC20:8B8A_0A2807A3:01BB_67D2B1B7_1AC97FE:4FC0A
traceresponse: 00-6e8eb016e31e4d0c8675853de25cd3e5-a56c40a02e5d02c3-01
expires: Thu, 20 Mar 2025 10:24:23 GMT
server: Apache
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 70302
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 133
vary: accept-encoding, Accept-Encoding
content-length: 24623
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/com_slideshowck/assets/camera.min.js?ver=2.4.1
200 OK 43 kB URL GET www.cruzeiro-safaris.com/media/com_slideshowck/assets/camera.min.js?ver=2.4.1
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JavaScript source, ASCII text, with very long lines (43396), with no line terminators
Hash 39e795726352fa017aaee1288164e017
6d0ff308015a5e0dd1b1df16b291f608735a5248
4891bf6b373b66ab8cb9d778780a58925421b68a87c74fc1f45d7a9d9c124367
GET /media/com_slideshowck/assets/camera.min.js?ver=2.4.1 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Thu, 17 Aug 2023 08:37:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10008
content-type: text/javascript
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js
200 OK 129 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65446)
Size 129 kB (129088 bytes)
Hash 68452a3a95a06ad3f83f2af5a7f3f196
f76f8e96eb74b07d1fa457325cf5e04e8dd178b5
ffda8659e1eb2688b446742b86949b066dbb6f1eb580558cbbd30f6c035cc100
GET /orion/react/client/vendor-f72b7d4b.8df4811e733ef6ef.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:88CB_0A280475:01BB_67C665A9_D6E5E0:13C125
traceresponse: 00-92e67c4b4f0a4f829999af571c695225-b0f9ee0b48b757b5-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1552
vary: accept-encoding, Accept-Encoding
content-length: 41564
X-Firefox-Spdy: h2
GET www.jscache.com/wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2
301 Moved Permanently 247 B URL GET www.jscache.com/wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerGlobalSign nv-sa
Subjectstatic.tacdn.com
FingerprintDB:48:F1:E9:F3:4E:F9:70:2D:B0:50:3E:DB:E1:A9:77:B4:63:5F:F1
ValidityWed, 05 Mar 2025 07:47:01 GMT - Mon, 06 Apr 2026 07:16:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2 HTTP/1.1
Host: www.jscache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: envoy
location: https://www.tripadvisor.com/wejs?wtype=rated&uniq=11&locationId=2085077&lang=en_US&display_version=2
expires: 0
cache-control: no-cache,no-store,must-revalidate
pragma: no-cache
set-cookie: TADCID=AwRm9vUpTld_yznJABQCJ4S5rDsRRMescG99HippfoQ40Ve3RyoWXMRv28T_4ikgldSq8MqmVaY9P0O3sQ6Waz1SXGb23DIPFdk; Domain=www.jscache.com; Expires=Mon, 12-Mar-2035 05:56:02 GMT; Path=/; Secure; HttpOnly
TASameSite=1; Path=/; Max-Age=315360000; SameSite=Strict; Domain=www.jscache.com; Secure; HttpOnly
__vt=gzYFRJ2OnDn2APRDABQCT24E-H_BQo6gx1APGQJPtzQWcSVxURoSYZV8TT6dbXCHW5_he6xukrCaCK608n4biHa3rIj_QELi8xtAfWfIZhiPIPWrs5KuT_bS-PB2ob2nxv4AoJDGKXFebUBf4hkqy_b9Gg; Domain=www.jscache.com; Expires=Fri, 14-Mar-2025 06:56:02 GMT; Path=/; Secure; HttpOnly
timing-allow-origin: https://www.tripadvisor.com
x-request-id: 29e57965-cd97-4679-88dc-6f3eec0ae0bf
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:02 GMT
via: 1.1 varnish
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931762.352917,VS0,VE131
content-length: 0
X-Firefox-Spdy: h2
POST www.viator.com/graphql/
403 Forbidden 394 B IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (398), with no line terminators
Hash fc312b6a61a4a4df2bd13360f6aa92c0
99b96b8d197b81a2e66fb035cd9a258081c98092
63793d1369dc208332f054416246aa3dcc049e743eb58533d4dd0c1ba5dfb2e8
POST /graphql/ HTTP/1.1
Host: www.viator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
content-type: application/json
viator-currency: USD
viator-visit-id: f8ea49f5-62c4-4685-992e-704a1f944a63
viator-visitor-ref: VIS-4b956d93-7680-43ae-b96d-e93ee682bd94
viator-persistent-cookie-id: 2e2d19ce-a0cf-4731-9e73-0ae271364581
viator-platform: WEB
viator-device: DESKTOP
x-forwarded-for: 91.90.42.154
apollographql-client-name: com.viator.orion-browser-prod
traceparent: 00-7e21df32fd26f1c7bbf9651e3801760d-8a9e6dc065c4e24a-01
tracestate: es=s:0.1
Content-Length: 1175
Origin: https://www.viator.com
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=zanzibar&totalProducts=&widgetRef=&language=en&urls=10067P17%2C10067P15%2C10067P19%2C10067P16&wd=eyJmIjoidml3LTM2MjA3In0%3D
Cookie: x-viator-tapersistentcookie-xs=2822c056-c159-4af0-8a4b-1b98277884b5; datadome=Ar~OKviRog4k2IxPtjkXDLdDn1d_sNg1WaZOKrM6RGyELbWYhdi6k4v91sUcO4Swin2KRR9xNcDFshMtXTlI_xkWOwfQ9DwG1a0QO3TpFFsucoPUpB4zcWRE~cT_hMn9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: application/json;charset=utf-8
server: DataDome
x-datadome: protected
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
charset: utf-8
cache-control: max-age=0, private, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-credentials: true
access-control-expose-headers: x-dd-b, x-set-cookie
access-control-allow-origin: https://www.viator.com
x-datadome-cid: AHrlqAAAAAMAEKL35WmoosYAW1oqmg==
x-dd-b: 1
set-cookie: datadome=OEI0B3dHiEdbpJTzDHgSmreZCMxI8YRtGzwvtzwLcNlFtGEDaD~l~dpsOi8CixRmttJeJzHPLTAp4z3g_6aiRBIM1dgWWU0HuhVvGqvxzSQaJrTw9_6oPIWTQ1JrD1S~; Max-Age=31536000; Domain=.viator.com; Path=/; Secure; SameSite=Lax
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1741931767.020988,VS0,VE14
content-length: 394
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/user.css?89febd398596b456839adf8abd6f1718
200 OK 0 B URL GET www.cruzeiro-safaris.com/media/templates/site/cassiopeia/css/user.css?89febd398596b456839adf8abd6f1718
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/templates/site/cassiopeia/css/user.css?89febd398596b456839adf8abd6f1718 HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:43 GMT
accept-ranges: bytes
content-length: 0
vary: User-Agent
content-type: text/css
X-Firefox-Spdy: h2
GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG_20170419_133659.jpg
200 OK 152 kB URL GET www.cruzeiro-safaris.com/images/wildlife_animals/IMG_20170419_133659.jpg
IP
Requested by https://www.cruzeiro-safaris.com/
Certificate IssuerSSL Corporation
Subjectcruzeiro-safaris.com
Fingerprint26:C8:F2:07:29:84:4F:BF:D3:61:D4:1E:25:F2:CD:79:84:BC:32:F1
ValidityFri, 10 Jan 2025 04:36:01 GMT - Thu, 10 Apr 2025 04:36:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x576, components 3
Size 152 kB (151463 bytes)
Hash e6ec660312ad357f48825dccab472b7a
662233b9aee011bd5375039d8fff24053f797264
0530ecde56f156188fcf38fcdafda761462ffd2e98c2bf8ee91a7e425842b7aa
GET /images/wildlife_animals/IMG_20170419_133659.jpg HTTP/1.1
Host: www.cruzeiro-safaris.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cruzeiro-safaris.com/
Cookie: 1d50258f26c6cf42d5b9a980771c1baa=cgknlukk5qdch0c6rnd9voh651
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 14 Mar 2025 05:56:02 GMT
server: Apache
x-content-type-options: nosniff
last-modified: Wed, 16 Aug 2023 07:17:39 GMT
accept-ranges: bytes
content-length: 151463
content-type: image/jpeg
X-Firefox-Spdy: h2
GET cache.vtrcdn.com/orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js
200 OK 38 kB URL GET cache.vtrcdn.com/orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js
IP
Requested by https://www.viator.com/widget/products?widgetPreview=false&partnerId=P00067025&partnerType=AFFILIATE¤cy=USD&campaign=&totalProducts=&widgetRef=&language=en&urls=10067P1%2C10067P20%2C10067P6%2C10067P9%2C10067P8%2C10067P4%2C10067P26%2C10067P7%2C10067P18%2C10067P5%2C10067P25%2C10067P14&wd=eyJmIjoidml3LTQxOTI2In0%3D
Certificate IssuerDigiCert Inc
Subjectwww.viator.com
Fingerprint75:5D:B1:8C:BE:01:BF:F0:03:4B:EB:4C:9E:CD:C2:2F:6A:13:4B:0E
ValidityWed, 03 Jul 2024 00:00:00 GMT - Sun, 03 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (37990), with no line terminators
Hash 2a20f06aa6a03d21447fc926eb702840
4d5bc08785a041f2a8de13f77802b86199518139
5c0174b05cbf99217e484ad6fdf72da0b763ab4cc693be746972d4ef2558f9d6
GET /orion/react/client/vendor-363ec994.7d7e6568f3356d6d.js HTTP/1.1
Host: cache.vtrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.viator.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
orion-implementation-version: 2025.03.03.1.02
last-modified: Mon, 03 Mar 2025 19:25:00 GMT
cache-control: max-age=31536000, public
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: frame-ancestors 'self' *.viator.com:*
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
x-unique-id: A752EC1B:2620_0A280475:01BB_67C665C4_D6E5E1:13C125
traceresponse: 00-9bb1c00592b0463eab700d061462d022-953dbb54cf27e646-01
expires: Tue, 11 Mar 2025 02:30:28 GMT
server: Apache
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 14 Mar 2025 05:56:05 GMT
via: 1.1 varnish
age: 876337
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 1514
vary: accept-encoding, Accept-Encoding
content-length: 7673
X-Firefox-Spdy: h2
64.190.63.136
173.239.53.32
13.50.216.15
104.22.3.142
184.25.1.243
65.21.115.50