Report - r.newsletter.data-enrich.com/tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ

Report Overview

Submitted URL
r.newsletter.data-enrich.com/tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ
IP
78.41.204.36
ASN
#62370 Snel.com B.V.
Submitted
2022-09-16 15:57:21
Access
public
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
eu-library.klarnaservices.com	22427	2018-11-07T13:09:24Z	2023-03-17T09:39:26Z	356 B	539 B	54.230.111.116
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-17T05:09:02Z	1.3 kB	3.5 kB	23.36.76.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-17T05:10:36Z	594 B	127 B	44.228.207.167
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-17T10:42:19Z	329 B	737 B	93.184.220.29
mybetterck.com	21362	2022-02-06T10:33:01Z	2022-11-17T20:11:33Z	2.6 kB	1.3 kB	108.168.193.189
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-17T05:09:22Z	662 B	1.4 kB	142.250.74.3
discounts-today.com	unknown	2015-03-11T00:16:01Z	2023-02-24T02:41:24Z	908 B	932 B	137.74.65.7
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-17T05:09:15Z	3.2 kB	73 kB	34.120.237.76
consentcdn.cookiebot.com	5676	2018-05-23T07:13:43Z	2023-03-17T05:33:08Z	421 B	1.1 kB	104.110.3.72
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-17T05:10:35Z	321 B	229 B	34.117.237.239
r.newsletter.data-enrich.com	unknown	2014-10-27T20:42:16Z	2023-02-19T04:52:12Z	528 B	2.5 kB	78.41.204.36
rcgmal4n.klarnaservices.com	30458	2019-10-03T14:29:33Z	2023-03-17T08:34:45Z	980 B	1.4 kB	143.204.55.11
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-17T09:53:07Z	328 B	963 B	104.18.32.68
cdn.bett1.fr	unknown			11 kB	1.6 MB	172.67.190.93
www.bett1.fr	unknown			14 kB	117 kB	172.67.190.93
p185689.mybetterck.com	498517	2022-02-23T19:00:00Z	2022-11-02T12:26:47Z	1.5 kB	505 B	108.168.193.189
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-17T05:09:04Z	758 B	2.7 kB	143.204.55.115
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-17T05:10:36Z	401 B	5.8 kB	143.204.55.35
r.srvtrck.com	45104	2015-03-03T13:59:37Z	2023-03-16T19:05:13Z	1.5 kB	1.6 kB	104.19.168.96
tracking.s24.com	95222	2017-01-29T14:57:05Z	2023-03-14T05:08:25Z	2.3 kB	1.2 kB	104.18.28.233
consent.cookiebot.com	4972	2014-02-26T15:48:42Z	2023-03-17T05:33:08Z	347 B	32 kB	184.31.15.144
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-17T10:24:23Z	402 B	1.5 kB	142.250.74.10
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-17T10:38:51Z	494 B	30 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-16	medium	r.newsletter.data-enrich.com/tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.bett1.fr/media/js/a5f81022f6e64c57110ea7a69fddf00f.js	364 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/a5f81022f6e64c57110ea7a69fddf00f.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash df3e24cadc8ec43da0b39ed0425195b8 a6ed36aec6fe4bcda22696a8007745ef7cec1c20 63026309ff9a7354e5a28edec98cf520db7c2816d60f71d98f2fb827330fafa2 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	213 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 120939e40523214081a216cd02875646 edad60f5f26b8328cc73471f6b8a64391a6ae58f f28b1ecf669a5c660ae5c7c5ad4433521735c0fd729042a87c6cf5bc7fade6a4 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	1.1 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 1c95447bced9234d82806af74cf5655d bafc5f268050357e2a818d4a6bfabc7831f8e8b7 0fccc0126268782a7a8ba66cde9ae2c40869e452832f894d9c53fe2fd634a19f Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	1.2 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 0d61013d53b1792abf7929a4784dd94e 071f2e8b3c2ffb89bc9fbdedc190830f9b2cee4f 1eab93a6af09d8aa5c8234029ab01abd0dc341ce9cd957ebf8a74868d2543799 Loading...

	p185689.mybetterck.com/adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0	205 B	2023-03-07	2023-03-17
Pretty URL p185689.mybetterck.com/adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0 IP 108.168.193.189 ASN #36351 SOFTLAYER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:52:03 Last Seen2023-03-17 12:44:59 Times Seen1 Hash b03a387f31a6971e218bfd573a47dfbf f50c6b4f81a7d114c1d2e8506942c0d569481fda 502859def061df7ff990d0d9d72a279994ab9ba3aa16b8684d1e22b00f2a2ead Loading...

	www.bett1.fr/media/js/ebb1dcb33710ec118d720836278a2bf4.js	14 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/ebb1dcb33710ec118d720836278a2bf4.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 8cf0792e1070b4208efc783569a03947 e19c5f7fc78444bf02652cc5d21cc580723fea88 ddb9a0e704cc6213d3925df4311c01f5368e3e57ab17fb271c24a68354a5084d Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 04:02:06 Times Seen37053624 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	eu-library.klarnaservices.com/lib.js	32 kB	2023-03-07	2023-03-17
Pretty URL eu-library.klarnaservices.com/lib.js IP 54.230.111.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:57:21 Last Seen2023-03-17 12:45:04 Times Seen1 Hash 7d1247cfb4351c89a29091dd668a397d a1a4d326f26b1a3761ad0f0e18a409a7f7cbac99 72032c49bcfda8f7dd421b08eef5ef5cb5e99d0b3bb4c1d7ece5415c4f4a36f1 Loading...

	www.bett1.fr/media/js/c10fd053277dbf17ee843ae5d14cfa2b.js	454 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/c10fd053277dbf17ee843ae5d14cfa2b.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash efa5e87f770566e3a8ad6df59842393c 734ebf5e9af9091a90fac741d15b9da53ee1cb22 d78c1710310471cf67b9550c1083ad33e589444dad735db1480bddb1881765c1 Loading...

	consentcdn.cookiebot.com/sdk/bc-v4.min.html	569 B	2023-03-07	2023-07-06
Pretty URL consentcdn.cookiebot.com/sdk/bc-v4.min.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2023-07-06 06:53:25 Times Seen429 Hash c3ec01c3d295c22ea26afa0db60f3cd2 1b4b3461aa8d9b25a1c5f9e7472fabb0fe410053 2eca2b34bebf4e267d33b18974f96e62281bb48795c85db0c5c4c9ef1f9d4ef4 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	866 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash ea2a3ac9288d9099947bcba6826e019d dbf2a7bea746c6cfd856579f8612f43443747fb6 cb1bfaf0fc0d60b1497c0416ec4013577a0b2bd4d7889b8602d3236a046de7d9 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	770 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash a018472726bb19902ed4a8bc46e416b7 688da0b25997962ed5b82241361ca923cb612bb6 053dd8e2ae389c6b70a54ed6c19b235531c47501f32a6b2f8f7d42ba11073130 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	660 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 9bb20ae4bd7328e3fc712b3d867ceaaa 677d0f1e303ddf776c17c541339b313a2f98ab2b 39e2418c419df24147c916c465b75bd2fcf6be7a0ad9068bf2e300a90b3b5ee0 Loading...

	www.bett1.fr/media/js/ab931c80b06391260f18d5eadaf1950e.js	5.1 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/ab931c80b06391260f18d5eadaf1950e.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 71f2bfcaae6fa9b3c3e6af295b4f19e5 e86fb7bdb115a24fe55b85e2c095c7a94ba3a0fc 3a1ec56f939371b7444fb78d2a19ce4c62063bda10a2d1ab7444a66cc3c2bc25 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	2.6 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash e1f2326de042c9b65bdd65d005b0832a 5a409b0e564c8d71b35141f6c1b10a43e2a40296 3b2c5d05537cea0ad7735a22fa529d6388fa5470878695291c69e94273b077ad Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	5.2 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 3b52314a58ee0395f9a64cbb7c4a01ed d99a569ba9dada5d74939d5972700351c54147f3 f97f34ec788bf6ecb04fb8acbfbdfd9cadfeb3a8e9f87f62025590288cfbcc92 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	357 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 85c5d8a76fdfb58976a172e915feed8d dd95bc2e050090768404a0bba1ae0a70e596b31e d00f0c8c19f1c6236bfbd2947c94de9213bc551aaf7a26b146341d4e84fd271e Loading...

	consent.cookiebot.com/uc.js	102 kB	2023-03-07	2023-03-17
Pretty URL consent.cookiebot.com/uc.js IP 184.31.15.144 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2023-03-17 12:52:09 Times Seen1 Hash dedfdec12e814f0e57d3fb95786d66d7 a208a349f64603596e4db5d7f43059a1d7d7c055 ec0e78ba3786d620f16943844c3da6aac1f029dc4ec6fb35456d019508679ff1 Loading...

	consentcdn.cookiebot.com/consentconfig/e2e1cd57-ce1f-4b28-aeb0-dbae5653454f/bett1.fr/configuration.js	2.2 kB	2023-03-17	2023-03-17
Pretty URL consentcdn.cookiebot.com/consentconfig/e2e1cd57-ce1f-4b28-aeb0-dbae5653454f/bett1.fr/configuration.js IP 104.110.3.72 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 9ff97c0b19b410239936ae0725b2eb28 b6ef795a356a771b1466be461c44165cc455aa69 1bfb52d1c94580d603b8eaab42ac10e4fb8a0c450b7683edb0e5c4440ca40b28 Loading...

	www.bett1.fr/media/js/078f0d2da20854b68d61ff66aba1c1c0.js	16 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/078f0d2da20854b68d61ff66aba1c1c0.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash e385bfa5051450e411db1bd6125c0d97 cd0b74eb20b814f51f738679dd82382d6489454c b1220de1eff9118807325e8aa7b8227c7547767a636b91232701fec0ca045baf Loading...

	www.bett1.fr/media/js/645246abea027ca0b3574f12974f070e.js	350 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/645246abea027ca0b3574f12974f070e.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 459f060b1058ac414afabe505fe47def d3c04f4e5ea36cb877c1e4ec04f7beb06e60b269 fbc85cf464275a62b289990cee7e4ea77139304fa6e424dbb8c3a2c52868485f Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	609 B	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 84b038aa17f2b711d9f13caa898b6170 fc5b2e63c187dbbd6818cc3bb676b3b725c58705 42138fe71c99d3d47c9a07be8f5c2b3e91e7b793e5366dc5eddeae2368b0b972 Loading...

	r.srvtrck.com/v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7	1.4 kB	2023-03-17	2023-03-17
Pretty URL r.srvtrck.com/v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7 IP 104.19.168.96 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash 19ddab063096159f033a57f300763c58 4ad5af1b32c9a25b3125ac094458272d6b20e1b2 93e2532f36eddec45767f4322161b5637bad2be606df1567c93e97845996967e Loading...

	www.bett1.fr/media/js/06919cfc4891a4a30c0025a5d1d123be.js	15 kB	2023-03-17	2023-03-17
Pretty URL www.bett1.fr/media/js/06919cfc4891a4a30c0025a5d1d123be.js IP 172.67.190.93 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-17 12:44:59 Last Seen2023-03-17 12:44:59 Times Seen1 Hash c521ca3970ecebd2d6e11b59aa7fa01f 8cdd8e4ddae6c9002eac97f1a66a8daa0feb97de 9d4a130a588b30db6bda8344c9621f21b2c451287ddb68c764b756f3c336af99 Loading...

	www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18	65 B	2023-03-07	2024-02-21
Pretty URL www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3#134=23&135=18 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2024-02-21 20:30:37 Times Seen69 Hash 7905d2796bccf3957090629ef82a5a42 be38d673c1836f45c6b8aec2fda2f0bcc7ec72ca 8587e656e1b7120e3aaf403654aacf6721ca1829a39da87c3c3b300fc349f393 Loading...

HTTP Transactions (74)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 15:10:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: frmIcZGN8J1hIkhT-NZ7IW6Mt5rj0HOQNYHB5NOJHLlGWg8PybDxXQ==
Age: 2780

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13156
Expires: Fri, 16 Sep 2022 19:36:26 GMT
Date: Fri, 16 Sep 2022 15:57:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 84i8A7UiC_8WmAO9XAhmBNTKOXakgJST1fIi9j6DmY0lc88pijvGOg==
age: 40915
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 15:57:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 15:21:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s-s7hjrELsEmQsHHxBdbe5spsgUMEBJhgbXAJi_XjCbDTBDULy6jFA==
Age: 3229

r.newsletter.data-enrich.com/tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ

78.41.204.36

302 Found

11 B

URL HTTP/1.1
r.newsletter.data-enrich.com/tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ
IP
78.41.204.36:0
ASN
#62370 Snel.com B.V.

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /tr/op/rRSXaD2oWmwnF91AH3mshKFAHQdxzZ732wfSX2qAx5EK806rWsCaCChwsZbHm_laWaBFICPoaOJyA0-DTzYKolbGfHyOhBzbuxrqzRorv1NuOIGZK85l0w-bGwpZPF186cdPiMNTjKDU1dQ-mOrSSB-JVM9CjxI4C30o7ZtQTFb3jQ HTTP/1.1
Host: r.newsletter.data-enrich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 16 Sep 2022 15:57:10 GMT
location: https://mybetterck.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_SU5IleOSHalxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stleEiMFl0NUscCfSwvqLrt3DLjUA9b7ozAqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3nN_Nixeo3KfPrpX5dvP-f1hV9rEYhf4MrAIuBbTRJoVQkVBH-LSO5R_UbBSfUPWMcSY0T-DpEDUFprcRDUhLF6Fqj1CGUzOd8mT8rhTgyZvO-13y8Ix0GAKvZX8W-PicvpUpXZGx3TIR7BSZRssVCPE9PV3hOi9yeL3WS0dy4OEWJaiJGfFNAU3Myq6Pdr_4YdpuOj6WkQ4lm_DQoLyBHKUGQoMsnHPW4WMDrx-kRMJDNyUKl39nr8kjLbVdAVFh2r9XI2Dk9wu-gvlQhBFHmwR8ZU-rf5mzO0omCRFMcH2pdp5OluyLWCZ8_JWQJx09kNx8dLR1Iba7MGI_Ao4imfjGYkG6If3iQt_Sbsk85figKkkiUlZEmxNcNIf0QuhnufwpTl0a6xkPdQ_zvperNPxCY9RQfbwKKEXPuYeFTLAF20VVRGf7rI8NjUriiu08exIsRlzAb-KnfKn9deyk8hqR_Nri0uZnwU9NGSBQ1xs2luDX2IQP_HaIi0eDFgCTwORK5dkyFtNhN0QBn8omnlzh63kwAoVlC-pdfjmmM7lVVuIGWZSnebpEX2GCLJ98nl796EJfyFFl_kQ-dKN4vgy4WgwgkG6u7YxdzLQf-DfX00mVRZ9PbMtqbkDYk5066RcyDnBJbyC1YUgCbnn8GyN_c_1H6FasLGwWINnsDzEFDVFEDHNBTLdTvGqSD6Pbxp9zhHV5jwuW-sDad6jDvsz77_-osXd80Ll4Z0qBJX-5KZcdgtzrATGL4kocLZSGpzkahoH54AQWqY47NALiBG8MZ8ZTNxnjB7PkeFzP7PEreplw__H_3r51ufQlcm-V_35L_YU5rTtVMG76myXC6eHVjZ9ABEcuh8tKZVx4u9FvkbK-3dJ44TwTf88QruHyiNPXr4mwRbB8S3_oJFRyoAbDA25L6ixcr2QqTqL7mjAOoFd8Zpf3UzwVQMyPcp1M57m1l_1QhvqduwFarP4ltDrumL2EdXSaL7_aV4C1VZ-wdwpIEmfIB6iSL6_GJI3izXKdl21xBGS52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOMIqZEaZK1bItpvqyBgEtbFt7nh6e0Vic-zGTX_p0pLE4vUJtprw1nZ8PKCe6zX-oUtjpC9htaFbDikNoXtSn3bDvHiQduYq3p4_ZfstpSCtbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3XBBovPwKe-X7_23umF4m18liJV3xmmXxikEP8qLZgv7Jpk5eqwtbNm5-xlGe0EOpU80L84loquufDpPc4jObHJ8DjGg57rFIRzjTdJo7DTRHWldkt0z7OFWWPGhWvQJQPu2YK7QUauuON-4B6IyEf2LT0OceZD9hZT4Ri_tbhhDxMqnZpB0NBahKq9ZNIkybByCeUm6Rlw7grUetN594EUirDVIV3KGJxamAVvcuv9Y6s4Pcri6uWB4AtJzAng2jw6ymr82WeoRR1FYBPnLmmCa9z636P5-0iPIKAkREA3ctyiRcYtDNL7m6b2PqyTLqHAxcP6mbPL8gvwYNqMES4X-rNQBVWvkJlsegcncHrSuzFf351_-70TKyf1mWrb5EM5bnxE4MmH5XZjmVx_HjJpYrURubr1vZNWpZuqo8gwq4FegF73ifS7LQ-7kF37qYLhXPzhpjSYn3byOfj4VWdm8BC78CqGnIeziHAQREtqEQa4-NR-HU9bn9JCS6S7d4HydKEFqVBCp0R81-OdFgPPSPHmbpZ6ZetA2FBvJ1mR9KaWcU5qRLAxAe_NtDOEqniwTos_MCB2NlNLi5Mv4I5goHSJy7PBuf_twNXMkHv-0X1QQy-1V8LN4HoPxh1nulXw3THSjFVHuk3a8-DNnapdl7qq3V4yOG7c19Q02yHJV6erdg3_RkvNACPUOj5H0yA268L86dvHryJTuzQtneEKi5b4t0FfN-T69w8zPi-QLriIGE8WIV-jGIxV2e1cjGw
server: nginx
set-cookie: sid=39038f5a-35d8-11ed-a1de-4070b130c4d3; path=/; domain=.data-enrich.com; expires=Wed, 04 Oct 2090 19:11:18 GMT; max-age=2147483647; HttpOnly

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6585
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:57:11 GMT
Last-Modified: Fri, 16 Sep 2022 14:07:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.228.207.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.228.207.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dRdeNGYp2Vb2RP18C3kJMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xLocGnGVLdfMfFR3fAMZcPXZ4o8=

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
fbd77a92459a14dc073409c69b64ee8f
a3742353701b1a9f784156ef6474b21ea6f419e3
b82572816d5a046f2263159c54107d5f89d7936b5fb07134b945452566a011eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 15:57:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 07:20:07 GMT
Expires: Fri, 23 Sep 2022 07:20:06 GMT
Etag: "a3742353701b1a9f784156ef6474b21ea6f419e3"
Cache-Control: max-age=573174,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74bacbe27cdc1c16-OSL

mybetterck.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_SU5IleOSHalxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stleEiMFl0NUscCfSwvqLrt3DLjUA9b7ozAqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3nN_Nixeo3KfPrpX5dvP-f1hV9rEYhf4MrAIuBbTRJoVQkVBH-LSO5R_UbBSfUPWMcSY0T-DpEDUFprcRDUhLF6Fqj1CGUzOd8mT8rhTgyZvO-13y8Ix0GAKvZX8W-PicvpUpXZGx3TIR7BSZRssVCPE9PV3hOi9yeL3WS0dy4OEWJaiJGfFNAU3Myq6Pdr_4YdpuOj6WkQ4lm_DQoLyBHKUGQoMsnHPW4WMDrx-kRMJDNyUKl39nr8kjLbVdAVFh2r9XI2Dk9wu-gvlQhBFHmwR8ZU-rf5mzO0omCRFMcH2pdp5OluyLWCZ8_JWQJx09kNx8dLR1Iba7MGI_Ao4imfjGYkG6If3iQt_Sbsk85figKkkiUlZEmxNcNIf0QuhnufwpTl0a6xkPdQ_zvperNPxCY9RQfbwKKEXPuYeFTLAF20VVRGf7rI8NjUriiu08exIsRlzAb-KnfKn9deyk8hqR_Nri0uZnwU9NGSBQ1xs2luDX2IQP_HaIi0eDFgCTwORK5dkyFtNhN0QBn8omnlzh63kwAoVlC-pdfjmmM7lVVuIGWZSnebpEX2GCLJ98nl796EJfyFFl_kQ-dKN4vgy4WgwgkG6u7YxdzLQf-DfX00mVRZ9PbMtqbkDYk5066RcyDnBJbyC1YUgCbnn8GyN_c_1H6FasLGwWINnsDzEFDVFEDHNBTLdTvGqSD6Pbxp9zhHV5jwuW-sDad6jDvsz77_-osXd80Ll4Z0qBJX-5KZcdgtzrATGL4kocLZSGpzkahoH54AQWqY47NALiBG8MZ8ZTNxnjB7PkeFzP7PEreplw__H_3r51ufQlcm-V_35L_YU5rTtVMG76myXC6eHVjZ9ABEcuh8tKZVx4u9FvkbK-3dJ44TwTf88QruHyiNPXr4mwRbB8S3_oJFRyoAbDA25L6ixcr2QqTqL7mjAOoFd8Zpf3UzwVQMyPcp1M57m1l_1QhvqduwFarP4ltDrumL2EdXSaL7_aV4C1VZ-wdwpIEmfIB6iSL6_GJI3izXKdl21xBGS52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOMIqZEaZK1bItpvqyBgEtbFt7nh6e0Vic-zGTX_p0pLE4vUJtprw1nZ8PKCe6zX-oUtjpC9htaFbDikNoXtSn3bDvHiQduYq3p4_ZfstpSCtbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3XBBovPwKe-X7_23umF4m18liJV3xmmXxikEP8qLZgv7Jpk5eqwtbNm5-xlGe0EOpU80L84loquufDpPc4jObHJ8DjGg57rFIRzjTdJo7DTRHWldkt0z7OFWWPGhWvQJQPu2YK7QUauuON-4B6IyEf2LT0OceZD9hZT4Ri_tbhhDxMqnZpB0NBahKq9ZNIkybByCeUm6Rlw7grUetN594EUirDVIV3KGJxamAVvcuv9Y6s4Pcri6uWB4AtJzAng2jw6ymr82WeoRR1FYBPnLmmCa9z636P5-0iPIKAkREA3ctyiRcYtDNL7m6b2PqyTLqHAxcP6mbPL8gvwYNqMES4X-rNQBVWvkJlsegcncHrSuzFf351_-70TKyf1mWrb5EM5bnxE4MmH5XZjmVx_HjJpYrURubr1vZNWpZuqo8gwq4FegF73ifS7LQ-7kF37qYLhXPzhpjSYn3byOfj4VWdm8BC78CqGnIeziHAQREtqEQa4-NR-HU9bn9JCS6S7d4HydKEFqVBCp0R81-OdFgPPSPHmbpZ6ZetA2FBvJ1mR9KaWcU5qRLAxAe_NtDOEqniwTos_MCB2NlNLi5Mv4I5goHSJy7PBuf_twNXMkHv-0X1QQy-1V8LN4HoPxh1nulXw3THSjFVHuk3a8-DNnapdl7qq3V4yOG7c19Q02yHJV6erdg3_RkvNACPUOj5H0yA268L86dvHryJTuzQtneEKi5b4t0FfN-T69w8zPi-QLriIGE8WIV-jGIxV2e1cjGw

108.168.193.189

302 Found

0 B

URL HTTP/2
mybetterck.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_SU5IleOSHalxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stleEiMFl0NUscCfSwvqLrt3DLjUA9b7ozAqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3nN_Nixeo3KfPrpX5dvP-f1hV9rEYhf4MrAIuBbTRJoVQkVBH-LSO5R_UbBSfUPWMcSY0T-DpEDUFprcRDUhLF6Fqj1CGUzOd8mT8rhTgyZvO-13y8Ix0GAKvZX8W-PicvpUpXZGx3TIR7BSZRssVCPE9PV3hOi9yeL3WS0dy4OEWJaiJGfFNAU3Myq6Pdr_4YdpuOj6WkQ4lm_DQoLyBHKUGQoMsnHPW4WMDrx-kRMJDNyUKl39nr8kjLbVdAVFh2r9XI2Dk9wu-gvlQhBFHmwR8ZU-rf5mzO0omCRFMcH2pdp5OluyLWCZ8_JWQJx09kNx8dLR1Iba7MGI_Ao4imfjGYkG6If3iQt_Sbsk85figKkkiUlZEmxNcNIf0QuhnufwpTl0a6xkPdQ_zvperNPxCY9RQfbwKKEXPuYeFTLAF20VVRGf7rI8NjUriiu08exIsRlzAb-KnfKn9deyk8hqR_Nri0uZnwU9NGSBQ1xs2luDX2IQP_HaIi0eDFgCTwORK5dkyFtNhN0QBn8omnlzh63kwAoVlC-pdfjmmM7lVVuIGWZSnebpEX2GCLJ98nl796EJfyFFl_kQ-dKN4vgy4WgwgkG6u7YxdzLQf-DfX00mVRZ9PbMtqbkDYk5066RcyDnBJbyC1YUgCbnn8GyN_c_1H6FasLGwWINnsDzEFDVFEDHNBTLdTvGqSD6Pbxp9zhHV5jwuW-sDad6jDvsz77_-osXd80Ll4Z0qBJX-5KZcdgtzrATGL4kocLZSGpzkahoH54AQWqY47NALiBG8MZ8ZTNxnjB7PkeFzP7PEreplw__H_3r51ufQlcm-V_35L_YU5rTtVMG76myXC6eHVjZ9ABEcuh8tKZVx4u9FvkbK-3dJ44TwTf88QruHyiNPXr4mwRbB8S3_oJFRyoAbDA25L6ixcr2QqTqL7mjAOoFd8Zpf3UzwVQMyPcp1M57m1l_1QhvqduwFarP4ltDrumL2EdXSaL7_aV4C1VZ-wdwpIEmfIB6iSL6_GJI3izXKdl21xBGS52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOMIqZEaZK1bItpvqyBgEtbFt7nh6e0Vic-zGTX_p0pLE4vUJtprw1nZ8PKCe6zX-oUtjpC9htaFbDikNoXtSn3bDvHiQduYq3p4_ZfstpSCtbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3XBBovPwKe-X7_23umF4m18liJV3xmmXxikEP8qLZgv7Jpk5eqwtbNm5-xlGe0EOpU80L84loquufDpPc4jObHJ8DjGg57rFIRzjTdJo7DTRHWldkt0z7OFWWPGhWvQJQPu2YK7QUauuON-4B6IyEf2LT0OceZD9hZT4Ri_tbhhDxMqnZpB0NBahKq9ZNIkybByCeUm6Rlw7grUetN594EUirDVIV3KGJxamAVvcuv9Y6s4Pcri6uWB4AtJzAng2jw6ymr82WeoRR1FYBPnLmmCa9z636P5-0iPIKAkREA3ctyiRcYtDNL7m6b2PqyTLqHAxcP6mbPL8gvwYNqMES4X-rNQBVWvkJlsegcncHrSuzFf351_-70TKyf1mWrb5EM5bnxE4MmH5XZjmVx_HjJpYrURubr1vZNWpZuqo8gwq4FegF73ifS7LQ-7kF37qYLhXPzhpjSYn3byOfj4VWdm8BC78CqGnIeziHAQREtqEQa4-NR-HU9bn9JCS6S7d4HydKEFqVBCp0R81-OdFgPPSPHmbpZ6ZetA2FBvJ1mR9KaWcU5qRLAxAe_NtDOEqniwTos_MCB2NlNLi5Mv4I5goHSJy7PBuf_twNXMkHv-0X1QQy-1V8LN4HoPxh1nulXw3THSjFVHuk3a8-DNnapdl7qq3V4yOG7c19Q02yHJV6erdg3_RkvNACPUOj5H0yA268L86dvHryJTuzQtneEKi5b4t0FfN-T69w8zPi-QLriIGE8WIV-jGIxV2e1cjGw
IP
108.168.193.189:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_SU5IleOSHalxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stleEiMFl0NUscCfSwvqLrt3DLjUA9b7ozAqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3nN_Nixeo3KfPrpX5dvP-f1hV9rEYhf4MrAIuBbTRJoVQkVBH-LSO5R_UbBSfUPWMcSY0T-DpEDUFprcRDUhLF6Fqj1CGUzOd8mT8rhTgyZvO-13y8Ix0GAKvZX8W-PicvpUpXZGx3TIR7BSZRssVCPE9PV3hOi9yeL3WS0dy4OEWJaiJGfFNAU3Myq6Pdr_4YdpuOj6WkQ4lm_DQoLyBHKUGQoMsnHPW4WMDrx-kRMJDNyUKl39nr8kjLbVdAVFh2r9XI2Dk9wu-gvlQhBFHmwR8ZU-rf5mzO0omCRFMcH2pdp5OluyLWCZ8_JWQJx09kNx8dLR1Iba7MGI_Ao4imfjGYkG6If3iQt_Sbsk85figKkkiUlZEmxNcNIf0QuhnufwpTl0a6xkPdQ_zvperNPxCY9RQfbwKKEXPuYeFTLAF20VVRGf7rI8NjUriiu08exIsRlzAb-KnfKn9deyk8hqR_Nri0uZnwU9NGSBQ1xs2luDX2IQP_HaIi0eDFgCTwORK5dkyFtNhN0QBn8omnlzh63kwAoVlC-pdfjmmM7lVVuIGWZSnebpEX2GCLJ98nl796EJfyFFl_kQ-dKN4vgy4WgwgkG6u7YxdzLQf-DfX00mVRZ9PbMtqbkDYk5066RcyDnBJbyC1YUgCbnn8GyN_c_1H6FasLGwWINnsDzEFDVFEDHNBTLdTvGqSD6Pbxp9zhHV5jwuW-sDad6jDvsz77_-osXd80Ll4Z0qBJX-5KZcdgtzrATGL4kocLZSGpzkahoH54AQWqY47NALiBG8MZ8ZTNxnjB7PkeFzP7PEreplw__H_3r51ufQlcm-V_35L_YU5rTtVMG76myXC6eHVjZ9ABEcuh8tKZVx4u9FvkbK-3dJ44TwTf88QruHyiNPXr4mwRbB8S3_oJFRyoAbDA25L6ixcr2QqTqL7mjAOoFd8Zpf3UzwVQMyPcp1M57m1l_1QhvqduwFarP4ltDrumL2EdXSaL7_aV4C1VZ-wdwpIEmfIB6iSL6_GJI3izXKdl21xBGS52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOMIqZEaZK1bItpvqyBgEtbFt7nh6e0Vic-zGTX_p0pLE4vUJtprw1nZ8PKCe6zX-oUtjpC9htaFbDikNoXtSn3bDvHiQduYq3p4_ZfstpSCtbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3XBBovPwKe-X7_23umF4m18liJV3xmmXxikEP8qLZgv7Jpk5eqwtbNm5-xlGe0EOpU80L84loquufDpPc4jObHJ8DjGg57rFIRzjTdJo7DTRHWldkt0z7OFWWPGhWvQJQPu2YK7QUauuON-4B6IyEf2LT0OceZD9hZT4Ri_tbhhDxMqnZpB0NBahKq9ZNIkybByCeUm6Rlw7grUetN594EUirDVIV3KGJxamAVvcuv9Y6s4Pcri6uWB4AtJzAng2jw6ymr82WeoRR1FYBPnLmmCa9z636P5-0iPIKAkREA3ctyiRcYtDNL7m6b2PqyTLqHAxcP6mbPL8gvwYNqMES4X-rNQBVWvkJlsegcncHrSuzFf351_-70TKyf1mWrb5EM5bnxE4MmH5XZjmVx_HjJpYrURubr1vZNWpZuqo8gwq4FegF73ifS7LQ-7kF37qYLhXPzhpjSYn3byOfj4VWdm8BC78CqGnIeziHAQREtqEQa4-NR-HU9bn9JCS6S7d4HydKEFqVBCp0R81-OdFgPPSPHmbpZ6ZetA2FBvJ1mR9KaWcU5qRLAxAe_NtDOEqniwTos_MCB2NlNLi5Mv4I5goHSJy7PBuf_twNXMkHv-0X1QQy-1V8LN4HoPxh1nulXw3THSjFVHuk3a8-DNnapdl7qq3V4yOG7c19Q02yHJV6erdg3_RkvNACPUOj5H0yA268L86dvHryJTuzQtneEKi5b4t0FfN-T69w8zPi-QLriIGE8WIV-jGIxV2e1cjGw HTTP/1.1
Host: mybetterck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
server: nginx
date: Fri, 16 Sep 2022 15:57:11 GMT
content-length: 0
set-cookie: rhid=82030820857; Max-Age=15552000; Expires=Wed, 15-Mar-2023 15:57:11 GMT; Domain=mybetterck.com; Path=/; SameSite=None; secure;
location: https://p185689.mybetterck.com/adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Permanent+Marker&display=swap

142.250.74.10

200 OK

768 B

URL HTTP/2
fonts.googleapis.com/css?family=Permanent+Marker&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
768 B (768 bytes)
Hash
79569a8cf5faae942bd965f6d4c6e1a2
38f38b8c2089fe823d44173ef0b7ad761a3f07ba
b6078b2c5304b223b2a879261b7b6c4b6607e0b14ed7f4c89c8c25cfc3fa79e5

HTTP Headers

GET /css?family=Permanent+Marker&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://discounts-today.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 15:57:12 GMT
date: Fri, 16 Sep 2022 15:57:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

discounts-today.com/favicon.ico

137.74.65.7

404 Not Found

604 B

URL HTTP/2
discounts-today.com/favicon.ico
IP
137.74.65.7:0
ASN
#16276 OVH SAS

File type
data
Size
604 B (604 bytes)
Hash
7ea4eddf789ac8bc48cd57746d592877
2728d7138a5a438a73b45191547268e8e9cf81fe
693ef108766308ba0c4e3c881ebf6d2467ac6bd36119b3df0a58224bc4a0f9b3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: discounts-today.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://discounts-today.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx/1.10.3
date: Fri, 16 Sep 2022 15:57:12 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2

142.250.74.163

200 OK

30 kB

URL HTTP/2
fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 29564, version 1.0\012- data
Size
30 kB (29564 bytes)
Hash
1b66ccb164151a6cf698667c8b570cc6
f5617a0f087645703c874453960be6382c8a7427
4884fec2c73aa52a2461073c1b87d1ceb80f400520391b43f97ca7d3c39eeb24

HTTP Headers

GET /s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discounts-today.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 04:30:51 GMT
expires: Sun, 10 Sep 2023 04:30:51 GMT
cache-control: public, max-age=31536000
age: 559581
last-modified: Tue, 19 Apr 2022 17:55:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 15:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15845
Expires: Fri, 16 Sep 2022 20:21:17 GMT
Date: Fri, 16 Sep 2022 15:57:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15845
Expires: Fri, 16 Sep 2022 20:21:17 GMT
Date: Fri, 16 Sep 2022 15:57:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15845
Expires: Fri, 16 Sep 2022 20:21:17 GMT
Date: Fri, 16 Sep 2022 15:57:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8435 bytes)
Hash
b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 65582
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10163 bytes)
Hash
3a4ed510756efe784c4ca84c61c4b5ba
10262867cfb19d3ba8f618e235d1a98531048f34
b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XGVoNQZeoG0AQ6LabPW2Zg7pAQqdl-bGTFAhbNpLlgTWNWx55-wEUQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:14 GMT
age: 65518
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12123 bytes)
Hash
f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 63913
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9904 bytes)
Hash
e6d17788c7d2a1a91e68eff48df14bd1
8e1090346d90bc69e7a95384e6a7a01154e31567
1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RbKcO0CPRsex8VWdIVqctamGyJ7D1PHD04ry2wbrcDPDYL0Yy5vPPQ==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
content-type: image/jpeg
age: 65197
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13536 bytes)
Hash
512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 65320
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12425 bytes)
Hash
da1bd18c37b83b0ef4641036dc208eec
abb5c719ec9341c6d4146297a2a1eca171df9c81
0085a66912a814c619a1257545d36610c7109ba32f1b097176102d3d3db2c8d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12425
x-amzn-requestid: 96b5f0d2-1327-4180-9d48-f915630c3de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDqHyooAMFqyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-7d89d2d7024f6a821a62c948;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1Y5uBMPJvxTDKGnc5Q0lzKZXDv4lwTByGDO8eRIwgauut0yfJz-8Lg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
age: 65197
etag: "abb5c719ec9341c6d4146297a2a1eca171df9c81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r.srvtrck.com/v1/redirect?type=linkId&id=04d1a16ae9d849449653d6346b1fab9e&api_key=d00e4ad2dba0dd00e7bba5881166ab40&site_id=f6f69269fa254277af8aff90bd34aaf8&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443557508

104.19.168.96

302 Found

0 B

URL HTTP/2
r.srvtrck.com/v1/redirect?type=linkId&id=04d1a16ae9d849449653d6346b1fab9e&api_key=d00e4ad2dba0dd00e7bba5881166ab40&site_id=f6f69269fa254277af8aff90bd34aaf8&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443557508
IP
104.19.168.96:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v1/redirect?type=linkId&id=04d1a16ae9d849449653d6346b1fab9e&api_key=d00e4ad2dba0dd00e7bba5881166ab40&site_id=f6f69269fa254277af8aff90bd34aaf8&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443557508 HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Fri, 16 Sep 2022 15:57:13 GMT
content-length: 0
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=ab9d7e6e32fd404a855c3d11bbff07c6; Domain=.srvtrck.com; Expires=Sat, 16-Sep-2023 15:57:12 GMT; Path=/
location: /v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bacbe89c380b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r.srvtrck.com/v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7

104.19.168.96

200 OK

566 B

URL HTTP/2
r.srvtrck.com/v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7
IP
104.19.168.96:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (352)
Size
566 B (566 bytes)
Hash
ad45d6682ee01ed4466a2e796569ea65
3e3c5377b0aedfe612b308f3ad4126a7e8a65ffd
faa27824b1522987dd8ba7328119e3ffd8d6452285895e86955d0b3b7c4e285f

HTTP Headers

GET /v2/go?t=8tap4%3Ad%2F0rfcaifg7s245cam9v2%2F6l6c-o0t7a74b370c%2F73911%2F47e1963756d300792007050007%3D6i644sb3a0b6dea812aa25d5%3F121c2d7v23942071c938d9%2Fc1f2c8b435f374e1ccebf3337%2F2u2kfifc936%2Ffo2.427.an8kfa9tb%2F3satfh&e=1&ai=4345b749139e46a0b4c3e9c6ab3306cc&sct=1&ct=1663343832948&cu=09dc5f3c9be34f179e7cce7fb3777202&ykuid=ab9d7e6e32fd404a855c3d11bbff07c6&sc=1&cs=a3c0850a7f6217ce3b3997f396af2ec7 HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ykuid=ab9d7e6e32fd404a855c3d11bbff07c6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:13 GMT
content-type: text/html;charset=UTF-8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bacbec48690b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

tracking.s24.com/v3/commit?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D

104.18.28.233

303 See Other

0 B

URL HTTP/2
tracking.s24.com/v3/commit?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D
IP
104.18.28.233:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v3/commit?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D HTTP/1.1
Host: tracking.s24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking.s24.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://tracking.s24.com
Connection: keep-alive
Cookie: co-session=RLGCOYBzRb83DnVW1uYT1SnAzajD3sUa; s24uid=38789a98-b0c8-4cda-af7b-d3f025d619ec
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 303 See Other
date: Fri, 16 Sep 2022 15:57:13 GMT
content-length: 0
location: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3&s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252#134=23&135=18
content-language: en-US
p3p: CP="NOI DSP LAW NID CURa ADMa PSAa OUR LEG PUR COM NAV STA"
x-robots-tag: noindex, nofollow
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://cspreport.s24.com/;
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bacbeeaa71b51d-OSL
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/2f/40/logo_bett1_fr._fr_2f40a163840c5d45e5eceaaa5e9fddce63d825c3.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

3.5 kB

URL HTTP/2
cdn.bett1.fr/media/image/2f/40/logo_bett1_fr._fr_2f40a163840c5d45e5eceaaa5e9fddce63d825c3.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 128 x 268, 8-bit colormap, non-interlaced\012- data
Size
3.5 kB (3530 bytes)
Hash
70c2dfc4f5c3a1ffaa0b265df1863788
e97ca930b16fe9de8421d2d628078684f3bd3ef7
0b2ffcea771a3fe3c4b32fcab2c9200f93fa2b8937fd156eeb7a3a04fa98b626

HTTP Headers

GET /media/image/2f/40/logo_bett1_fr._fr_2f40a163840c5d45e5eceaaa5e9fddce63d825c3.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 3530
last-modified: Tue, 06 Sep 2022 13:33:01 GMT
cache-control: public, max-age=31536000
x-imgix-id: 59f419b2adb1871fee1617c760d8a042948b09b0
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10056-SJC, cache-bma1655-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V4B0kPuGJ8o4nT4jaUVc5LEWBI2AsC3RCIiVprFprryARoM3XdPQTJLx0zso7ZS%2BdAQRJ5keTFdJhTmJrsmE0DwMzvgtr3yWK%2BCa3GPhe2ZaNgI5GIAfrV3ltDGlAds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4cc4bb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

consent.cookiebot.com/uc.js

184.31.15.144

200 OK

31 kB

URL HTTP/2
consent.cookiebot.com/uc.js
IP
184.31.15.144:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Size
31 kB (31207 bytes)
Hash
bfd5d0da3a9fa6771af0a51a693752ba
89714adfe7ccb0273694a820f1987ea9a64fdac8
25aef9f0356f966fa85489dc0252fc78179bf3900a654f0a2d521a651df1cd4a

HTTP Headers

GET /uc.js HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 23 Aug 2022 07:31:36 GMT
accept-ranges: bytes
etag: "aeea9f60c2b6d81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31207
cache-control: public, max-age=560
expires: Fri, 16 Sep 2022 16:06:34 GMT
date: Fri, 16 Sep 2022 15:57:14 GMT
X-Firefox-Spdy: h2

cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_04_fr.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

230 kB

URL HTTP/2
cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_04_fr.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 960 x 731, 8-bit colormap, non-interlaced\012- data
Size
230 kB (230153 bytes)
Hash
602dd3e95717af30f00245b5468b67d7
c7457f0770ab541e2d58fea1b02029c1d8ef9e1a
e733971208c0936eec32f6119b5b96f0f6e09878f3581e9b641f58590bf2448f

HTTP Headers

GET /media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_04_fr.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 230153
last-modified: Tue, 16 Aug 2022 19:02:53 GMT
cache-control: public, max-age=31536000
x-imgix-id: 50f0b96d633deb60c7ee3c7262566e0291fc9816
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10070-SJC, cache-bma1668-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W5iLzb%2FdGmhmkB76%2FfmDU0KuT%2Fc8BCg%2BwY0WZNLDV1D7ko2yXFtH3lBsjELZIELDFq1FLYdXAeA3jTxg2B2KtSrX2B8jCuSxemI%2F1QGkN%2BoiTptrVhowiW1EBmpsa4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4dc5ab518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_03_fr_3.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

262 kB

URL HTTP/2
cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_03_fr_3.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 960 x 731, 8-bit colormap, non-interlaced\012- data
Size
262 kB (261775 bytes)
Hash
b9eccca22c1582a29def7f137927d1dc
440ebe6f13de95441503ecd4cdf78f16332fab32
fd6c736f1f20474c68bc058c04c1401a096b8dd00c0c64a48e8d8e5af0c455a0

HTTP Headers

GET /media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_03_fr_3.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 261775
last-modified: Mon, 29 Aug 2022 12:16:55 GMT
cache-control: public, max-age=31536000
x-imgix-id: e9aca9b9ce9d5c95009d295fef327bc84504f351
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10028-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AF6Hqjux7NmZwk1dnNLM6%2FpVvoyMB81DmxJbfZ%2FTiG6qwiwQnNaepl1cc%2BT48kCxInbZK%2BfmyygSVw0khx8REMl8eh1qHV4h%2BIB4Fm%2FY46DHU5dojZ4dW%2FSBtmpcjog%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4cc4fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_03_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

29 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_03_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
29 kB (29252 bytes)
Hash
31074f4084d1b35b0d8758d2859ec191
6b5e3037af9598033d7053a86ef3f0672cd3a106
73a7ee56ce77c759714eb860e05e94d9f7d5891241edb73cff85da6102eb8818

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_03_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 29252
last-modified: Tue, 16 Aug 2022 13:40:56 GMT
cache-control: public, max-age=31536000
x-imgix-id: f5e2fd38fc03e3000d1c1e9d4090cf482b4437b5
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10060-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ax79NDxvo5cmZGrJQfPDNYpn3jdVfmcQ4W26VfIcv5PqeeBLS%2BrtIQxLASgqeRE0cFwu4blrK4pzlGxh8uY%2FCo6GqGbJsAI9suTNAbVnnhMLaHxFeQbJHQV5Q7TumSY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50c9cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_01_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

59 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_01_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
59 kB (58887 bytes)
Hash
26773e36342b20dad4ef894a9c7c095f
27ea6b4b215478ab16dc7e16f5648b2c86eca1c0
1d824a31143b4b52625068d881dc441a54cccec666017a0483809427f6824342

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_01_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 58887
last-modified: Tue, 16 Aug 2022 13:40:56 GMT
cache-control: public, max-age=31536000
x-imgix-id: 72aa6dadcdf825b1bb7d6a6017e0f971d8142afb
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10057-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2Bne%2FZROW2LjLv0zZxPly0dZVxEgK8bT22Dk0tGAnWgvCkyZesoOr9gewR3l4kXVEWqh8yrxA0NXr%2FTUWjWrcaJCtb5zlROJz%2BqZAQsHLlHqwGTCHM5CC0B3ZGC4VN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50c94b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_04_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

38 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_04_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
38 kB (37705 bytes)
Hash
d4577f73c0786ca68c43ffac09d4f39d
7d86877f33e0357c4d928ead5c4f8dd7c25b6f26
ebfeb6a2edff86bd151a6ab15c3c5c2cf4cbebda12364273f20e975855e9c2c6

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_04_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 37705
last-modified: Tue, 06 Sep 2022 15:51:29 GMT
cache-control: public, max-age=31536000
x-imgix-id: 931c154dafe134d9023f7b1ffb5f3c02f6b6cb36
x-imgix-render-farm: 01.1072
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10021-SJC, cache-bma1662-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kQORkz9wNjD1WHeocPZ0D0lJX2D5J17RQKuUukJE83zgfBbcPvgA75maZiJOnATBniVsc4Z9FK3Mcha%2BTOXjceo%2BApIIY2k2TmnsKN7NK5ZuQchtK3IXFcmULDHCnk8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50ca1b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_05_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

42 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_05_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
42 kB (42361 bytes)
Hash
9b75ba100aced1d3d188d1ccea0c12f7
4f53e263a6774f105dbbb8ef890ddc87265bcae8
07e2ed44ded479d60a28d5851adbb87eeddf203840e0d7526d0edb6c3a741828

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_05_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 42361
last-modified: Tue, 30 Aug 2022 09:43:17 GMT
cache-control: public, max-age=31536000
x-imgix-id: 78e207e0f1fc52f9e09d312f67c93c67068f528d
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10053-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DOFBVUnl%2Bcs33Wj6ykgZC%2Bq2E8yMdHv1VZuFNDUc2KMaWb0%2FuEqKa%2Ff6%2FvPKD38COOmvEYabt%2FuBynp9oFIIeiptatgcAvU6Lca%2B1BISLe%2BiBQe4h%2F5K2M%2FMisPFM6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50ca5b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_02_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

35 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_02_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
35 kB (34802 bytes)
Hash
17627b8271c5750f69d109f9275c0758
a90d880aeb40ddcdacca0996cdfb69b47920afda
24f47c8d37457189687ee46c447bd7c93907302d93294f660b72299667d137c9

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_02_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 34802
last-modified: Tue, 06 Sep 2022 08:13:51 GMT
cache-control: public, max-age=31536000
x-imgix-id: e7160594e5284cf0abc0a42cf1e998b74f954ecc
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10076-SJC, cache-bma1673-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YEOdIqZbOwX3I27vLOTD70YKJgY1CEwMY2wxYgE9PX%2FQU50z9gyRJeUfiXIN3Oa1SS4Wp3sWUOW1XMHF%2FhFBfVUJPA5PooytPisUfTX%2B%2BO0czSVSqV8QDWKHsGyT4rE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50c95b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

consentcdn.cookiebot.com/consentconfig/e2e1cd57-ce1f-4b28-aeb0-dbae5653454f/bett1.fr/configuration.js

104.110.3.72

200 OK

669 B

URL HTTP/2
consentcdn.cookiebot.com/consentconfig/e2e1cd57-ce1f-4b28-aeb0-dbae5653454f/bett1.fr/configuration.js
IP
104.110.3.72:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2179), with no line terminators
Size
669 B (669 bytes)
Hash
7e12808d3eea60f790621de732daa420
ed7a0e5e09b17d68601314d920b9c2696df8a023
3bf209a0504a6549c21fa1a12ee0f15a093cebe1eab848aaa7ed0f912067e703

HTTP Headers

GET /consentconfig/e2e1cd57-ce1f-4b28-aeb0-dbae5653454f/bett1.fr/configuration.js HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9ff97c0b19b410239936ae0725b2eb28:1663170598.478337"
last-modified: Wed, 14 Sep 2022 15:49:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=18265
expires: Fri, 16 Sep 2022 21:01:39 GMT
date: Fri, 16 Sep 2022 15:57:14 GMT
content-length: 669
server-timing: cdn-cache; desc=HIT, edge; dur=25
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/images/ajax-loader.gif

172.67.190.93

200 OK

7.5 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/images/ajax-loader.gif
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 48 x 48\012- data
Size
7.5 kB (7507 bytes)
Hash
4419478d73c38c8ef1956840533894d7
f8f0a0a0e57cf5c24ec6245fe0c13e759ec1ede1
6f7f609fe79a5c0e105b229dd420477cca371d026b3a695a755488a810485f1f

HTTP Headers

GET /skin/frontend/bett1/default/images/ajax-loader.gif HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/gif
content-length: 7507
last-modified: Sun, 01 Aug 2021 19:30:16 GMT
etag: "6106f648-1d53"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/images/ajax-loader.gif
x-varnish: 5475690 197477
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i4iHAE8FG5V%2Fp7NMtPM7f06NXQSnmT7elNmSBY86FC0o6EPPvPJ4AdeU2hN9n4tWPLao4g%2F3P7ZDZSz6MuWHLr6%2FCHGCv3yhPeHgMmrEI2bnM0QwbL5J71USEIxb9HY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4cc41b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_06_CLEAN.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

31 kB

URL HTTP/2
cdn.bett1.fr/media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_06_CLEAN.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 850x510, components 3\012- data
Size
31 kB (30820 bytes)
Hash
71f31ab9681ce8e7967b5c18e54d0080
74d37a58410160c098d9364026ff28b7e3823860
498827a5331c842b0a10bc1219dcc1965f7622918ec3058294c370d9c8546d05

HTTP Headers

GET /media/wysiwyg/Matratze/bett1_HEIA_Slider_Bpdyguard_Matratze_Illustration_06_CLEAN.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/jpeg
content-length: 30820
last-modified: Mon, 12 Sep 2022 17:31:51 GMT
cache-control: public, max-age=31536000
x-imgix-id: 0b00cc3ac008075a930e8f2218b1132b5bfe1dd5
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10077-SJC, cache-bma1652-BMA
x-cache: HIT, MISS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4p1LeLpc1ORI1VqN9bD35TZPhfYvoXs7TR3WsT4mfhAyVyPtQ4I87SDk77FKlugkw8GApDxxEo2s62gDFa6Gg3QK0I4%2FURY1ikDV0yHI9%2F1bC8VNbLp0wFvXsxLvEIA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf51cacb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/slogan/b/e/bett1_matelas-anti-cartel-plus-de-3millions-vendus-fr_slogan_0122.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

118 kB

URL HTTP/2
cdn.bett1.fr/media/slogan/b/e/bett1_matelas-anti-cartel-plus-de-3millions-vendus-fr_slogan_0122.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 940 x 459, 8-bit colormap, non-interlaced\012- data
Size
118 kB (117734 bytes)
Hash
4d09876cfad2768b8a58fab6e7b1658e
11c521d9372c2bb194b15993a899654d527d02f8
4030e18da3bcf292ea618a655cbfb5c0e201accdf9f9700e04f4955fc44ed399

HTTP Headers

GET /media/slogan/b/e/bett1_matelas-anti-cartel-plus-de-3millions-vendus-fr_slogan_0122.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 117734
last-modified: Mon, 12 Sep 2022 08:54:30 GMT
cache-control: public, max-age=31536000
x-imgix-id: 6bf9d6458f564926e6d52c605e69505272ecd639
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10042-SJC, cache-bma1628-BMA
x-cache: HIT, MISS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=De9cEURfsz%2BadylG5gcpHPOAu8d4E%2B9nakBQbgnNANUG0z4sTFPr811CpOQH9bf%2FfAT%2FuVuAOkF3nmKcqB%2B12jPEphH0UTcYq0RrHqRMksFNVZAVgb%2B3YPQYYsBNmVY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4cc4ab518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/2b/9b/bett1_kreditkarte_footer_fr_2b9b2632a4a8177659a454b4fe0c448afb1ce359.svg?q=80&auto=compress&media=true&media=true

172.67.190.93

200 OK

52 kB

URL HTTP/2
cdn.bett1.fr/media/image/2b/9b/bett1_kreditkarte_footer_fr_2b9b2632a4a8177659a454b4fe0c448afb1ce359.svg?q=80&auto=compress&media=true&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (5330), with no line terminators
Size
52 kB (52336 bytes)
Hash
0ddc4e3eb6708c783cf3e4fadde41ae7
5efb7e9f41981df910de6d141ae921a357e0d1c1
554a1c2ab45bc46fe81ef1b40d975d9bcdfd00a815d6480033d7a88604b10caa

HTTP Headers

GET /media/image/2b/9b/bett1_kreditkarte_footer_fr_2b9b2632a4a8177659a454b4fe0c448afb1ce359.svg?q=80&auto=compress&media=true&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Tue, 30 Aug 2022 10:41:55 GMT
x-imgix-id: c5e93e033844d06aaa5cdf0ffe8d92eb61b082d9
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10027-SJC, cache-bma1646-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=si2oGAPnXteNwR2ZT%2FTznYO8IMWzAFjbdUXwB5273W6%2FpAJ3qSMUXgKq%2FGIhiyENgoPxZNGHTTtjKCXoXN0AblRqjUlSmOYivl41W7Q%2FwSwK8JrYzq6sfWMnUKUNYuo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4fc82b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/fonts/bootstrap/glyphicons-halflings-regular.woff2

172.67.190.93

200 OK

18 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/fonts/bootstrap/glyphicons-halflings-regular.woff2
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /skin/frontend/bett1/default/fonts/bootstrap/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/octet-stream
content-length: 18028
last-modified: Sun, 01 Aug 2021 19:30:15 GMT
etag: "6106f647-466c"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/fonts/bootstrap/glyphicons-halflings-regular.woff2
x-varnish: 4829589 393821
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PJCm0n%2FYaGz1wT%2BFQtE614x5tUBpqVE9mpFFitgDopD8z4I6i5xGyRhBRsbt7aZn1tQffeMS%2F76vgLuC4lh8S%2BFh%2BxtIBW7U1%2FI%2BpXH4j8xuvn5DjL1I4mZqKnZv8Ts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4bc28b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_02_fr.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

134 kB

URL HTTP/2
cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_02_fr.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 960 x 731, 8-bit colormap, non-interlaced\012- data
Size
134 kB (134339 bytes)
Hash
998bf4032f4a885efc3b4a079f10dca7
4dfcfb61183c91b346cdf6d8aeb648e663ca4986
8b529b59ccb3a3c9ff904aceae0eef023f982ee73cfba408e1511daf031750ef

HTTP Headers

GET /media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_02_fr.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 134339
last-modified: Wed, 24 Aug 2022 13:20:40 GMT
cache-control: public, max-age=31536000
x-imgix-id: 9110fbdc71cda2a971db69b99c115f9b1f0b8f0e
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10047-SJC, cache-bma1648-BMA
x-cache: HIT, MISS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S83V9coFSXVLiNSsWKMuvA9JwKzb3MPZsv75zTlUuETzQm1quaLUwZfziqEKA%2FvGfMGVi%2FOlT9OWel8AJbZd4SL%2BkMlNzTiT28MMV6NNzwf0LSPnbd4QxrbTPyKT03U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4cc4cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?q=80&auto=compress&media=true

172.67.190.93

200 OK

147 kB

URL HTTP/2
cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 960 x 731, 8-bit colormap, non-interlaced\012- data
Size
147 kB (146694 bytes)
Hash
c29fd24141155ae96b8e777f4e82a65f
4137cd23fd5c8ef8a197f70f13ea137a76840f73
d3a652bd078a5c8331ac1ac2b7cd7b953f412335c580bb40afcb0d43cd67dadb

HTTP Headers

GET /media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/png
content-length: 146694
last-modified: Tue, 13 Sep 2022 19:10:08 GMT
cache-control: public, max-age=31536000
x-imgix-id: 3df4f4cee7dbc22bd5bf7553803874eb6a5dee99
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10057-SJC, cache-bma1625-BMA
x-cache: HIT, MISS
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HBY%2FLTKfiIZFKZJ689x6it7uTCj7eHs58r2%2F0zabX7NeAVMbhbNcJJ6UhVnPYbsugzipnzz1iyAR5b%2B1gukVFc1lFZVvhcRP5YATRYFJgR1rUXn8L4Q510ny468s8Rg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4cc4eb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2

172.67.190.93

200 OK

16 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 15640, version 1.0\012- data
Size
16 kB (15640 bytes)
Hash
6b222561afc4a71b9888f2ec060b72de
8c65d3b85a37264f4378e61cbf37ebad1adc02fb
c867104326e3c4b658209d8e5bcea0900aaf7fbc2bbc181ca01c482cac2810f3

HTTP Headers

GET /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bett1.fr/media/css_secure/c95bfea43e003ac6fd55787536481eea.css
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: application/octet-stream
content-length: 15640
last-modified: Mon, 28 Feb 2022 13:42:30 GMT
etag: "621cd146-3d18"
expires: Wed, 12 Oct 2022 14:10:02 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
x-varnish: 5475726 393938
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b6dxjkdwBsw812bNjk8fYia%2BmpXtUg%2F9F5M7s3dUugVC02gFehcWezoKGl98kOpD5HEOiNktIQNSYjfGcw2SMTLEeaDkMW8ADnoTn72WBEAGKMIi7TZ5xyJCG9i8QZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf7d868b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

172.67.190.93

200 OK

16 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 15720, version 1.0\012- data
Size
16 kB (15720 bytes)
Hash
3ada4464a5d4d208c5e3591076c5138a
b92a55e91e116da95d789d60a6e265027ba8d07c
53b907326f7c21a04f6d39cc32ff471aafec57d887feabfabb53394f378c659f

HTTP Headers

GET /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bett1.fr/media/css_secure/c95bfea43e003ac6fd55787536481eea.css
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: application/octet-stream
content-length: 15720
last-modified: Mon, 28 Feb 2022 13:42:30 GMT
etag: "621cd146-3d68"
expires: Wed, 12 Oct 2022 14:10:02 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
x-varnish: 5475728 393948
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0VuyJcsmi8D9Q7z%2F7Sfo5Whlo5xAdfzbT0DQMu5Fr0bO%2FgiSDkevJBEj%2Fx5B%2FsxjGpdL4cFcS4hhwKX10pgj3ICkTRwVAICJdDiTT%2BWnt9KcQ%2FuFRStsHTWzbBlV78w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf8089db518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/images/minus.svg

172.67.190.93

200 OK

549 B

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/images/minus.svg
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
549 B (549 bytes)
Hash
c16445a0714fe002f9cb6b98be17af34
601a952cb831b31a464c986f4177bcd44d76d170
83990e3a0f97898014d9081b76a0388e9ec4defaafc33bbc0947d045d10a4200

HTTP Headers

GET /skin/frontend/bett1/default/images/minus.svg HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/media/css_secure/92868964ee9c32e995d1528f138eb8e6.css
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Aug 2021 19:30:16 GMT
vary: Accept-Encoding
etag: W/"6106f648-c9"
expires: Wed, 12 Oct 2022 14:10:02 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/images/minus.svg
x-varnish: 4829627 393945
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=URnnvUBMI3VG8qWuF2RePYgntSSWO6dE4m14SH57FApcYaR9FQT8xW%2FOJ1YY8ja2ieUEmMRnxAkr4kHJxkESn45L5lTUmWIY0hjMbAz0OYCllCVE0tDjIaKOWlYekkI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf7b84cb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2

172.67.190.93

200 OK

16 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 15604, version 1.0\012- data
Size
16 kB (15604 bytes)
Hash
4f5f5c645bf1a0cd30d0927f363da4a8
e3dbb2ca8297ba1e19f467e009874e0403e1ade8
ab106619cd53cba1c09e1b3aedcf87dc90958fef3b886f9107a0ae94f5dd7733

HTTP Headers

GET /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bett1.fr/media/css_secure/c95bfea43e003ac6fd55787536481eea.css
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: application/octet-stream
content-length: 15604
last-modified: Mon, 28 Feb 2022 13:42:30 GMT
etag: "621cd146-3cf4"
expires: Wed, 12 Oct 2022 14:10:02 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/fonts/theme/robotocondensed/v18/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
x-varnish: 5475730 295299
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y0O0uNaUOU47R4%2ByAJKdK7nPnpJzr4sPH7h5UGmGHAecdo4qD%2FoR%2BScHNiyNZTYXIgZLkStVFUta86QIJ500sQU9Nd2p%2BEHOD42QVVUGaCC7ARn4sJqSFI%2BepAzyX88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf7d865b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/26/bb/bett1_payment_uebersicht_bett1_cb_pl_black_1_26bb69c2684d237596b9e0e749de761424adc7bb.svg?q=80&auto=compress&media=true&media=true

172.67.190.93

200 OK

2.0 kB

URL HTTP/2
cdn.bett1.fr/media/image/26/bb/bett1_payment_uebersicht_bett1_cb_pl_black_1_26bb69c2684d237596b9e0e749de761424adc7bb.svg?q=80&auto=compress&media=true&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
2.0 kB (1992 bytes)
Hash
02d9ff37a3745042c76ce7b1484b6364
0f583a3c648bfe2a1bce6713021000972d01e939
e6ee21f425a6cbd87b947be580e5808575cb860ecd1ebca7fd51320b58105cd1

HTTP Headers

GET /media/image/26/bb/bett1_payment_uebersicht_bett1_cb_pl_black_1_26bb69c2684d237596b9e0e749de761424adc7bb.svg?q=80&auto=compress&media=true&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Tue, 04 Aug 2020 13:21:29 GMT
x-imgix-id: ce2a45b9d8890becb796a32dfa715e4f9a2a27f2
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10024-SJC, cache-bma1649-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LfXVDgnX5raEI83JRhh3wNtzwYQlvXA8DrcV0Q7%2F5my%2FTGfcX5IQMGMweFlWUuq5ZnTtxqhNISV4RRBEBU%2Bg1YdthrkzenkIdTFL8gLLRgZO92QGywOLxdOa1C5Z3Fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4fc7cb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/images/favicon/favicon-192.png

172.67.190.93

200 OK

20 kB

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/images/favicon/favicon-192.png
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19663 bytes)
Hash
8f929f39a222e521f24eaba6d17cf4d9
dc4c5c9ad6e21b83beb13328f066d520a76a28de
29ed67f440bb3c9fc7696565c9f4528c0ad9e2e5f542731d9a3c6177ee11935c

HTTP Headers

GET /skin/frontend/bett1/default/images/favicon/favicon-192.png HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: image/png
content-length: 19663
last-modified: Sun, 01 Aug 2021 19:30:16 GMT
etag: "6106f648-4ccf"
expires: Wed, 12 Oct 2022 14:08:59 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/images/favicon/favicon-192.png
x-varnish: 5475732 230265
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ODIc%2FWu5QSZdD994wKaLfd68n4H1eUTZbuEHQAEtij53aVeHzWto7fs%2Fx70FMUnRK2r04WIkZNgBjJnCNtO0aIZ2xWyDtBNyzSj2%2BF0ZEhEx6JRgWc1%2BstN4psY1%2BIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf9baaeb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/productpanel/b/e/bett1_antikartell_detail-panel_3.jpg?q=80&auto=compress&media=true

172.67.190.93

200 OK

390 kB

URL HTTP/2
cdn.bett1.fr/media/productpanel/b/e/bett1_antikartell_detail-panel_3.jpg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 2160x816, components 3\012- data
Size
390 kB (390206 bytes)
Hash
2e4403caf8b05f6182dea8bc946f63c1
64b5e44ca486f20de04ed94169eb31a2181943a3
500d7c75ef0f1f525f2eab37652a9c7a51a0740232b8fb7786823a037f27a5da

HTTP Headers

GET /media/productpanel/b/e/bett1_antikartell_detail-panel_3.jpg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:16 GMT
content-type: image/jpeg
content-length: 390206
last-modified: Tue, 30 Aug 2022 06:16:26 GMT
cache-control: public, max-age=31536000
x-imgix-id: 2648dd04a51310261f8129736062d53ced1753c8
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10045-SJC, cache-bma1678-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yV6zmNUzJ63J4OwWTNj4GaGXFFRJeTkD8mSEsb8GnltwgZyDe4Q9jdRCfg9u1ZsUFN326SHAzZqyT2fZL7%2FFSWk2paolk9zBsrmXS5e6ShXUrTEBMz%2FGV%2B94eh%2Fo8wg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacc01bbfdb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?w=470&q=80&auto=compress&media=true

172.67.190.93

200 OK

37 kB

URL HTTP/2
cdn.bett1.fr/media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?w=470&q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 470 x 358, 8-bit colormap, non-interlaced\012- data
Size
37 kB (36940 bytes)
Hash
b2cf297dd49bdda5830895f7de58b67b
14b69fd16e9720569ec8035b693c6282d9d0f08b
20e12491f7fa7b62d6e45f79999a9dcc393573b25f9cd0cca6d6f146b5917293

HTTP Headers

GET /media/catalog/product/b/e/bett1_bodyguard_fermete_gallery_01_fr_1.png?w=470&q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:16 GMT
content-type: image/png
content-length: 36940
last-modified: Wed, 24 Aug 2022 17:18:44 GMT
cache-control: public, max-age=31536000
x-imgix-id: 4d2276f660bcc4bc0ab44311ed81a97beb98ecf3
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10059-SJC, cache-bma1644-BMA
x-cache: HIT, HIT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HFwpgI7XfPAFZ2q5T2OkWElIHrS%2FemGdbPTXtkW1Vq5WxPLpaUfWoCckW3QQoyD3iNkhKYvKtmgATKaC1KFP%2FzklbBsxN749WIPKR3L922neXklo%2F1mDh8g8n9K5JxY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacc027ce5b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/078f0d2da20854b68d61ff66aba1c1c0.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/078f0d2da20854b68d61ff66aba1c1c0.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/078f0d2da20854b68d61ff66aba1c1c0.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-3ea2"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/078f0d2da20854b68d61ff66aba1c1c0.js
x-varnish: 5475696 295238
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e7ar3qz3p5bBZJgBMfKKcwqOoWRDKWKYowi6W%2F9HQrhz8maAcGjf9IrWJNy48nrUiJrb%2FhTj0EZvk3Lgc8bU3P8VV428XZLh4zsxi%2B%2BfTffXmA7pqKX2o4SxotzIhe8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf51cb4b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/ab931c80b06391260f18d5eadaf1950e.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/ab931c80b06391260f18d5eadaf1950e.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/ab931c80b06391260f18d5eadaf1950e.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-13bb"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/ab931c80b06391260f18d5eadaf1950e.js
x-varnish: 4829599 393827
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CG1j2F9q3G%2B4RVLCHgWwxZ7q0JWYrH5LI4FaOvcmDwQHmr2s3ktSYCl4hxD5QpPdyXnY1XfoVmKRE3btm4bEoJsCNRfqxDQnE7KzpdROd6cNKmTCyxUM0oWbzWbJnA0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf51cadb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/css_secure/805e3317835d85fc34180b407f07a905.css

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/css_secure/805e3317835d85fc34180b407f07a905.css
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/css_secure/805e3317835d85fc34180b407f07a905.css HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 13:56:40 GMT
vary: Accept-Encoding
etag: W/"631f3a98-616"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/css_secure/805e3317835d85fc34180b407f07a905.css
x-varnish: 4829621 197480
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r5JrzZkqMPcCtsyKPjYre4ujpG%2FvivXaldfB0P2ViVKjmozHaRlZjCaay2pG5KYX%2F8ACYScHc6koSdZ5Yl5s3%2FqkhagTsY3uWEx2MinRK8rxhRWKqi1gvg7Jwa02%2BKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf6bf52b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/aa/ab/bett1_footer_ig_aaabd03646d9f42fdbbe7e1f215f23b85116abfe.svg?q=80&auto=compress&media=true

172.67.190.93

200 OK

0 B

URL HTTP/2
cdn.bett1.fr/media/image/aa/ab/bett1_footer_ig_aaabd03646d9f42fdbbe7e1f215f23b85116abfe.svg?q=80&auto=compress&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/image/aa/ab/bett1_footer_ig_aaabd03646d9f42fdbbe7e1f215f23b85116abfe.svg?q=80&auto=compress&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Thu, 01 Sep 2022 14:35:30 GMT
x-imgix-id: cb02ffe9b4e1c795fdda8504ab02fe828b145b14
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10050-SJC, cache-bma1631-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xiv6Nlkq7IUj%2FAg2LL4iS1QAdijKqHLqc82dpxbs6C3CIOcRX4utsDLKIHIsm%2Bme5ixGdVz3vCn%2FXGtCReFYWJsDcFgBGTql5LoRdTU1P%2Bmq0lwCG%2BjcsSXoj4uArh8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf7c859b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

discounts-today.com/redirect-simple?ci=202&c=no&m_c_r=-1&c_p=s&c_s=420791880&c_k=education&c_geo=NO&c_d=Desktop

137.74.65.7

200 OK

0 B

URL HTTP/2
discounts-today.com/redirect-simple?ci=202&c=no&m_c_r=-1&c_p=s&c_s=420791880&c_k=education&c_geo=NO&c_d=Desktop
IP
137.74.65.7:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /redirect-simple?ci=202&c=no&m_c_r=-1&c_p=s&c_s=420791880&c_k=education&c_geo=NO&c_d=Desktop HTTP/1.1
Host: discounts-today.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.10.3
date: Fri, 16 Sep 2022 15:57:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3&s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252

172.67.190.93

302 Found

0 B

URL HTTP/2
www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3&s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3&s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252 HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking.s24.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Fri, 16 Sep 2022 15:57:13 GMT
content-type: text/html; charset=UTF-8
location: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN, SAMEORIGIN
url: /produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3&s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
x-varnish: 4829558
age: 0
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xyU9L1fe3V%2Bf6B4fsuX1jijSbEtmkJji0KXfQnZyeIc0u9ngFDgcYS3L5842ZanYeXa4FmoNEv%2FzlP8wEtqX9HhObkfSzzO7pwbVBsLq3USDCfktkOQ9xbGAfGeisNc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; expires=Thu, 15-Dec-2022 15:57:13 GMT; Max-Age=7776000; path=/; domain=.bett1.fr; secure
frontend=ec92243a1ebfe0b18e94a96087121f7a; expires=Fri, 16-Sep-2022 16:57:13 GMT; Max-Age=3600; path=/; domain=www.bett1.fr; HttpOnly
frontend_cid=o8z9c8CGcs0BoETx; expires=Fri, 16-Sep-2022 16:57:13 GMT; Max-Age=3600; path=/; domain=www.bett1.fr; secure; HttpOnly
loginState=0; expires=Fri, 16-Sep-2022 16:57:13 GMT; Max-Age=3600; path=/; domain=www.bett1.fr
page_user_country=NO; Path=/
__cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16; SameSite=None; Secure; path=/; expires=Sat, 17-Sep-22 14:57:13 GMT; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbef2d9fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

eu-library.klarnaservices.com/lib.js

54.230.111.116

200 OK

0 B

URL HTTP/2
eu-library.klarnaservices.com/lib.js
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 16 Sep 2022 07:54:33 GMT
last-modified: Fri, 16 Sep 2022 07:54:26 GMT
etag: W/"7d1247cfb4351c89a29091dd668a397d"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oVRGAWVu2lEszXBZ20LVpgivEtm1wks_hrZgnGgB9ppaZ6sAEM9arQ==
age: 28962
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/images/plus.svg

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/images/plus.svg
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /skin/frontend/bett1/default/images/plus.svg HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/media/css_secure/92868964ee9c32e995d1528f138eb8e6.css
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:15 GMT
content-type: image/svg+xml
last-modified: Sun, 01 Aug 2021 19:30:16 GMT
vary: Accept-Encoding
etag: W/"6106f648-d5"
expires: Wed, 12 Oct 2022 14:10:02 GMT
cache-control: max-age=2592000
url: /skin/frontend/bett1/default/images/plus.svg
x-varnish: 4829631 295302
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dDjlMxfyBoR%2B2hGelzYUfM4Krx0TtaZEKHMTvrTTaSa%2BjIPP3HQxMqr2d8JLSQZ5dkojS2dOQFQFtycOUdEkWcjz8EeyIbxX2CBOEAE4MpQge%2BCcTkljZ%2FwFcHrPf%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf7c84db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/73/ff/bett1_virement_bancaire_fr_small_73ff7b5297ede96c37b235b01a7d090dbf2776fd.svg?q=80&auto=compress&media=true&media=true

172.67.190.93

200 OK

0 B

URL HTTP/2
cdn.bett1.fr/media/image/73/ff/bett1_virement_bancaire_fr_small_73ff7b5297ede96c37b235b01a7d090dbf2776fd.svg?q=80&auto=compress&media=true&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/image/73/ff/bett1_virement_bancaire_fr_small_73ff7b5297ede96c37b235b01a7d090dbf2776fd.svg?q=80&auto=compress&media=true&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Tue, 21 Sep 2021 14:07:48 GMT
x-imgix-id: a43d31a45fb7cf50dea7b53ebd81c7add2740bcf
x-imgix-render-farm: 01.1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10061-SJC, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06MDdYLajbvLvOyv6S3YjEw2Qag7s84%2BaxqTpsx9LVPIV%2FGmZj%2FCMvFSv5Vo4dzByaft6pPFm3SO6Xv8nq%2FPUrRCE3zdMikbxJmHOrO6MuSHls95b17XwFOEnUQ9b%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf50c93b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/ebb1dcb33710ec118d720836278a2bf4.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/ebb1dcb33710ec118d720836278a2bf4.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/ebb1dcb33710ec118d720836278a2bf4.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-387c"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/ebb1dcb33710ec118d720836278a2bf4.js
x-varnish: 4829597 361316
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uoc45Nu19tbGMCfHZ3imbqAyfSaHzoZXk8frIQLVZa0HZVpJsSo43iv%2F7cL9Vt2UegAz6qZvghKeAlLflo94QxgnYEVgRebDuRZcpqyosSexsdy%2BtCBxRvNZa5Eds6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf51cb5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

rcgmal4n.klarnaservices.com/v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=24900

143.204.55.11

200 OK

0 B

URL HTTP/2
rcgmal4n.klarnaservices.com/v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=24900
IP
143.204.55.11:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=24900 HTTP/1.1
Host: rcgmal4n.klarnaservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bett1.fr/
Origin: https://www.bett1.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 16 Sep 2022 15:57:15 GMT
access-control-allow-origin: https://www.bett1.fr
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: e01437e7-6c17-493d-acb9-06f2758631f7
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"19fb-mnF+77ZAu0pBrwlyA2OOPCeGS4U"
x-envoy-upstream-service-time: 5
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SnJM1nqIt-uSQNVzepDtqO-uvTYujxwsi2T3jSonwZrgB3SrUfdFrw==
X-Firefox-Spdy: h2

p185689.mybetterck.com/adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0

108.168.193.189

200 OK

0 B

URL HTTP/2
p185689.mybetterck.com/adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0
IP
108.168.193.189:0
ASN
#36351 SOFTLAYER

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /adServe/domainClick?ai=kWFaCUptNn58R8TNhxcnkiYg-ZNNli1hevv0VVCpv_5V5iFoy4RNoHSuTxWNp-9czeSz3PcOJCc6RJeDicHGv_-bxfKsJ1qG3I9f6M9A5EsQz4clqbdarHUBeyiWksraaW9M9zYB9a5yQwMYpJ6nu8XCMWpwaLhFcDv3k0IZcEAx0_G52UqkuKcYuYm-LYAKalrnUiDEQVgoRnw4_8YfrhDPNJGm7mpD431WNgPC1pB_H4hgMr2NSCd89_k2Qpr6RRjFu-3bq4Tw_v71wUnADT9IOYq13IUhW_wkOIlEQzpQQVIYgd0c8lpuYz19K32vrcXyALe16l1bEemeDGsF2_5FcS2fXSfZodU_knheUSNVOQ4lqaEZCfEd_i3-YtjcizTC6TOQq9kU9v5zITt0VYGbzzdbYqCkaoBBNH-RY4cYRittxUmONda6Vtm_5EQtZan_-uJdGepP8yH07YkRAqEqr1k0iTJsZT4gk-eVXV8JbewQCztnWcj3K7XX8W6C7TrhG42q08B_qCYvh_QGQx2Qa1NZi5E3ZptjJAKgPgMG8VNmjXHzEyZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v1BbsozkC8-D-BybpyqSvYhMWU9yWglbJbcphUQyddfj9wHHM1g_xi9&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukOqK7Tas5b3ZDFH_WFK49eBqZZf5F4aoF55QUOROVN-yAEsomyxk2kw-QxmX_ZL_SfyIycVsEoKPQ&si=1&oref=2dd999adbfe43f7c0b155ea0676e9b05&optunit=TZJjyXG2ELyR-IJLFzSSdw&rb=JqqHJF0zZfk&rr=1&isco=t&abtg=0 HTTP/1.1
Host: p185689.mybetterck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: rhid=82030820857
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 15:57:11 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82030820857; Max-Age=15552000; Expires=Wed, 15-Mar-2023 15:57:11 GMT; Domain=mybetterck.com; Path=/; SameSite=None; secure;
loi=ad_1146145_off_590257_aff_89916_cid_185689-DATA-ENRICH.COM_ts_1663343831; Max-Age=3600; Expires=Fri, 16-Sep-2022 16:57:11 GMT; Domain=mybetterck.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/icons/payment/footer/paypal.svg?q=80&auto=compress&media=true&media=true

172.67.190.93

200 OK

0 B

URL HTTP/2
cdn.bett1.fr/media/image/icons/payment/footer/paypal.svg?q=80&auto=compress&media=true&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/image/icons/payment/footer/paypal.svg?q=80&auto=compress&media=true&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Mon, 06 Jan 2020 09:52:45 GMT
x-imgix-id: b91f88c04450acff5f894ca9578202a93d6c904f
x-imgix-render-farm: 01.1072
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10076-SJC, cache-bma1667-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NN4DKxpLqb%2FoR7gJgVRyuOL1vsyDEq4G%2Bg7U9cVYoilOdFTXAaUiOCQhtT4hligP3WlWwla58DjXvc5W4QMIsL7icj9eLh1%2BhVzYxIh5j07mT3WnvWHzO3jXILq%2B9JE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4fc81b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.bett1.fr/media/image/e9/4f/Klarna_footer_e94f4b0d6557ad88a603886789e053900d93fae9.svg?q=80&auto=compress&media=true&media=true

172.67.190.93

200 OK

0 B

URL HTTP/2
cdn.bett1.fr/media/image/e9/4f/Klarna_footer_e94f4b0d6557ad88a603886789e053900d93fae9.svg?q=80&auto=compress&media=true&media=true
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/image/e9/4f/Klarna_footer_e94f4b0d6557ad88a603886789e053900d93fae9.svg?q=80&auto=compress&media=true&media=true HTTP/1.1
Host: cdn.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000
last-modified: Mon, 30 Nov 2020 13:08:42 GMT
x-imgix-id: f4b50a1098e438215a102f8f141c4a847405b138
x-imgix-render-farm: 01.560
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10026-SJC, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rSZ0Pk9ame3Dy7wsgEalmv%2FQtDOopN%2BRKs7WTuDUB5p2kI0zZx8LMq%2FwIjb1iRMVLLEMfpyXjCJ1z6JLPowBSRrE4hNDxuNyiPm3%2BcGdZOSYpt6edrhflU3qLaBLA60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74bacbf4fc8ab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/645246abea027ca0b3574f12974f070e.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/645246abea027ca0b3574f12974f070e.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/645246abea027ca0b3574f12974f070e.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-55767"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/645246abea027ca0b3574f12974f070e.js
x-varnish: 4829585 295233
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uvsa91XOEhFLMR7GzjaZhR2yYNbStezoeISSly8ECD0tOqctEa9MgP0endGITrTfZGx3i8CVw%2FsXvBjFAWKYPRoWZPBdVt%2B2Ygb73UqYR0Vi6PV43qb0o%2Fk%2F%2FSxZLJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4bc35b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

rcgmal4n.klarnaservices.com/v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=47900

143.204.55.11

200 OK

0 B

URL HTTP/2
rcgmal4n.klarnaservices.com/v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=47900
IP
143.204.55.11:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3/s?ver=2.13.5&d=credit-promotion-badge&e=fr-FR&g=b38932a7-465e-5526-9467-c5c44b35e74b&purchase_amount=47900 HTTP/1.1
Host: rcgmal4n.klarnaservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bett1.fr/
Origin: https://www.bett1.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 16 Sep 2022 15:57:16 GMT
access-control-allow-origin: https://www.bett1.fr
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: 6c9df49a-51b1-4563-989a-bd4065da464b
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"19fc-tkOybSSrUo/sfFT1R+j8LfKSVI8"
x-envoy-upstream-service-time: 9
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f5ITyEX8VLXl0Qo1z82Gqd8kH8T1cfpQkJbRmPlgKl6VIPhMeZ4APg==
X-Firefox-Spdy: h2

tracking.s24.com/v3/proceed?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D

104.18.28.233

200 OK

0 B

URL HTTP/2
tracking.s24.com/v3/proceed?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D
IP
104.18.28.233:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3/proceed?cor_b=CiRlZDZkNjUzMy1iNzMwLTQyOGUtYjJmNS1lNmZmYmZjNDYyNTIaCGEzNDMzYjBjIOVoKLy-97EVMk52MDMwNDAwMDEyOTc4MDlkYzVmM2M5YmUzNGYxNzllN2NjZTdmYjM3NzcyMDItZjZmNjkyNjlmYTI1NDI3N2FmOGFmZjkwYmQzNGFhZjhArOGSuLQwSiBSTEdDT1lCelJiODNEblZXMXVZVDFTbkF6YWpEM3NVYVJETW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjBaDDkxLjkwLjQyLjE1NGIWaHR0cHM6Ly9yLnNydnRyY2suY29tL4IBJDM4Nzg5YTk4LWIwYzgtNGNkYS1hZjdiLWQzZjAyNWQ2MTllY5ABAA%3D%3D&cor_h=7uLv1SY6f_yxRl4Wvkmq4l03NNNm5tBwmBaDEybM3Dc%3D HTTP/1.1
Host: tracking.s24.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.srvtrck.com/
Connection: keep-alive
Cookie: co-session=RLGCOYBzRb83DnVW1uYT1SnAzajD3sUa; s24uid=38789a98-b0c8-4cda-af7b-d3f025d619ec
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:13 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
etag: W/"0801a1cc7e9870706dfb172d856356055"
p3p: CP="NOI DSP LAW NID CURa ADMa PSAa OUR LEG PUR COM NAV STA"
x-robots-tag: noindex, nofollow
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://cspreport.s24.com/;
strict-transport-security: max-age=31536000;
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74bacbee09b4b51d-OSL
X-Firefox-Spdy: h2

www.bett1.fr/skin/frontend/bett1/default/fonts/custom/Bett1-Sprites.woff

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/skin/frontend/bett1/default/fonts/custom/Bett1-Sprites.woff
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /skin/frontend/bett1/default/fonts/custom/Bett1-Sprites.woff HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/font-woff
last-modified: Sun, 01 Aug 2021 19:30:16 GMT
etag: W/"6106f648-6d10"
url: /skin/frontend/bett1/default/fonts/custom/Bett1-Sprites.woff
x-varnish: 5475681
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7voVe3HqgbCIuw1Oo72SV4JE8DAagxtDjEzvxr3Vdw5m63sNcsPz91FqM2g4kxrrCBFZFeyQv0edl%2BAD4emfWlOG8OKNmmzLErFr3E8kVlWC7bRb7kDpigfWZ03Bhfc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4bc29b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/css_secure/92868964ee9c32e995d1528f138eb8e6.css

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/css_secure/92868964ee9c32e995d1528f138eb8e6.css
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/css_secure/92868964ee9c32e995d1528f138eb8e6.css HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 13:56:40 GMT
vary: Accept-Encoding
etag: W/"631f3a98-c592"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/css_secure/92868964ee9c32e995d1528f138eb8e6.css
x-varnish: 5475692 295227
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYZy4tQkdb9ErLMpIwjltjAKDVfjXopx8rLjpOqYL8xaQpfssXqtswCxQsKxhvVmt9pdAkw3QM5MW38IQZgCI0U%2BFF0MQYqKmCPSO4hTS%2BXrUlY7KGj7PvfVJtqna9A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4bc2db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/c10fd053277dbf17ee843ae5d14cfa2b.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/c10fd053277dbf17ee843ae5d14cfa2b.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/c10fd053277dbf17ee843ae5d14cfa2b.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-1c6"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/c10fd053277dbf17ee843ae5d14cfa2b.js
x-varnish: 4829595 295241
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H9RHS%2FPnY9FFoDQpEa1%2BqmdmfJz1%2FSe5%2F1h7Q2dLZgUHu9Qhk7UZXHbDRECM8fHAko91w5DxeB5WNF4GEDXiAmqaK6nO6gAm%2FurjzqBG3AhCGmMDiqR3XJfYElpKV%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf51cb9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/06919cfc4891a4a30c0025a5d1d123be.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/06919cfc4891a4a30c0025a5d1d123be.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/06919cfc4891a4a30c0025a5d1d123be.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:33 GMT
vary: Accept-Encoding
etag: W/"631f3a91-3b0e"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/06919cfc4891a4a30c0025a5d1d123be.js
x-varnish: 5475694 393830
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HjnXOU8h9teUd7aPLq70Huf9wX%2BSNUiyBSEoggO1D%2B7a7hGA3qhkRDfsyNcKYGLYdWVCTWi8HxJwd2koYuyuDj5KHbsM1fYaDrE%2Bhcmf0YikV%2Bo%2B4hE8AK7iGk1%2FI3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf51cafb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.bett1.fr/media/js/a5f81022f6e64c57110ea7a69fddf00f.js

172.67.190.93

200 OK

0 B

URL HTTP/2
www.bett1.fr/media/js/a5f81022f6e64c57110ea7a69fddf00f.js
IP
172.67.190.93:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/js/a5f81022f6e64c57110ea7a69fddf00f.js HTTP/1.1
Host: www.bett1.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bett1.fr/produits/bodyguard-matelas-anti-cartel?utm_source=s24&utm_medium=cpc&utm_campaign=matratze-Bodyguard-H3
Cookie: s24clid=ed6d6533-b730-428e-b2f5-e6ffbfc46252; frontend=ec92243a1ebfe0b18e94a96087121f7a; frontend_cid=o8z9c8CGcs0BoETx; loginState=0; page_user_country=NO; __cflb=0H28vY4zkPwmgsUWfkj5LBEwYib6ibscRD5S7XsHh16
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Sep 2022 15:57:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 13:56:32 GMT
vary: Accept-Encoding
etag: W/"631f3a90-58bc4"
expires: Wed, 12 Oct 2022 14:08:58 GMT
cache-control: max-age=2592000
url: /media/js/a5f81022f6e64c57110ea7a69fddf00f.js
x-varnish: 4829591 393824
via: 1.1 varnish (Varnish/5.0)
access-control-allow-origin: www.bett1.ch, fr.bett1.ch, en.bett1.de, www.bett1.at, www.bett1.fr, www.bett1.pl, www.bett1.com, www.bett1.es, www.bett1.be, fr.bett1.be, www.bett1.se, www.bett1.co.uk
cf-cache-status: BYPASS
set-cookie: page_user_country=NO; Path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fc3Pi%2BlQt3gj722uvSEAFaovUc16ajV3JoUNDntwKc1DrtrnttGlNqUQj5Uih1%2FOEUJK%2Bk1PlfKv84q4m8N%2FUQTMMi4tIO%2Bgxs2iQ0m933szHdQ%2FDJpxZejUTnjUpqU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74bacbf4bc32b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP