Report - www.rhodasol.es/grupos/

Report Overview

Visited public
2025-05-08 23:45:54
Tags
URL
www.rhodasol.es/grupos/
Finishing URL
www.welcomebeds.com/
IP / ASN
34.253.90.127
#16509 AMAZON-02
Title
Welcomebeds es un banco de camas de distribución Global de Ávoris Corporación Empresarial, grupo turístico líder en España. Ofrecemos alojamiento de calidad al mejor precio del mercado a través de nuestra API de alta velocidad o portal web. Nuestro alto poder adquisitivo y nuestra red global de compradores locales nos permiten cubrir una amplia gama de productos para satisfacer las expectativas de nuestros clientes. Con nuestro soporte comercial dedicado las 24 horas, los 7 días de la semana y nuestro centro de llamadas multilingüe, estamos listos para satisfacer sus necesidades. Optimizamos nuestro negocio para encontrar las mejores soluciones en la industria para permitir a nuestros socios ofrecer y vender los mejores productos y servicios a sus clientes. La experiencia y dinamismo de nuestros profesionales es una de las claves fundamentales de nuestro éxito. Nuestro equipo técnico y de implementación está aquí para ayudarle en el camino. Obtenga la máxima conexión del mejor producto al mejor precio para su negocio.

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
d2eh7florc4mjb.cloudfront.net	unknown	2008-04-25	2014-10-07	2025-01-14	488 B	554 B	3.167.7.78
copilotstudio.microsoft.com	unknown	1991-05-02	2023-11-20	2025-05-08	650 B	11 kB	13.107.246.53
content.powerapps.com	10048	1998-03-10	2019-03-22	2025-05-03	513 B	8.9 MB	13.107.246.53
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-07	1.1 kB	57 kB	142.250.74.35
d2l4159s3q6ni.cloudfront.net	unknown	2008-04-25	2021-02-23	2025-01-14	6.3 kB	1.3 MB	54.230.245.27
eum-blue-saas.instana.io	22535	2014-12-11	2020-01-25	2025-04-10	946 B	514 B	34.240.91.6
www.rhodasol.com	unknown	unknown	No data	No data	485 B	42 kB	52.49.6.63
eum.instana.io	6876	2014-12-11	2017-01-30	2025-05-05	417 B	36 kB	23.36.77.240
csp.microsoft.com	7951	1991-05-02	2021-03-09	2025-05-08	990 B	644 B	13.107.246.53
shellprod.msocdn.com	12105	2013-06-17	2017-01-30	2025-05-08	502 B	152 kB	96.6.18.174
cdn.cookielaw.org	502	2011-06-20	2013-12-28	2025-05-07	5.3 kB	667 kB	104.18.86.42
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-07	981 B	35 kB	142.250.74.10
www.welcomebeds.com	unknown	unknown	No data	No data	7.5 kB	135 kB	34.253.90.127
d1hkxmgwhmmdhs.cloudfront.net	unknown	2008-04-25	2021-02-23	2025-01-14	14 kB	2.5 MB	3.167.7.36
geolocation.onetrust.com	802	2004-01-12	2018-02-07	2025-05-07	495 B	468 B	172.64.155.119
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-05-07	1.1 kB	741 kB	142.250.74.168
www.rhodasol.es	unknown	unknown	2025-05-08	2025-05-08	491 B	42 kB	34.253.90.127

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-05-08	medium	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/commons/falcon.min.js?v=080520252303	Code and strings of plugins from the Tetris framework loaded by Swid

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	From	Size	First Seen	Last Seen
	www.welcomebeds.com/	ScriptElement	412 B	2025-05-08	2025-05-08
Pretty URL www.welcomebeds.com/ IP 34.253.90.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 93f2ba759eb0b75d666d11a6d87c35ca 25121f0efa0160f36491bd47a629dda636912366 63987993fe1852f2dc9f2959e55017073461dd4433f2d2460e83d18bc53f31c5 Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUI.js?v=080520252303	ScriptElement	141 kB	2025-05-08	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUI.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 22d6fb9648c634cfc5d339d44e3a90b0 6928f23836318b24e268e8c0e1f887bd56cf536c 1eaf83a691ab176cf961a5f11a72db68189e1b8b598e14fef8482c3678fb8afc Loading...

	copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES	ScriptElement	584 B	2025-05-08	2025-05-08
Pretty URL copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 68a232c3a2f177ee16ed26dcfb855399 e85b5ee88edf269d7c2e7bc937e3e02f8e3ddd77 2bc109a174259275980ab0902e964d9e304b3b2b7b39f9ed700722df0086725b Loading...

	d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/js/header.js?v=080520252303	ScriptElement	4.8 kB	2025-05-08	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/js/header.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash ab608f840a05f0e96b3d1c94c3e2d4a1 dde27bd72b1c4ff06be806bab1986a6b86ad61ea bc2a180f41599e4eee6840a50ff056e4907aa068da4ac4a3aaadc0434cbafa19 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-57RWLWQ3	ScriptElement	358 kB	2025-05-08	2025-05-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-57RWLWQ3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 42452007325e0b2e4da7ab22f7c5702e 01684f83d93b27ea56da2566c84dc6c41fa40eac 1891ed36ccd33879f697431da5cb6c3fe111e8e301de9ffe6f8ca087920870f8 Loading...

	www.welcomebeds.com/	ScriptElement	3.9 kB	2025-05-08	2025-05-08
Pretty URL www.welcomebeds.com/ IP 34.253.90.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 4f00efb13c426fa37c1836133de419bf 25e2c083911fea9dbc260cf7353c48ce5062d662 564278d9a54486f04930a9f3caec7fd512e50d9859baf4c0b7afcee67cf53ee3 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js?did=019126d9-c2dd-7903-90a1-3002807f0fb4	ScriptElement	24 kB	2025-04-22	2025-05-12
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js?did=019126d9-c2dd-7903-90a1-3002807f0fb4 IP 104.18.86.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-22 00:14 Last Seen2025-05-12 03:17 Times Seen1336 Hash 047640006d5ab098020a6bf30ff5aee9 10d247bfd01cc8241bafdf504d1160d456aee901 a011be10e83b3e4ff8bc831755b28089bab9b64fc01da437b3782b640b0b4689 Loading...

	www.googletagmanager.com/gtag/js?id=G-NZP693GKTV&cx=c&gtm=45He5571v9183999720za200&tag_exp=101509157~103101750~103101752~103116025~103130498~103130500~103200001~103233427~103251618~103251620~103284320~103284322~103301114~103301116	ScriptElement	380 kB	2025-05-08	2025-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-NZP693GKTV&cx=c&gtm=45He5571v9183999720za200&tag_exp=101509157~103101750~103101752~103116025~103130498~103130500~103200001~103233427~103251618~103251620~103284320~103284322~103301114~103301116 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash ea56e6ffc7f407b0b33091163daeeafc b81389a4e8f7cedd40a6c4aa2a12c403c75b291e 20a964965b9ecef35a1f59555fe202ef086e1babc2fcc1ddab2f755eaebdcbe4 Loading...

	copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES	Function	37 B	2023-04-11	2025-05-12
Pretty URL copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-12 03:45 Times Seen263762 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.welcomebeds.com/	ScriptElement	407 B	2024-04-27	2025-05-08
Pretty URL www.welcomebeds.com/ IP 34.253.90.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-27 13:37 Last Seen2025-05-08 23:46 Times Seen14 Hash ca250b4c38df713156e0d80270396852 1a6cdf9863277be0b08dd554c1d944621bc81f60 1ac762f8a5b77eb9733c099e60f0e599f83c3b8ee56c92409e59cde39cf85888 Loading...

	cdn.cookielaw.org/scripttemplates/202410.1.0/otBannerSdk.js	ScriptElement	472 kB	2024-11-28	2025-05-12
Pretty URL cdn.cookielaw.org/scripttemplates/202410.1.0/otBannerSdk.js IP 104.18.86.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-28 09:59 Last Seen2025-05-12 03:17 Times Seen611 Hash 3ecc3e562bffb3a0279c708d980e164e 21e09375a078200ee860c6cabffd3ee791c8cb6d ea345fff49064976d477cba358fa7a9b7d44fe3f2603ece439ec7cceca25b0ae Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUtils.js?v=080520252303	ScriptElement	2.9 kB	2024-04-25	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUtils.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 12:28 Last Seen2025-05-08 23:46 Times Seen24 Hash 2dc54032a371d2606c9692869297cd4d ff849e32de7698ddcc37e32e7385e07c6739e9bb 393f2a8129ae06cc875c5018b917445c9a99973449437250de54163c1d740548 Loading...

	www.welcomebeds.com/	ScriptElement	412 B	2025-05-08	2025-05-08
Pretty URL www.welcomebeds.com/ IP 34.253.90.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 0a084d567fff12a6f62f5caffc6e0a41 d76da91b62f29a4fa108d93d952509ec4f1535c6 d8178203737278ad84f3b0523e536ee86fb308c6a9b9c0a24f207bf169960f93 Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/vendor/plugins.js?v=080520252303	ScriptElement	554 kB	2024-08-26	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/vendor/plugins.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-26 11:06 Last Seen2025-05-08 23:46 Times Seen15 Hash a3cd2a3b19ef4d28bdf743ab42bdfd3d 42e784a6efb5b53e7373d96c5c7952ee85834554 9aee5ed1e147e7378132006cae73a2be5309393c32d7dcbc9f2b6b10e29055fe Loading...

	eum.instana.io/eum.min.js	ScriptElement	36 kB	2024-12-11	2025-05-11
Pretty URL eum.instana.io/eum.min.js IP 23.36.77.240 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-11 18:25 Last Seen2025-05-11 10:08 Times Seen98 Hash b4539aed237249a8f8326d5243629e44 4033a8d9b40f19efd80c2b5e29413fd6bf54daab dfde3b634934a24f0ce58314bf2b384d3ef0b5c9f0639955cec8abacae321b67 Loading...

	content.powerapps.com/resource/makerx/static/js/module/main.b8641917.js	ScriptElement	8.9 MB	2025-05-08	2025-05-08
Pretty URL content.powerapps.com/resource/makerx/static/js/module/main.b8641917.js IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash eb919c3dc47089a408aef3ebc2baf8a2 e7332dc1b7962af2a943471fa0efab6c94a2eb43 65a0a8377655f8a0890d2106ae8db27f343a6c0aaeabcdf9f3ed69ab63600ed6 Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/gtm/analyticscore.bundle.js	ScriptElement	204 kB	2025-05-08	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/gtm/analyticscore.bundle.js IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash bc79bb324045b0365111ca3ba97f811a a798729260d3d448f6fa686bc75d374075e0d764 af866363455e085275d5565dbe9d67cd7542ba99a010abaa6d9ae8867bfb034b Loading...

	www.welcomebeds.com/	ScriptElement	57 B	2025-05-08	2025-05-08
Pretty URL www.welcomebeds.com/ IP 34.253.90.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash f6d4723403e09160cce6da31866485b5 342528b3a7017d4a3e3a6c6ad5b7cb98c4e1c930 3bf92e4467606336a6b0c15add3702d729b096ea84a3b7cd6d91ade40741145f Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/min/commonsB2B.js?v=080520252303	ScriptElement	27 kB	2025-05-08	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/min/commonsB2B.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 8795041a4ed56f91159ba59208d4379c 900dcf2043f5dc7f8588dcf8694727dd44be356e 872b0bb8ee2f0d62868eafa1da412d843a46ee54e47ad2a765d151602cbab07f Loading...

	copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES	ScriptElement	4.8 kB	2025-03-25	2025-05-08
Pretty URL copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-25 18:49 Last Seen2025-05-08 23:46 Times Seen2 Hash edb967676e66a3680409b22202b277e5 f5844ef8e998c8707112b31bb3a66e8714729c31 d56c400c9739e09875ad014557bad7837ee9e5f3555d412c5c696ceecd67fa52 Loading...

	copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES	ScriptElement	464 B	2025-05-08	2025-05-08
Pretty URL copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES IP 13.107.246.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-08 23:46 Last Seen2025-05-08 23:46 Times Seen1 Hash 639b4362e7315e15ccd946580bba2903 ff2c807c505b97e1613aa8a0f77c1e5368f3da98 eb6938005d2321d37096acb211307769a8a0b4a3e8ad5e6215aed5bb3adeeded Loading...

	shellprod.msocdn.com/api/shellbootstrapper/business/oneshell	ScriptElement	151 kB	2025-05-08	2025-05-12
Pretty URL shellprod.msocdn.com/api/shellbootstrapper/business/oneshell IP 96.6.18.174 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 10:32 Last Seen2025-05-12 02:08 Times Seen6 Hash 2e272c67273ef21ad266497e03da7ca5 93381b682bacb9f04fb3439b0e30b3e9b55695b7 74d948e965c6e73e80e887cd008e1d32338fc55ac9c55523268973978603790c Loading...

	d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/commons/falcon.min.js?v=080520252303	ScriptElement	137 kB	2024-02-15	2025-05-08
Pretty URL d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/commons/falcon.min.js?v=080520252303 IP 3.167.7.36 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-15 19:01 Last Seen2025-05-08 23:46 Times Seen25 Hash 03c05e2f8f12296a64dea5d4ba9b28b3 efd1871f8e0027205147e88f38b9365ec2c1a8cf de1292a319ea39acba292fa1c8fcbf0c2507a803c949c2f79513de1604fd74a1 Loading...

HTTP Transactions (80)

URL IP Response Size

cdn.cookielaw.org/logos/static/ot_company_logo.png

104.18.86.42

200 OK

8.7 kB

URL GET
cdn.cookielaw.org/logos/static/ot_company_logo.png
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
PNG image data, 600 x 106, 8-bit/color RGBA, non-interlaced
Size
8.7 kB (8666 bytes)
Hash
aecb6b82b409eb933c3d5398333a4594
b3c1e078d55dd660a368b506b8b21024451426ad
56615530ca1fa2eb144ef8d4c4bf06604115367f9f4cfff6bad1b4e8f344d3c7

HTTP Headers

GET /logos/static/ot_company_logo.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: image/png
content-length: 8666
content-md5: rstrgrQJ65M8PVOYMzpFlA==
last-modified: Thu, 08 May 2025 01:49:57 GMT
etag: 0x8DD8DD2A3545C36
x-ms-request-id: b423350d-d01e-00c9-5bcd-bf0340000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 58766
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48fac350b02-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.18.86.42

200 OK

5.2 kB

URL GET
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
SVG Scalable Vector Graphics image
Size
5.2 kB (5194 bytes)
Hash
63e737d3544164d2b7f4fbca416ac807
030370aa38715e4c41589633f69d0bfe8255d46c
5fa00d047acd959697b9d7772c31dcd37bec33c70c6fbf80ab8316205d1d286d

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Wed, 07 May 2025 02:51:21 GMT
x-ms-request-id: 526f8406-701e-00c4-4d27-bfec4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73944
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48fbc360b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Urbanist:wght@300;400;600;700&display=swap

142.250.74.10

200 OK

3.4 kB

URL GET
fonts.googleapis.com/css2?family=Urbanist:wght@300;400;600;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text
Size
3.4 kB (3380 bytes)
Hash
805d9d226032990ecaa549ce4422b678
8050508d762c2e1250720dca4f845b205e03a14b
271dea1c5031d4e022dc25b4e8fda70d3c7d7ca64eff63b89d2221c8d9f271b0

HTTP Headers

GET /css2?family=Urbanist:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 May 2025 23:45:18 GMT
date: Thu, 08 May 2025 23:45:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2

142.250.74.35

200 OK

28 kB

URL GET
fonts.gstatic.com/s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27824, version 1.0
Size
28 kB (27824 bytes)
Hash
225d39d1d4443e97f2ad20b9d91808fe
518045d265d6c388ac38dde9fdeb364474a90787
84221e6c0c5f950b44d38a40bc19ffa9a340b2a5d207cb6f6461b84d474f2555

HTTP Headers

GET /s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 09:57:26 GMT
expires: Fri, 08 May 2026 09:57:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:09:06 GMT
content-type: font/woff2
age: 49673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.welcomebeds.com/caribe/commons/topdestinations

34.253.90.127

200 OK

39 kB

URL GET
www.welcomebeds.com/caribe/commons/topdestinations
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
39 kB (38954 bytes)
Hash
e876c92a7c985a13d965708459addd6e
f72bbf7bcb24ad28f2ade970e7276fa4c0b11eb2
c87658301b68577a47bc9ce9c94fbd6f82ffc45ac8e3887b6c574f5a458a9f78

HTTP Headers

GET /caribe/commons/topdestinations HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=a886200399276c93
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: be50c007-49fd-bcfd-8868-c4367bcdee38
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/logos/footer-logo.png

3.167.7.36

200 OK

5.9 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/logos/footer-logo.png
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 300 x 50, 8-bit/color RGBA, non-interlaced
Size
5.9 kB (5947 bytes)
Hash
1cc92369504f0b162baba1aea828028f
5580f021a60267f6b6a2cc5adcbd2df39323de5f
1cbd134af1697c06ab6ec00d2f32378ae68e00e39a3da5034785a2086cd9a04a

HTTP Headers

GET /hydra/assets/wbeds/img/logos/footer-logo.png HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 5947
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:52 GMT
etag: "1cc92369504f0b162baba1aea828028f"
x-amz-server-side-encryption: AES256
x-amz-version-id: KTxWez1b8siBq1bIgB3KBj0BsrN.5r69
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: bROxxN1sg5B-NTb5evyQR3vbywswUND8QoqboxcD_Bfm912YzrYhTg==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-default.svg

3.167.7.36

200 OK

417 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-default.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
417 B (417 bytes)
Hash
9934a4c2946c13254553ed908bfdc8fc
f443cc245ae2aa30594d61ddae5db96762039e8d
b647ca713c2c6e7a78b7895cba04b878a413b13ce6e81b70ad640b83da93d22c

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-default.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 417
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:54 GMT
etag: "9934a4c2946c13254553ed908bfdc8fc"
x-amz-server-side-encryption: AES256
x-amz-version-id: oPZ6tLXMzsf0Nz7C8bAPGlAfNukLdJtG
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 8NsPoY4wn12TvfofAEIi-D09t80CxfVdylz9sH54el1R-OChnzrrRw==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/base-vectorial-fonts/icomoon.woff

3.167.7.36

200 OK

185 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/base-vectorial-fonts/icomoon.woff
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 185304, version 1.0
Size
185 kB (185304 bytes)
Hash
300d134d8bf91b12b51c21f817f40cee
cf511074c21148e4529ea23195c323e061331ff6
355dfdd07a23b53c66c09ac88783989aaeaad08cb328c6d73073e54fb0a36f37

HTTP Headers

GET /dist/assets/fonts/base-vectorial-fonts/icomoon.woff HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 185304
date: Thu, 08 May 2025 23:13:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:52 GMT
etag: "300d134d8bf91b12b51c21f817f40cee"
x-amz-server-side-encryption: AES256
x-amz-version-id: trSsW1XLZU4JXPtE.PthEfYDKOv7QRvs
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ovnYT1hOyUrOnQ0vQtZAMwfDvPwIY1Umo4taxrQLxelmU7yGSa7fjg==
age: 1905
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

172.64.155.119

200 OK

72 B

URL GET
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
172.64.155.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectgeolocation.onetrust.com
Fingerprint94:B1:7E:62:30:BF:A7:A7:95:B9:88:60:A1:C8:32:38:CB:FE:D4:8F
ValiditySun, 06 Apr 2025 19:45:04 GMT - Sat, 05 Jul 2025 20:45:02 GMT

File type
JSON text data
Size
72 B (72 bytes)
Hash
fe506d323c85bc3dd9796f556171d98b
845dab04559e189aa483314a4d8f7da2841addbc
e8ed6ce42e1e11bbbae707014c7ec376a2a55f132b839f8af85353087adc58cd

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 93ccd48aaf1b5688-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-500.woff2

3.167.7.36

200 OK

15 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-500.woff2
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15220, version 1.0
Size
15 kB (15220 bytes)
Hash
bd81b51e91cb7395cd095a315414376f
289e3d104cd7ea605c3e0cd1837046af36b9ee29
0e5e615c193097ed06489c7609f0550a06b3cfe54c5602decebb4ac0ada5a6fa

HTTP Headers

GET /dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-500.woff2 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
content-length: 15220
date: Thu, 08 May 2025 23:45:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:55 GMT
etag: "bd81b51e91cb7395cd095a315414376f"
x-amz-server-side-encryption: AES256
x-amz-version-id: c_LAZfSyuhfMbiLJB9ZRFidAmd0RxhL_
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: w3j0omNgMDTOjVUlo481vogiIw3OLcYa4QSlt1VnokXZ3cEqfldYGA==
X-Firefox-Spdy: h2

content.powerapps.com/resource/makerx/static/js/module/main.b8641917.js

13.107.246.53

200 OK

8.9 MB

URL GET
content.powerapps.com/resource/makerx/static/js/module/main.b8641917.js
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES
Certificate
IssuerMicrosoft Corporation
Subjectcontent.powerapps.com
Fingerprint54:B4:F0:B5:C5:9A:90:6B:87:80:5D:DB:19:E9:56:BF:33:A3:4D:0F
ValiditySun, 04 May 2025 08:01:38 GMT - Wed, 29 Apr 2026 08:01:38 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65464)
Size
8.9 MB (8903592 bytes)
Hash
eb919c3dc47089a408aef3ebc2baf8a2
e7332dc1b7962af2a943471fa0efab6c94a2eb43
65a0a8377655f8a0890d2106ae8db27f343a6c0aaeabcdf9f3ed69ab63600ed6

HTTP Headers

GET /resource/makerx/static/js/module/main.b8641917.js HTTP/1.1
Host: content.powerapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://copilotstudio.microsoft.com/
Origin: https://copilotstudio.microsoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:19 GMT
content-type: application/x-javascript
content-length: 1670944
access-control-allow-origin: *
access-control-expose-headers: x-ms-correlation-id,x-ms-activity-vector,x-ms-service-request-id,x-ms-client-request-id
cache-control: public, max-age=31536000
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-ms-islandgateway: ga00000HO
x-ms-static-content: PI0000005
timing-allow-origin: *
x-servicefabric: NoRetry
x-ms-service-request-id: 7f1118a0-625a-4ba1-8e4e-12c8b4400e25
x-ms-correlation-id: 2f2c84d0-aaff-435a-b5fe-c38a30e3498e
x-ms-activity-vector: 00.00.00
server-timing: x-ms-igw-upstream-headers;dur=170.6,x-ms-igw-req-overhead;dur=0.1
x-content-type-options: nosniff
x-azure-ref: 20250508T234519Z-16c476b8794cqdmghC1SVGfepc0000000pe000000000573q
x-fd-int-roxy-purgeid: 74730419
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/a8/5c/4a/b0/d942b6343b0b4df4bd220fd2383507c73e298cd4a85f85efa41e9507.jpg

54.230.245.27

200 OK

75 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/a8/5c/4a/b0/d942b6343b0b4df4bd220fd2383507c73e298cd4a85f85efa41e9507.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
75 kB (74914 bytes)
Hash
f80a27ac5904236779d7536ec18e1e6b
5452957721927122f7883cc630dca219f625fd70
b1f6616af79c2dc5be1df6391d89c0a17da074b08b09e1742fa34aee4348eff5

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/a8/5c/4a/b0/d942b6343b0b4df4bd220fd2383507c73e298cd4a85f85efa41e9507.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 74914
date: Sun, 04 May 2025 08:42:15 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "f80a27ac5904236779d7536ec18e1e6b"
expires: Sun, 11 May 2025 08:42:15 GMT
last-modified: Tue, 29 Apr 2025 13:09:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dDQ_JaTttuNxh3cbIXBX4dvaShySUlzTL5lY7lj2VgFpJvCLaaiLBA==
age: 399784
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-600.woff2

3.167.7.36

200 OK

15 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-600.woff2
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15236, version 1.0
Size
15 kB (15236 bytes)
Hash
6a7b657115f6ac92f43fe42cec6029bf
6b575f69af49a05ec6833bf4a3fc96ca21b2c418
f69e91dee0b0b9b2dd873fddb4d17a15284491d61d5f6966a61730e2dc7d8588

HTTP Headers

GET /dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-600.woff2 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
content-length: 15236
date: Thu, 08 May 2025 23:45:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:55 GMT
etag: "6a7b657115f6ac92f43fe42cec6029bf"
x-amz-server-side-encryption: AES256
x-amz-version-id: P.IWXab70DSAuu9bgYwQermPZ.XeAOyq
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Ca8G5oIwvbJTdq4SoakZuhA3czXr8i60Rndc9yYdYLqZfz0IXtWeLg==
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-57RWLWQ3

142.250.74.168

200 OK

358 kB

URL GET
www.googletagmanager.com/gtm.js?id=GTM-57RWLWQ3
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintB7:82:F3:C7:93:B0:60:B0:83:49:F8:74:0D:49:78:23:65:0B:37:01
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
JavaScript source, ASCII text, with very long lines (44970)
Size
358 kB (358471 bytes)
Hash
42452007325e0b2e4da7ab22f7c5702e
01684f83d93b27ea56da2566c84dc6c41fa40eac
1891ed36ccd33879f697431da5cb6c3fe111e8e301de9ffe6f8ca087920870f8

HTTP Headers

GET /gtm.js?id=GTM-57RWLWQ3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 May 2025 23:45:20 GMT
expires: Thu, 08 May 2025 23:45:20 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 May 2025 22:42:45 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1317:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1317:0
report-to: {"group":"ascgcycc:1317:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1317:0"}],}
server: Google Tag Manager
content-length: 105500
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d2eh7florc4mjb.cloudfront.net/ota/dist/assets/img/pegasus/graphics/shim.gif

3.167.7.78

200 OK

43 B

URL GET
d2eh7florc4mjb.cloudfront.net/ota/dist/assets/img/pegasus/graphics/shim.gif
IP
3.167.7.78:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7

HTTP Headers

GET /ota/dist/assets/img/pegasus/graphics/shim.gif HTTP/1.1
Host: d2eh7florc4mjb.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 43
last-modified: Thu, 27 Apr 2017 07:15:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 May 2025 17:26:00 GMT
cache-control: max-age=1209600
etag: "221d8352905f2c38b3cb2bd191d630b0"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ac3e1d7135d19671e1860c67a45b3f70.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JHeJrp-b-W_0z27AYSEI9cM3g63N7Yu99TYDjfKFmi11M02aImumiQ==
age: 109161
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/019126d9-c2dd-7903-90a1-3002807f0fb4/0191268e-2fc8-7c88-85a7-265cee912ecf/en.json

104.18.86.42

200 OK

44 kB

URL GET
cdn.cookielaw.org/consent/019126d9-c2dd-7903-90a1-3002807f0fb4/0191268e-2fc8-7c88-85a7-265cee912ecf/en.json
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JSON text data
Size
44 kB (44323 bytes)
Hash
eb56c92165cb5e62bc85092eaa1cfb3b
0cf1edc81f4eab428ffe85782a2ba04573137dfa
0d72ddfedb80c3e60dd1dc5c0ab8edd53c28bd0b0cc3df7a92b81ac765dec477

HTTP Headers

GET /consent/019126d9-c2dd-7903-90a1-3002807f0fb4/0191268e-2fc8-7c88-85a7-265cee912ecf/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/json
cf-ray: 93ccd48b9a72b521-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DD8240D53C88EE
expires: Fri, 09 May 2025 23:45:21 GMT
last-modified: Wed, 23 Apr 2025 08:28:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: l8f2n6d/jiHnaSM6PWM4bQ==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 11d79b08-601e-00b6-6f35-b49d72000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
cross-origin-resource-policy: cross-origin, cross-origin
server: cloudflare
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/vendor/plugins.js?v=080520252303

3.167.7.36

200 OK

554 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/vendor/plugins.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
554 kB (553659 bytes)
Hash
a3cd2a3b19ef4d28bdf743ab42bdfd3d
42e784a6efb5b53e7373d96c5c7952ee85834554
9aee5ed1e147e7378132006cae73a2be5309393c32d7dcbc9f2b6b10e29055fe

HTTP Headers

GET /dist/assets/js/vendor/plugins.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 May 2025 22:18:25 GMT
last-modified: Thu, 08 May 2025 22:15:55 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: B45Rx9ZEOQxGj_6JtGmHz.5wp.HoGko5
server: AmazonS3
etag: W/"a3cd2a3b19ef4d28bdf743ab42bdfd3d"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: AIg3uM-efB5a3Qc_51LPww6s2r2kDBlU1vOlOp9aWavCPK7RBnEOtQ==
age: 5214
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/commons/falcon.min.js?v=080520252303

3.167.7.36

200 OK

137 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/commons/falcon.min.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4356)
Size
137 kB (137016 bytes)
Hash
03c05e2f8f12296a64dea5d4ba9b28b3
efd1871f8e0027205147e88f38b9365ec2c1a8cf
de1292a319ea39acba292fa1c8fcbf0c2507a803c949c2f79513de1604fd74a1

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Code and strings of plugins from the Tetris framework loaded by Swid

HTTP Headers

GET /dist/assets/js/commons/falcon.min.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 May 2025 22:18:25 GMT
last-modified: Fri, 09 Feb 2024 12:14:28 GMT
content-encoding: br
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: sX8tLopuQ4rIw6Y8p_2coaC7GzyN1SKi
server: AmazonS3
etag: W/"03c05e2f8f12296a64dea5d4ba9b28b3"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JoBZAfFSBgI1w_Eq1xHpMBUzwr7AYxMUYDZCr5im1LzJsGaZ02bJOw==
age: 5214
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-300.woff2

3.167.7.36

200 OK

15 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-300.woff2
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15204, version 1.0
Size
15 kB (15204 bytes)
Hash
c30f5f9b632ff90993709bfbf8e0e14e
aed838cb92bbf7313b2a702cdcda841a6f2690d1
c4e4a7a859275d35bafb224d37f390aab1d50b58939d9e154b80aa9630c0ca42

HTTP Headers

GET /dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-300.woff2 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
content-length: 15204
date: Thu, 08 May 2025 23:45:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:55 GMT
etag: "c30f5f9b632ff90993709bfbf8e0e14e"
x-amz-server-side-encryption: AES256
x-amz-version-id: hfLB0GlCKL_EGPlehdQtZjsnNzdWq6W4
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: uZygFQMDaTlFPD8GxHcCqehusGQGI22_XDrD70822gxTX9N7fltXSQ==
X-Firefox-Spdy: h2

www.welcomebeds.com/commons/login?redirect=false

34.253.90.127

401 Unauthorized

0 B

URL GET
www.welcomebeds.com/commons/login?redirect=false
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /commons/login?redirect=false HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 401 Unauthorized
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0
date: Thu, 08 May 2025 23:45:20 GMT
expires: 0
location: https://fusionauth-svc-auth.ingress-public.ocppro.aws-pro.avoristravel.io/oauth2/authorize?response_type=code&client_id=57f2fde9-7ef8-4cea-b6f5-bffd32dc1cb6&scope=front&state=EATFPIpOfb5zobcpwJ1rYkFA948F5p0WYM_bMpPoNFg%3D&redirect_uri=https://www.welcomebeds.com/commons/login&acr_values=WELCOMEBEDS_ES
pragma: no-cache
server-timing: intid;desc=f720dd2012bf7c01
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: 63b68800-885a-89e6-122c-f2782f17cf4e
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

www.welcomebeds.com/falcon/api/hits/WELCOMEBEDS_ES

34.253.90.127

200 OK

4.6 kB

URL GET
www.welcomebeds.com/falcon/api/hits/WELCOMEBEDS_ES
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
4.6 kB (4586 bytes)
Hash
a7f5f370b7ff15091126a07435809ded
0b542497290d18b5241df34601349e02e0c1d137
720f932a103879f7384e2e4e3f14bb1a7ce312ab0847a1d65218b87ef40b4df2

HTTP Headers

GET /falcon/api/hits/WELCOMEBEDS_ES HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
server-timing: intid;desc=838d3a288f878fd1
req_id: YUIxQ0VKWjRCN1ozbTRQeXFCRURxQUFBUkJ3
vary: accept-encoding
content-encoding: gzip
content-type: application/json;charset=UTF-8
date: Thu, 08 May 2025 23:45:20 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: Web Server
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_close.svg

104.18.86.42

200 OK

651 B

URL GET
cdn.cookielaw.org/logos/static/ot_close.svg
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
SVG Scalable Vector Graphics image
Size
651 B (651 bytes)
Hash
a5c5d6146a6e55e4a0fe3567602b1e46
c75ff1b713378aec779fb248e22daa513aca725b
901bb0e03b8c3c0a1cf4c487a177417328bb7d8c94106ecefceedd7d7f6c4ddc

HTTP Headers

GET /logos/static/ot_close.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: image/svg+xml
content-md5: pcXWFGpuVeSg/jVnYCseRg==
last-modified: Wed, 07 May 2025 02:51:20 GMT
x-ms-request-id: 7cf03c59-e01e-0042-5540-bfb89e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73215
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48f9c2e0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-regular.woff2

3.167.7.36

200 OK

15 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-regular.woff2
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15064, version 1.0
Size
15 kB (15064 bytes)
Hash
2905a7d16d9d835e0b2a3ce3b4108e07
130fdb8921fa9c0437356d553349437cca2bdf49
ba1e106b31a616c5602a03989dbd9225623b841a1e08dbb3d6ef95ef180cfe00

HTTP Headers

GET /dist/assets/fonts/common/urbanist-v15-latin_latin-ext/urbanist-v15-latin_latin-ext-regular.woff2 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff2
content-length: 15064
date: Thu, 08 May 2025 23:45:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:55 GMT
etag: "2905a7d16d9d835e0b2a3ce3b4108e07"
x-amz-server-side-encryption: AES256
x-amz-version-id: xYverYFcE_6wRxwVPiqnGjJ92jAPS3Ul
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: HSXXcsHdaM4wNInkyfgeT04OTgI-fzqCXS_Klh379M3Epo94QCaizQ==
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/other-symbols/other-chat-default.svg

3.167.7.36

200 OK

1.0 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/other-symbols/other-chat-default.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1036 bytes)
Hash
f12d8dc2282d1ed20565c5131520e8c0
3473cbbab2f1c8fba096f4f4d049078186b6f8cf
a1750feb1f403c9ee0cc62e819137d05df3e088c8fe2ad8883f65f8916a02adf

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/other-symbols/other-chat-default.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 06 May 2025 13:40:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: isuucUtpD4U1esfXriETn.J_Wplh.BzG
server: AmazonS3
date: Thu, 08 May 2025 13:50:22 GMT
etag: W/"f12d8dc2282d1ed20565c5131520e8c0"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 0qkCD7OjqLCSRzb0dv-UXVTXhrJHtjDukFXtJv7YieP-fU-4abiuOQ==
age: 35698
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/analytics/getrestdatalayer

34.253.90.127

200 OK

3.3 kB

URL POST
www.welcomebeds.com/analytics/getrestdatalayer
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
3.3 kB (3306 bytes)
Hash
d253db21ebab8880c46f0a88e2473f89
5b286afdbd27993a3a7e7a27baaad8cfd846a170
34f8598caf674d76c42462bb9379ae3287c1503d852380a1cc1c4f33528c8f6a

HTTP Headers

POST /analytics/getrestdatalayer HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Content-Length: 1181
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json;charset=UTF-8
date: Thu, 08 May 2025 23:45:20 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=a4a04bc6b175186b
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: ad021232-3b50-eda7-bd12-f976ae870fd9
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/019126d9-c2dd-7903-90a1-3002807f0fb4/019126d9-c2dd-7903-90a1-3002807f0fb4.json

104.18.86.42

200 OK

4.9 kB

URL GET
cdn.cookielaw.org/consent/019126d9-c2dd-7903-90a1-3002807f0fb4/019126d9-c2dd-7903-90a1-3002807f0fb4.json
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JSON text data
Size
4.9 kB (4867 bytes)
Hash
11362ebccceabb61b59efd9bbbf6e907
7e6e0f6b5fb9d19985ac7514284403cc8c3643bd
d7fee5afd39598a7f78915b7b41b536dfb9fd829334396eb9ccd87021444590c

HTTP Headers

GET /consent/019126d9-c2dd-7903-90a1-3002807f0fb4/019126d9-c2dd-7903-90a1-3002807f0fb4.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/json
cf-ray: 93ccd48979a4b521-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DD8240D50D22C4
expires: Fri, 09 May 2025 23:45:21 GMT
last-modified: Wed, 23 Apr 2025 08:28:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: 8/HReOiW6ECuZBDvP2inlA==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8a804b0d-501e-001f-7dfa-bb489a000000
x-ms-version: 2009-09-19
x-onetrust-isbot: false
cross-origin-resource-policy: cross-origin, cross-origin
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.18.86.42

200 OK

497 B

URL GET
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
SVG Scalable Vector Graphics image
Size
497 B (497 bytes)
Hash
b57c99c9d1e3c50b2114c6db053d7ff0
ada8abfed92ba8a545bbd9d299d74d5972cc4ae8
691dcdb24853a0f5ce4e6597e5713dea66799b57ffe2c2a10f28f98e0b569b19

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:22 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Thu, 08 May 2025 06:46:23 GMT
x-ms-request-id: 30f05b49-901e-00a8-0f1d-c0479f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48fbc1fb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/socialmedia/linkedin.svg

3.167.7.36

200 OK

720 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/socialmedia/linkedin.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
720 B (720 bytes)
Hash
1eb35f32c247fbf2ca17cb038c053dbe
6e2a9aa1711e76e175e6ea9a09887101c70fa63c
5ae355babf2fb6b347b9d9eeddeea163e1b1ea87077c5fa8854b300d09a83f6c

HTTP Headers

GET /hydra/assets/wbeds/img/socialmedia/linkedin.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 720
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:52 GMT
etag: "1eb35f32c247fbf2ca17cb038c053dbe"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0aB_xcdLkfb9Jnb.s07P6xeydRKRaS1g
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 3RJtlT4MoB5rVF7XGpCSNdutWmQ4emMqRpSAeJ8l0hl_4x7plDjbYQ==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/packages/commons/topdestinations

34.253.90.127

200 OK

39 kB

URL GET
www.welcomebeds.com/packages/commons/topdestinations
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
39 kB (38954 bytes)
Hash
e876c92a7c985a13d965708459addd6e
f72bbf7bcb24ad28f2ade970e7276fa4c0b11eb2
c87658301b68577a47bc9ce9c94fbd6f82ffc45ac8e3887b6c574f5a458a9f78

HTTP Headers

GET /packages/commons/topdestinations HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=47ce2984d0e40c39
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: aba11ab1-187d-01f8-6ce3-b9842377980f
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/0e/a3/98/1d/1b3f95aa17c2de42a65f5e1dddc2d5da541197cdbb932903906577e2.jpg

54.230.245.27

200 OK

43 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/0e/a3/98/1d/1b3f95aa17c2de42a65f5e1dddc2d5da541197cdbb932903906577e2.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1280x146, components 3
Size
43 kB (42901 bytes)
Hash
490c5d930c62b7255102b9d5496c478e
d8c4af85577c3b491d1f323f797654c6dd27b9f7
0091141cdc41a8a111e03964b5997643b5046a8b15a5de90bc4621d259666eed

HTTP Headers

GET /resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/0e/a3/98/1d/1b3f95aa17c2de42a65f5e1dddc2d5da541197cdbb932903906577e2.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 42901
date: Mon, 05 May 2025 10:17:33 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
expires: Mon, 12 May 2025 10:17:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yrtVlVICzU3jV2b3rxEXRZQMyT0csr8AOzAsev3Zwq09qrvrcyqJHw==
age: 307667
vary: Origin
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-NZP693GKTV&cx=c&gtm=45He5571v9183999720za200&tag_exp=101509157~103101750~103101752~103116025~103130498~103130500~103200001~103233427~103251618~103251620~103284320~103284322~103301114~103301116

142.250.74.168

200 OK

380 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-NZP693GKTV&cx=c&gtm=45He5571v9183999720za200&tag_exp=101509157~103101750~103101752~103116025~103130498~103130500~103200001~103233427~103251618~103251620~103284320~103284322~103301114~103301116
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintB7:82:F3:C7:93:B0:60:B0:83:49:F8:74:0D:49:78:23:65:0B:37:01
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
JavaScript source, ASCII text, with very long lines (6125)
Size
380 kB (380433 bytes)
Hash
ea56e6ffc7f407b0b33091163daeeafc
b81389a4e8f7cedd40a6c4aa2a12c403c75b291e
20a964965b9ecef35a1f59555fe202ef086e1babc2fcc1ddab2f755eaebdcbe4

HTTP Headers

GET /gtag/js?id=G-NZP693GKTV&cx=c&gtm=45He5571v9183999720za200&tag_exp=101509157~103101750~103101752~103116025~103130498~103130500~103200001~103233427~103251618~103251620~103284320~103284322~103301114~103301116 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 May 2025 23:45:20 GMT
expires: Thu, 08 May 2025 23:45:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1075:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1075:0
report-to: {"group":"ascgcycc:1075:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1075:0"}],}
server: Google Tag Manager
content-length: 126993
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.cookielaw.org/scripttemplates/202410.1.0/assets/v2/otPcCenter.json

104.18.86.42

200 OK

63 kB

URL GET
cdn.cookielaw.org/scripttemplates/202410.1.0/assets/v2/otPcCenter.json
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JSON text data
Size
63 kB (63353 bytes)
Hash
94eeb64455ac2fec2daac48a5f80f468
ab53107fcbdc73536e396d50463706a1fd0f1885
b299beb73a789a8d7b52742818aa6ca138181937696f93189bd6051cc6db65f2

HTTP Headers

GET /scripttemplates/202410.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/json
content-length: 12723
content-encoding: gzip
content-md5: jl3/A5uhoeIYptHx/x9Yqw==
last-modified: Thu, 28 Nov 2024 09:42:32 GMT
etag: 0x8DD0F90FBA7F781
x-ms-request-id: 1220e36a-401e-0066-21ff-6d21d0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48e5bb5b521-OSL
X-Firefox-Spdy: h2

copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES

13.107.246.53

200 OK

8.0 kB

URL GET
copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.welcomebeds.com/
Certificate
IssuerMicrosoft Corporation
Subjectcopilotstudio.microsoft.com
Fingerprint11:55:20:22:99:96:CC:44:A5:6D:3C:FC:E1:73:F7:BF:FA:BC:7E:E6
ValidityFri, 25 Apr 2025 18:59:55 GMT - Mon, 20 Apr 2026 18:59:55 GMT

File type
HTML document, ASCII text, with very long lines (4793)
Size
8.0 kB (7964 bytes)
Hash
9b8f3be58c7905c9d93315380ae5f9b2
ca18323848e32966b8439e0889de59ef2cfd1ae6
e74bff99cfa736e48cdc68d47195ad56ac2733c54acf2d5b7417dd46c034cd31

HTTP Headers

GET /environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES HTTP/1.1
Host: copilotstudio.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:19 GMT
content-type: text/html
cache-control: no-store, must-revalidate, no-cache
content-encoding: gzip
expires: 0
pragma: no-cache
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-ms-islandgateway: gb0000004
referrer-policy: origin
link: <https://content.powerapps.com>; rel="preconnect"
content-security-policy: report-uri https://csp.microsoft.com/report/PPUX-Hosting;
content-security-policy-report-only: script-src 'self' blob: 'wasm-unsafe-eval' https://*.content.powerapps.com https://*.static.powerapps.com https://*.cdn.office.net https://*.msocdn.com https://*.res.office365.com https://*.msftauth.net https://*.monitor.azure.com https://wcpstatic.microsoft.com https://*.flow.microsoft.com https://vsa.services.microsoft.com https://mfpembedcdnmsit.azureedge.net https://appsforoffice.microsoft.com https://cdn.jsdelivr.net/npm/monaco-editor@0.33.0 'sha256-y7y27Uq4p88K6EhwSUfbhCk9VakghnU/hORgjhopExY=' 'sha256-K8EJoXQlknWYCrCQLpZNnjBLOyt7OfntcAci3wCGcls=' 'sha256-1WxADJc54Jh1rQFFV7rXg37p5fNVXUEsXGls7s1n+lI=' 'sha256-62k4AF0jIdNwlqyyETB3aaigtKPorV5iFa7Vuzre7e0=' 'sha256-FsjM6dKgbX5yMdU4iLKMLLcld3AEkeDGPMIcvPOltKU='; frame-src https://make.powerautomate.com/ https://webshell.suite.office.com; frame-ancestors 'none'; base-uri 'self'; media-src 'none'; object-src 'none'; manifest-src 'self'; worker-src 'self' blob:; font-src 'self' data: https://*.content.powerapps.com https://*.static.powerapps.com https://static2.sharepointonline.com https://*.cdn.office.net https://appsforoffice.microsoft.com https://spoprod-a.akamaihd.net; style-src 'self' 'unsafe-inline' https://*.content.powerapps.com https://*.static.powerapps.com https://*.cdn.office.net https://vsa.services.microsoft.com https://mfpembedcdnmsit.azureedge.net; child-src 'self' blob: ms-powerautomateregapp: ms-powerautomate: ms-powerautomatedesigner: https://make.powerapps.com https://*.access.mcas.ms https://*.microsoft.com/ https://login.microsoftonline.com https://amcdn.msftauth.net https://outlook.office.com https://*.ces.microsoftcloud.com https://*.powerbi.com https://dogfoodartifacts.azureedge.net https://*.powerplatformusercontent.com https://bapfeblobtip1bl.blob.core.windows.net https://bapfeblobtip1by.blob.core.windows.net https://bapfeblobtip1nyt.blob.core.windows.net https://bapfeblobtip1nyq.blob.core.windows.net https://bapfeblobtip1sy.blob.core.windows.net https://az818438.vo.msecnd.net; report-uri https://csp.microsoft.com/report/PPUX-Hosting;
x-servicefabric: NoRetry
x-ms-service-request-id: 92db1642-b8d7-4b38-b1d2-b229f4e2e242
x-ms-correlation-id: bb4e4ed1-8224-4c5c-be51-46a0c143ee5a
x-ms-activity-vector: 00.00.00
server-timing: x-ms-igw-upstream-headers;dur=2.2,x-ms-igw-req-overhead;dur=0.1
x-content-type-options: nosniff
x-azure-ref: 20250508T234519Z-16c476b8794xrsn6hC1SVGwd4w0000000mxg0000000047t2
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

csp.microsoft.com/report/PPUX-Hosting

13.107.246.53

200 OK

2 B

URL POST
csp.microsoft.com/report/PPUX-Hosting
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES
Certificate
IssuerDigiCert, Inc.
Subjectcsp.microsoft.com
Fingerprint96:0D:12:76:CF:F6:7A:E4:FE:C4:A3:34:C5:CF:AF:DE:55:EC:D1:99
ValidityWed, 01 Jan 2025 00:00:00 GMT - Tue, 01 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /report/PPUX-Hosting HTTP/1.1
Host: csp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2714
Origin: https://copilotstudio.microsoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:20 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
request-context: appId=cid-v1:5c791ad2-9c50-4271-a8a5-5c74d929f3ed
x-azure-ref: 20250508T234519Z-16c476b8794kwx5rhC1SVGgpps0000000mx0000000000hxh
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/footer-symbols/footer-floatingbutton-chevron-up-default.svg

3.167.7.36

200 OK

414 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/footer-symbols/footer-floatingbutton-chevron-up-default.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
414 B (414 bytes)
Hash
f9bb3ec66932d2be212242964b42d431
74e56f1115453951c527cd32c8fed281cc1b0263
f34f5088bed75841984335d4d24bd43029444c78e5279b75dc9722e736013095

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/footer-symbols/footer-floatingbutton-chevron-up-default.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 414
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:55 GMT
etag: "f9bb3ec66932d2be212242964b42d431"
x-amz-server-side-encryption: AES256
x-amz-version-id: O8rWtwTtJznTXOUDkQ8gFdXYuVB0SVLX
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: KLt9u5LY-1wvufsyhD0i8UAlRB7QW9BC6M6J8lfnYQOa8--MSZYf-w==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

eum-blue-saas.instana.io/

34.240.91.6

200 OK

0 B

URL POST
eum-blue-saas.instana.io/
IP
34.240.91.6:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerDigiCert Inc
Subject*.instana.io
Fingerprint2D:F1:65:8E:52:99:3B:0E:A2:38:20:FB:AA:AF:77:D1:6A:63:DD:CB
ValidityWed, 21 Aug 2024 00:00:00 GMT - Sun, 21 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: eum-blue-saas.instana.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4533
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store
cross-origin-resource-policy: cross-origin
Date: Thu, 08 May 2025 23:45:28 GMT
timing-allow-origin: *
Vary: Accept-Encoding
Content-Length: 0
Connection: keep-alive

www.welcomebeds.com/analytics/

34.253.90.127

200 OK

98 B

URL GET
www.welcomebeds.com/analytics/
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
98 B (98 bytes)
Hash
b97bd46b9a3c728467c66564f173c0c1
6da89046424fcaa2be4c12e24e5e2877d6d70b86
64cfb0e5873fa83794d769ada4b696f9b25883cb60d8077ccd55f7124284a866

HTTP Headers

GET /analytics/ HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json;charset=UTF-8
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=ce0fc27c127bfffb
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: c083b1b6-a2d5-90ca-aba6-d520b14d1f2b
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

www.welcomebeds.com/backoffice/menu

34.253.90.127

302 Found

0 B

URL GET
www.welcomebeds.com/backoffice/menu
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /backoffice/menu HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
location: https://www.welcomebeds.com/commons/login?redirect=false
pragma: no-cache
server-timing: intid;desc=a0bc722a53fe5a43
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: 69d3a029-c037-93c6-ec9e-63922f9f0119
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/53/0b/43/c4/97772d8d2ecc91cb6fbf4a6124988e1dae26919971140b89ad17c854.jpg

54.230.245.27

200 OK

35 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/53/0b/43/c4/97772d8d2ecc91cb6fbf4a6124988e1dae26919971140b89ad17c854.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1280x146, components 3
Size
35 kB (35209 bytes)
Hash
c7e2ca7ec0dc73a9534698e479f628f4
c3f97762c10b41c3e8252161053cea6c56e05e58
584cce99293cd8a051cfcce0fbe1095eba980c506f89d856fd1c31c4777d4290

HTTP Headers

GET /resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/53/0b/43/c4/97772d8d2ecc91cb6fbf4a6124988e1dae26919971140b89ad17c854.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 35209
date: Thu, 08 May 2025 20:57:19 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "c7e2ca7ec0dc73a9534698e479f628f4"
expires: Thu, 15 May 2025 20:57:19 GMT
last-modified: Thu, 08 May 2025 06:26:45 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ljVk3CUq_iNjAdFZg4o1fUpkhBBN8b3DbM8S_LsBV7vrRZJ-yohvsw==
age: 10081
vary: Origin
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/71/be/f5/3d/936b3979d1ae12680c5275f39b6aefc812a2d8ff226804fd8722587c.jpg

54.230.245.27

200 OK

132 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/71/be/f5/3d/936b3979d1ae12680c5275f39b6aefc812a2d8ff226804fd8722587c.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
132 kB (132175 bytes)
Hash
3a1412de70debc15a0b10a5033646933
8b527547c48d59153af43264c4d630cf98954bd9
761055e74e0c02cfb484295a36cec7e249d6dded4ce117d0668dea1bdbfde2cc

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/71/be/f5/3d/936b3979d1ae12680c5275f39b6aefc812a2d8ff226804fd8722587c.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 132175
date: Thu, 08 May 2025 15:33:28 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "3a1412de70debc15a0b10a5033646933"
expires: Thu, 15 May 2025 15:33:28 GMT
last-modified: Sat, 03 May 2025 18:43:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dkc8Rx-XEEL7oSe4ohAm86IuotSbRRm_9_OzqaCxQiFztdvRYhLnmw==
age: 29511
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/header-symbols/header-mainbar-contact-default.svg

3.167.7.36

200 OK

1.8 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/header-symbols/header-mainbar-contact-default.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1781 bytes)
Hash
e4fc726da2168394a89d28b3e6f77679
0b063b7dce08cfff11fd62b6d0c5944ec65269ad
0aa3a4c9adea17dd7bcf7a6ba00e778e0505b6a8376c5fc90fad5147dc5ff1eb

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/header-symbols/header-mainbar-contact-default.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 06 May 2025 13:40:55 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: FYrKoGQiJRq844X4eIrWmibTrFHsidgh
server: AmazonS3
date: Thu, 08 May 2025 13:50:22 GMT
etag: W/"e4fc726da2168394a89d28b3e6f77679"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ui5_rwCIuTNoNxmfgDLI9_RtAsxfXcgJqrlpp41MLaa0T809ou934A==
age: 35698
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/backoffice/opportunity

34.253.90.127

302 Found

0 B

URL GET
www.welcomebeds.com/backoffice/opportunity
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /backoffice/opportunity HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
location: https://www.welcomebeds.com/commons/login?redirect=false
pragma: no-cache
server-timing: intid;desc=e62c453fcc7d06d9
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: 489187d3-cc04-557a-69ee-30635d9d2f2c
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css

3.167.7.36

200 OK

28 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (27922)
Size
28 kB (27923 bytes)
Hash
477e73d8abf2d37b20807081e92458e2
5d246cfcce10476cc21c76e757e6fe3ec38bc71e
824e97bade8a46a28b215c7bdb0e748e121f079ba6eab09ca9d09e77a3dcd8b9

HTTP Headers

GET /hydra/assets/wbeds/css/common.css HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 08 May 2025 06:37:24 GMT
last-modified: Tue, 06 May 2025 13:40:51 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: ZkPdJTEgHVEwfasI5lsk163hsq3pp_OG
server: AmazonS3
etag: W/"477e73d8abf2d37b20807081e92458e2"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: xoEqBx8LrAgjKmKkz15nMPEXyLo18kyb8MIubuGJwI_INRhws4k-8g==
age: 61675
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

shellprod.msocdn.com/api/shellbootstrapper/business/oneshell

96.6.18.174

200 OK

151 kB

URL GET
shellprod.msocdn.com/api/shellbootstrapper/business/oneshell
IP
96.6.18.174:443
ASN
#16625 AKAMAI-AS

Requested by
https://copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES
Certificate
IssuerMicrosoft Corporation
Subject*.msocdn.com
FingerprintD5:F3:B7:42:79:ED:0A:E3:B7:E3:F8:CF:46:62:C2:EC:90:83:89:C2
ValidityTue, 22 Apr 2025 13:46:03 GMT - Fri, 17 Apr 2026 13:46:03 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (41349)
Size
151 kB (151016 bytes)
Hash
2e272c67273ef21ad266497e03da7ca5
93381b682bacb9f04fb3439b0e30b3e9b55695b7
74d948e965c6e73e80e887cd008e1d32338fc55ac9c55523268973978603790c

HTTP Headers

GET /api/shellbootstrapper/business/oneshell HTTP/1.1
Host: shellprod.msocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://copilotstudio.microsoft.com/
Origin: https://copilotstudio.microsoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: Kestrel
content-encoding: br
x-content-type-options: nosniff
strict-transport-security: max-age=2592000
x-o365suiteuxshell-correlationid: ea14358d-23f1-49b5-aafe-a8b700596da8
x-cache-start: 1746747919
cache-control: max-age=300
date: Thu, 08 May 2025 23:45:19 GMT
content-length: 40889
timing-allow-origin: *
x-cdn: 0
access-control-allow-origin: *
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/20/6f/47/89/694f5283ccb06dd4bcdcd50df1c4dd4019e2fc6fc334af7d0c554f86.jpg

54.230.245.27

200 OK

124 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/20/6f/47/89/694f5283ccb06dd4bcdcd50df1c4dd4019e2fc6fc334af7d0c554f86.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
124 kB (124042 bytes)
Hash
739efe2d615c68c978afb7e4f95c3522
06b82890e43e87eb47f2e2968766db3aeb7dda98
ab70346cc0bce7aecad112b1c2f51e71b3b1f2cc9519c93c4d788fc77de85d32

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/20/6f/47/89/694f5283ccb06dd4bcdcd50df1c4dd4019e2fc6fc334af7d0c554f86.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 124042
date: Tue, 06 May 2025 13:28:08 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "739efe2d615c68c978afb7e4f95c3522"
expires: Tue, 13 May 2025 13:28:08 GMT
last-modified: Tue, 06 May 2025 11:27:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SnzFU65-PkSZNX6FfJxqFkqBeTwXtgOAJ3ii6f3y9pFkDI_GNrGW3w==
age: 209831
vary: Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/commons/assets-content/commons-content/basePath/remember_prices

34.253.90.127

200 OK

16 B

URL GET
www.welcomebeds.com/commons/assets-content/commons-content/basePath/remember_prices
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
c9ce919232dc5140845f5d4c958d91ea
9424e3d8b87afafaea4b6149a43bcaf4dcd7a0b6
0f26a1eb5328ca3907b2becc9712369beaa8e9ae54a0ab97350f8856090dabed

HTTP Headers

GET /commons/assets-content/commons-content/basePath/remember_prices HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 16
content-type: text/plain;charset=UTF-8
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=f208dfc6cc63a88b
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: bc6941fd-86b4-895f-8875-18f780f811f8
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/600x280/filters:max_age(2604800):quality(65)/s3/dam/photos/09/a5/e9/66/ff28152f910cdbd3aa67e1cf71dc13961e8779b89885c534eab8e83e.jpg

54.230.245.27

200 OK

23 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/600x280/filters:max_age(2604800):quality(65)/s3/dam/photos/09/a5/e9/66/ff28152f910cdbd3aa67e1cf71dc13961e8779b89885c534eab8e83e.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=18, height=3744, bps=230, compression=none, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5616], progressive, precision 8, 600x280, components 3
Size
23 kB (23373 bytes)
Hash
4bbd95578975fd4fcd44896f94170e83
1ccbc4a362288e25fa79dea8c353c3b0ae5d1024
ebacfc1db109c252c97b269cc560b11a53df013bc1c74394a1e89521325413b8

HTTP Headers

GET /resize/600x280/filters:max_age(2604800):quality(65)/s3/dam/photos/09/a5/e9/66/ff28152f910cdbd3aa67e1cf71dc13961e8779b89885c534eab8e83e.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 23373
content-disposition: inline
last-modified: Thu, 24 Apr 2025 19:34:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
date: Thu, 08 May 2025 08:34:54 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
expires: Thu, 15 May 2025 08:34:54 GMT
etag: "4bbd95578975fd4fcd44896f94170e83"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: leL-SPkVjRkSmABS26ty9BjQDNCXfBgdSDEdq4Pn-x1cLdRxH8ZDmA==
age: 54626
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/dam/photos/f9/e7/55/3a/c47ecdff2612e95e4c0760b8bc5e8e2a8b866d663a0cd43c112ca233.jpg

54.230.245.27

200 OK

408 kB

URL GET
d2l4159s3q6ni.cloudfront.net/dam/photos/f9/e7/55/3a/c47ecdff2612e95e4c0760b8bc5e8e2a8b866d663a0cd43c112ca233.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x400, components 3
Size
408 kB (408190 bytes)
Hash
cc90a79059a79a056a5d4c84b6d57584
6762fa028665226ef8e3e5db8f12681c8bbae13d
f9e7553ac47ecdff2612e95e4c0760b8bc5e8e2a8b866d663a0cd43c112ca233

HTTP Headers

GET /dam/photos/f9/e7/55/3a/c47ecdff2612e95e4c0760b8bc5e8e2a8b866d663a0cd43c112ca233.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 408190
last-modified: Mon, 03 Mar 2025 15:11:23 GMT
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: Au7fQKYPUR.iC5BGHJ.sOQ12HmCQHklm
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 May 2025 09:10:05 GMT
etag: "cc90a79059a79a056a5d4c84b6d57584"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YqIRZIFRdEWJT4SlL-WCaS9lq41oaNgHTXqBqJCe92SMaOxOGOjlqw==
age: 52515
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

csp.microsoft.com/report/PPUX-Hosting

13.107.246.53

200 OK

2 B

URL POST
csp.microsoft.com/report/PPUX-Hosting
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://copilotstudio.microsoft.com/environments/8eccbfa8-ba04-efd3-a951-8e58af243353/bots/cr1b0_chatBotWelcomebedsEng/webchat?__version__=2&VarIdioma=ES
Certificate
IssuerDigiCert, Inc.
Subjectcsp.microsoft.com
Fingerprint96:0D:12:76:CF:F6:7A:E4:FE:C4:A3:34:C5:CF:AF:DE:55:EC:D1:99
ValidityWed, 01 Jan 2025 00:00:00 GMT - Tue, 01 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /report/PPUX-Hosting HTTP/1.1
Host: csp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2557
Origin: https://copilotstudio.microsoft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
request-context: appId=cid-v1:5c791ad2-9c50-4271-a8a5-5c74d929f3ed
x-azure-ref: 20250508T234521Z-16c476b8794kwx5rhC1SVGgpps0000000mx0000000000hy4
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

eum-blue-saas.instana.io/

34.240.91.6

200 OK

0 B

URL POST
eum-blue-saas.instana.io/
IP
34.240.91.6:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerDigiCert Inc
Subject*.instana.io
Fingerprint2D:F1:65:8E:52:99:3B:0E:A2:38:20:FB:AA:AF:77:D1:6A:63:DD:CB
ValidityWed, 21 Aug 2024 00:00:00 GMT - Sun, 21 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: eum-blue-saas.instana.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 6052
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store
cross-origin-resource-policy: cross-origin
Date: Thu, 08 May 2025 23:45:22 GMT
timing-allow-origin: *
Vary: Accept-Encoding
Content-Length: 0
Connection: keep-alive

www.welcomebeds.com/

34.253.90.127

200 OK

41 kB

URL User Request GET
www.welcomebeds.com/
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3190)
Size
41 kB (41183 bytes)
Hash
e2e47cbe5d189f43810b41645c6bce17
545db18ba069edccdf53cb557e866be48f9e7006
0d770177c899b917a3179935db66775fefda0adf44e3ddfbef3532f9a454cce7

HTTP Headers

GET / HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-language: es-ES
content-type: text/html;charset=UTF-8
date: Thu, 08 May 2025 23:45:17 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=c752cea0e4b47f1f
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: 142f6895-1223-5124-076c-465dacaf170b
x-xss-protection: 0
set-cookie: LANG=es_ES_WELCOMEBEDS-ES; Path=/; Secure; HttpOnly; SameSite=Lax
SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; Path=/; Secure; HttpOnly; SameSite=Lax
server: Web Server
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/gtm/analyticscore.bundle.js

3.167.7.36

200 OK

204 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/gtm/analyticscore.bundle.js
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
204 kB (203717 bytes)
Hash
bc79bb324045b0365111ca3ba97f811a
a798729260d3d448f6fa686bc75d374075e0d764
af866363455e085275d5565dbe9d67cd7542ba99a010abaa6d9ae8867bfb034b

HTTP Headers

GET /dist/assets/js/gtm/analyticscore.bundle.js HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Thu, 08 May 2025 22:18:24 GMT
last-modified: Wed, 09 Apr 2025 10:36:30 GMT
content-encoding: br
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: x4i9xAMN18BW82khw8U9RR0rqHAgIT_i
server: AmazonS3
etag: W/"bc79bb324045b0365111ca3ba97f811a"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 97ZEVUOLZex5aeagjmQE4OKbhX_qV1qSP279dYJY_kFdvTxG9xLqeA==
age: 5215
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/wbeds/favicon.ico

3.167.7.36

200 OK

1.2 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/wbeds/favicon.ico
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
4d33228b5de5d3769a98687cf651b9f5
9edf1ea02390d87674e5fe1e11d7998bb00f9162
e98a3aa07454d1ff71dc8805d4ac74c0cb7e9c84041a1d26478ac39a93b460bf

HTTP Headers

GET /dist/assets/img/wbeds/favicon.ico HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
date: Thu, 08 May 2025 22:25:01 GMT
last-modified: Tue, 20 Dec 2022 10:26:46 GMT
etag: "4d33228b5de5d3769a98687cf651b9f5"
x-amz-server-side-encryption: AES256
x-amz-version-id: FSNhPP3bFi5Dipjs9rb9bvdRhC2FGV_e
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: DG-g_T5Dv3YN6wZjK4L6jlls26yBHz9rFzDgYrIjSA-K24zfO0S6dQ==
age: 4819
vary: Origin
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/2f/89/d6/2d/e99477d9735469b5abc9613a24466abd1cb7e9d3006b493a5d637066.jpg

54.230.245.27

200 OK

178 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/2f/89/d6/2d/e99477d9735469b5abc9613a24466abd1cb7e9d3006b493a5d637066.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
178 kB (177723 bytes)
Hash
437a4c2ab05d4748460f7895ca474c67
50024610ec0a5bf2f67885d24db29ba19d5bba5f
ed69626a65454f21d682205a1d5887ee06d247b0333fffb3e5619565fa154a77

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/2f/89/d6/2d/e99477d9735469b5abc9613a24466abd1cb7e9d3006b493a5d637066.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 177723
date: Tue, 06 May 2025 13:28:08 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "437a4c2ab05d4748460f7895ca474c67"
expires: Tue, 13 May 2025 13:28:08 GMT
last-modified: Mon, 05 May 2025 07:30:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QVMUpbqsE_edHLD63G-IENjVLkjYgnW0Nyy5qg2Cy7uOdY2dgNPycA==
age: 209831
vary: Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/falcon/api/identifier/

34.253.90.127

200 OK

14 B

URL GET
www.welcomebeds.com/falcon/api/identifier/
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
b0f56dac014af1bb6b7a69f9ca1ef5d9
8cfd9140af8453f57758433208bddc31e63eb04e
2bde2341f3979d33e9c24e8173ddc712270c08dac120e0d93bf24638bd1c40fc

HTTP Headers

GET /falcon/api/identifier/ HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
server-timing: intid;desc=37c3d0ae0351241f
content-type: text/plain;charset=UTF-8
content-length: 14
date: Thu, 08 May 2025 23:45:20 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: Web Server
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202410.1.0/assets/otCenterRounded.json

104.18.86.42

200 OK

9.7 kB

URL GET
cdn.cookielaw.org/scripttemplates/202410.1.0/assets/otCenterRounded.json
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JSON text data
Size
9.7 kB (9661 bytes)
Hash
90d95f35c4fe3262b1ff952d8db02018
11a5e4b71d738c2f13004fcbf00aee4a4df3afd6
64aff3262c56fa48ad38b8d9d4d674a6ee3759d1ce4cb52c66865e3fc2c16d2f

HTTP Headers

GET /scripttemplates/202410.1.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/json
content-length: 2597
content-encoding: gzip
content-md5: n07Q6h2k1/N3MlBAEDY5qg==
last-modified: Thu, 28 Nov 2024 09:42:31 GMT
etag: 0x8DD0F90FAC7947E
x-ms-request-id: 984ccec5-301e-0004-71a7-416608000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48e5bb3b521-OSL
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/wbeds/logo.png

3.167.7.36

200 OK

4.1 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/wbeds/logo.png
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 260 x 45, 8-bit/color RGBA, non-interlaced
Size
4.1 kB (4140 bytes)
Hash
586ba85bd1eb895a09e9e8bf9db371e0
5966dbbc2338e0bd16fc0be6fcd977c5519d6a6b
edb224729f83deb1489eaae9cd0ca937c91969b37e98b0510a51e33ec218c6e1

HTTP Headers

GET /dist/assets/img/wbeds/logo.png HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 4140
date: Thu, 08 May 2025 22:25:00 GMT
last-modified: Tue, 02 May 2023 09:16:23 GMT
etag: "586ba85bd1eb895a09e9e8bf9db371e0"
x-amz-server-side-encryption: AES256
x-amz-version-id: .THeiNwZ6BywCdQnQgWMnzJM1lURh5f.
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Mrt-CsUfhUeexAGKFJ5I1TvT30QPNClVfj5KOmPtgt9DOflMhMhHqg==
age: 4823
vary: Origin
X-Firefox-Spdy: h2

www.rhodasol.com/

52.49.6.63

301 Moved Permanently

41 kB

URL User Request GET
www.rhodasol.com/
IP
52.49.6.63:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectrhodasol.com
Fingerprint9D:A7:CE:5C:02:E5:31:EC:B0:14:E1:92:C9:DD:EF:E9:C7:A2:9B:B2
ValidityThu, 01 May 2025 13:00:03 GMT - Wed, 30 Jul 2025 13:00:02 GMT

File type

Size
41 kB (41183 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.rhodasol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
location: https://www.welcomebeds.com/
content-length: 236
content-type: text/html; charset=iso-8859-1
date: Thu, 08 May 2025 23:45:17 GMT
server: Web Server
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUI.js?v=080520252303

3.167.7.36

200 OK

141 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUI.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65515), with no line terminators
Size
141 kB (140723 bytes)
Hash
22d6fb9648c634cfc5d339d44e3a90b0
6928f23836318b24e268e8c0e1f887bd56cf536c
1eaf83a691ab176cf961a5f11a72db68189e1b8b598e14fef8482c3678fb8afc

HTTP Headers

GET /dist/assets/js/pegasusUI.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 May 2025 22:18:25 GMT
last-modified: Thu, 08 May 2025 22:15:55 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: 57DTZAg3NlfbjQHsu6KCUa_R9bFg6wcS
server: AmazonS3
etag: W/"22d6fb9648c634cfc5d339d44e3a90b0"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: dmEnZ2EMWJQHR49WCTO16h4mdzqhSZQD-jMkq3KyV4YDOVYuuBdbyg==
age: 5214
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/base-vectorial-fonts/icomoon.woff

3.167.7.36

200 OK

185 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/fonts/base-vectorial-fonts/icomoon.woff
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 185304, version 1.0
Size
185 kB (185304 bytes)
Hash
300d134d8bf91b12b51c21f817f40cee
cf511074c21148e4529ea23195c323e061331ff6
355dfdd07a23b53c66c09ac88783989aaeaad08cb328c6d73073e54fb0a36f37

HTTP Headers

GET /dist/assets/fonts/base-vectorial-fonts/icomoon.woff HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 185304
date: Thu, 08 May 2025 23:13:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 08 May 2025 22:15:52 GMT
etag: "300d134d8bf91b12b51c21f817f40cee"
x-amz-server-side-encryption: AES256
x-amz-version-id: trSsW1XLZU4JXPtE.PthEfYDKOv7QRvs
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: nRBtsw7EjzW6f-6vr2syI-W3ScwS8mouVKDtGyhcRbZYpKlxFnJZcA==
age: 1904
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/03/d2/9c/f4/9a3c237096694fb323ac9cc61d8cbdcd7ced17d69f68c87f7853926b.jpg

54.230.245.27

200 OK

37 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/03/d2/9c/f4/9a3c237096694fb323ac9cc61d8cbdcd7ced17d69f68c87f7853926b.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1280x146, components 3
Size
37 kB (36820 bytes)
Hash
e2bf2be5dbcf2d1f63e2198407fd3292
a6ba6e05614afab45ebaf34ad76058740df3e74f
64f224cb4033e55c4a70163db53d20d21ffa2654635314dd2f657b3437e29fdc

HTTP Headers

GET /resize/1280x146/filters:max_age(2604800):quality(65)/s3/dam/photos/03/d2/9c/f4/9a3c237096694fb323ac9cc61d8cbdcd7ced17d69f68c87f7853926b.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 36820
date: Tue, 06 May 2025 14:42:53 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
expires: Tue, 13 May 2025 14:42:53 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MJl12pxABCE-lDohKsUEHxoPgahdSZPNZ_k8dgsxcnveWZXCwjIOSA==
age: 205347
vary: Origin
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/otSDKStub.js?did=019126d9-c2dd-7903-90a1-3002807f0fb4

104.18.86.42

200 OK

24 kB

URL GET
cdn.cookielaw.org/scripttemplates/otSDKStub.js?did=019126d9-c2dd-7903-90a1-3002807f0fb4
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JavaScript source, ASCII text, with very long lines (23566)
Size
24 kB (23567 bytes)
Hash
047640006d5ab098020a6bf30ff5aee9
10d247bfd01cc8241bafdf504d1160d456aee901
a011be10e83b3e4ff8bc831755b28089bab9b64fc01da437b3782b640b0b4689

HTTP Headers

GET /scripttemplates/otSDKStub.js?did=019126d9-c2dd-7903-90a1-3002807f0fb4 HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:20 GMT
content-type: application/javascript
content-length: 7637
content-encoding: gzip
content-md5: H9KAETG7Mk5cGCov01iYuQ==
last-modified: Thu, 08 May 2025 06:46:22 GMT
etag: 0x8DD8DFC0B944F9C
x-ms-request-id: d57422dc-d01e-0068-31fe-bfcddb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48828630b02-OSL
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUtils.js?v=080520252303

3.167.7.36

200 OK

2.9 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/pegasusUtils.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2933), with no line terminators
Size
2.9 kB (2933 bytes)
Hash
2dc54032a371d2606c9692869297cd4d
ff849e32de7698ddcc37e32e7385e07c6739e9bb
393f2a8129ae06cc875c5018b917445c9a99973449437250de54163c1d740548

HTTP Headers

GET /dist/assets/js/pegasusUtils.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 May 2025 22:18:25 GMT
last-modified: Thu, 08 May 2025 22:15:55 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: SxfTaxoT5qj6.JJgpYPTBrTb5GGLUFo9
server: AmazonS3
etag: W/"2dc54032a371d2606c9692869297cd4d"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: -7guKIEtN9o_KC6hZHc0WzgQ7k5Um0NHN7XXYyTSCiAP4x-wRCEblA==
age: 5214
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/8c/51/0d/90/a0d7c79dc0195a3e0ce90e04b2e1142d28c919ffc4b12e48e8ed0ea1.jpg

54.230.245.27

200 OK

72 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/8c/51/0d/90/a0d7c79dc0195a3e0ce90e04b2e1142d28c919ffc4b12e48e8ed0ea1.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
72 kB (72173 bytes)
Hash
9ff901ef86eaccba9465ec4059571501
1d5e2f4e9517aefc870655cfa6828075ff9239bb
59781d72fa25b71acaa2e1aa2b6bddb2ed1009895fdc9c8ce0d844b133cb1421

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/8c/51/0d/90/a0d7c79dc0195a3e0ce90e04b2e1142d28c919ffc4b12e48e8ed0ea1.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 72173
date: Mon, 05 May 2025 09:06:33 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "9ff901ef86eaccba9465ec4059571501"
expires: Mon, 12 May 2025 09:06:33 GMT
last-modified: Wed, 30 Apr 2025 12:46:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RyqlqkznSwMTWkNWXgUZ0SZKapFxnb3o-BmxEkTLpNGkPT0wLShw_Q==
age: 311926
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdownbutton-symbols/dropdownbutton-chevrondown-default.svg

3.167.7.36

200 OK

239 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdownbutton-symbols/dropdownbutton-chevrondown-default.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
239 B (239 bytes)
Hash
251c7baca0a72c1944ffadedf3fd653f
bcf5c79bdc7d12b03d67f0e823ef4413bab11a04
cbbf06aaa3e4f67870fdd6430fac38c5474ef6cd1701a42280e74a6ac92709da

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/dropdownbutton-symbols/dropdownbutton-chevrondown-default.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 239
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:53 GMT
etag: "251c7baca0a72c1944ffadedf3fd653f"
x-amz-server-side-encryption: AES256
x-amz-version-id: sqaAugRfC0t4OPjPJ85MfoyASeb72nRt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: 5xR8ji-tHsUy2YRdlXsiFA4shHM3NZMDudgODrHQsOq9rGmo3h3V_g==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/commons/customer/logged

34.253.90.127

200 OK

81 B

URL GET
www.welcomebeds.com/commons/customer/logged
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type
JSON text data
Size
81 B (81 bytes)
Hash
8268613565bcc3173cba20c98456da67
b2ef1d7c916c478022539141eefd38a313a1fe81
f11dca4d15a7dc17bbfe4895ef0bf77eb4dc0e0cb6aae0ac846c4a84bfe41286

HTTP Headers

GET /commons/customer/logged HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json;charset=UTF-8
date: Thu, 08 May 2025 23:45:19 GMT
expires: 0
pragma: no-cache
server-timing: intid;desc=e392117409c1b913
vary: accept-encoding
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: a6a65af8-4db8-6fe2-9730-8ec7c659d48e
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202410.1.0/assets/otCommonStyles.css

104.18.86.42

200 OK

25 kB

URL GET
cdn.cookielaw.org/scripttemplates/202410.1.0/assets/otCommonStyles.css
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
ASCII text, with very long lines (24745), with no line terminators
Size
25 kB (24745 bytes)
Hash
03d8de91de54a0ef12cb327a2e24adba
5d758dcc4afeaf7989e499e5842e2ba355c8c535
e2afa04c9a3e080712c94d68b9c1d33587fddcbaeaba9dfcaf1d53d19f6a280a

HTTP Headers

GET /scripttemplates/202410.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: text/css
content-md5: A9jekd5UoO8SyzJ6LiStug==
last-modified: Thu, 28 Nov 2024 09:42:41 GMT
x-ms-request-id: 0ed2949b-501e-003d-7013-6e26ac000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48e5bb7b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/css/wbeds/main.css?v=080520252303

3.167.7.36

200 OK

900 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/css/wbeds/main.css?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (59993)
Size
900 kB (899980 bytes)
Hash
669271aad61e75047eaab06c9ea4019c
36bc3253f90e5d0afe63513cd6d78401c23dda88
0c7080b65d766c7d76ca2fa5dc1223cdf7b9c57f471e463c50c54f81d3c372e7

HTTP Headers

GET /dist/assets/css/wbeds/main.css?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Thu, 08 May 2025 22:24:57 GMT
last-modified: Thu, 08 May 2025 22:15:51 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: I9vCeVTnxNCiJu6A.HpTFIBOHEwTfOyU
server: AmazonS3
etag: W/"669271aad61e75047eaab06c9ea4019c"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: ZzjNL5svUKUnhGWhYdfmsEYb-gmX4cQG7JhZ6SGejkX6e7ni5MtPXA==
age: 4822
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700&display=swap

142.250.74.10

200 OK

30 kB

URL GET
fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (1572)
Size
30 kB (30070 bytes)
Hash
b3bd52d27648ed22e65e33b915f474f2
0f5fdc41b5eb9354b97fea322b80a2643ad4c446
34b2d35a9d995f4dfe96b6555f474b549b2de3dc89b641530a7a430a232e1e4e

HTTP Headers

GET /css?family=Open+Sans:300,400,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 May 2025 23:45:18 GMT
date: Thu, 08 May 2025 23:45:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2

142.250.74.35

200 OK

28 kB

URL GET
fonts.gstatic.com/s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27824, version 1.0
Size
28 kB (27824 bytes)
Hash
225d39d1d4443e97f2ad20b9d91808fe
518045d265d6c388ac38dde9fdeb364474a90787
84221e6c0c5f950b44d38a40bc19ffa9a340b2a5d207cb6f6461b84d474f2555

HTTP Headers

GET /s/urbanist/v15/L0x-DF02iFML4hGCyMqlbS0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.welcomebeds.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 09:57:26 GMT
expires: Fri, 08 May 2026 09:57:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:09:06 GMT
content-type: font/woff2
age: 49673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/1f/59/bc/99/b32a8d2fba5345aefdbe8913f7872e6aa7984bcfb71dbf0c7377ebc1.jpg

54.230.245.27

200 OK

145 kB

URL GET
d2l4159s3q6ni.cloudfront.net/resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/1f/59/bc/99/b32a8d2fba5345aefdbe8913f7872e6aa7984bcfb71dbf0c7377ebc1.jpg
IP
54.230.245.27:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 2000x400, components 3
Size
145 kB (144561 bytes)
Hash
08b36262ec1d81986b5412ae76a18747
161d59e88c6658a7e51194e6ad2169ad9a0c363c
5eb54e9c0e078670760727aa1c1e5a7cd1cb02969c4e90a060eb2cf09da9fe01

HTTP Headers

GET /resize/2000x400/filters:max_age(2604800):quality(65)/s3/dam/photos/1f/59/bc/99/b32a8d2fba5345aefdbe8913f7872e6aa7984bcfb71dbf0c7377ebc1.jpg HTTP/1.1
Host: d2l4159s3q6ni.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 144561
date: Sun, 04 May 2025 08:42:13 GMT
cache-control: public, s-maxage=604800, max-age=604800, no-transform, stale-while-revalidate=86400
content-disposition: inline
etag: "08b36262ec1d81986b5412ae76a18747"
expires: Sun, 11 May 2025 08:42:13 GMT
last-modified: Tue, 29 Apr 2025 08:49:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NBraoxx3OstzW7yZJms2KMobtPWWNWWIEn4APpqJ9tMTEUhSdX8pNw==
age: 399786
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-selected.svg

3.167.7.36

200 OK

546 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-selected.svg
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
546 B (546 bytes)
Hash
41371847b44fc5f43d049d9f96f9ecfb
bb006d3b2c9e3248c4558d069c398d242f3ffb23
b2d2d37bc45b73cadf7d6fb73d347d2a65bb799809eff1e64e911c0e18a77a31

HTTP Headers

GET /hydra/assets/wbeds/img/symbols/dropdowncontent-symbols/dropdowncontent-radio-selected.svg HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/css/common.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 546
date: Thu, 08 May 2025 07:06:35 GMT
last-modified: Tue, 06 May 2025 13:40:54 GMT
etag: "41371847b44fc5f43d049d9f96f9ecfb"
x-amz-server-side-encryption: AES256
x-amz-version-id: 6AMGYG0Miblgm1YEndBOapZtxk3rizaf
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: d5YbPLX_FtPQVYEtYdXQLW6yjtnL039WVJTxdSgCfxX28KW10bzkug==
age: 59925
vary: Origin
X-Firefox-Spdy: h2

eum.instana.io/eum.min.js

23.36.77.240

200 OK

36 kB

URL GET
eum.instana.io/eum.min.js
IP
23.36.77.240:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.welcomebeds.com/
Certificate
IssuerDigiCert Inc
Subject*.instana.io
FingerprintE0:5A:BE:96:52:50:92:F9:8B:32:03:4F:A4:4B:79:94:7A:79:26:3E
ValiditySun, 09 Feb 2025 00:00:00 GMT - Wed, 11 Feb 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (567)
Size
36 kB (35903 bytes)
Hash
b4539aed237249a8f8326d5243629e44
4033a8d9b40f19efd80c2b5e29413fd6bf54daab
dfde3b634934a24f0ce58314bf2b384d3ef0b5c9f0639955cec8abacae321b67

HTTP Headers

GET /eum.min.js HTTP/1.1
Host: eum.instana.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
timing-allow-origin: *
etag: 1608063091--gzip
content-type: application/javascript;charset=UTF-8
last-modified: Thu, 1 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 13357
cache-control: public, max-age=566176
date: Thu, 08 May 2025 23:45:20 GMT
X-Firefox-Spdy: h2

www.rhodasol.es/grupos/

34.253.90.127

301 Moved Permanently

41 kB

URL User Request GET
www.rhodasol.es/grupos/
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectrhodasol.es
Fingerprint19:8F:FA:A3:57:B1:9D:D5:AE:3A:29:F7:A8:91:8A:CB:34:A3:C1:86
ValidityFri, 11 Apr 2025 18:54:03 GMT - Thu, 10 Jul 2025 18:54:02 GMT

File type

Size
41 kB (41183 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /grupos/ HTTP/1.1
Host: www.rhodasol.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
location: https://www.rhodasol.com/
content-length: 233
content-type: text/html; charset=iso-8859-1
date: Thu, 08 May 2025 23:45:17 GMT
server: Web Server
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/min/commonsB2B.js?v=080520252303

3.167.7.36

200 OK

27 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/js/min/commonsB2B.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26917), with no line terminators
Size
27 kB (26919 bytes)
Hash
8795041a4ed56f91159ba59208d4379c
900dcf2043f5dc7f8588dcf8694727dd44be356e
872b0bb8ee2f0d62868eafa1da412d843a46ee54e47ad2a765d151602cbab07f

HTTP Headers

GET /dist/assets/js/min/commonsB2B.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 May 2025 22:23:24 GMT
last-modified: Thu, 19 Dec 2024 09:39:34 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: nvVWelpq.TULw78i5xriKxmRUkA0H2Dd
server: AmazonS3
etag: W/"8795041a4ed56f91159ba59208d4379c"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: VqQ3BbLJ38ZpNNzrTiirDE-86g8-rCJ5ZAjNd3z9K5FNX_cBsyQ__A==
age: 4915
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

www.welcomebeds.com/commons/login?redirect=false

34.253.90.127

401 Unauthorized

0 B

URL GET
www.welcomebeds.com/commons/login?redirect=false
IP
34.253.90.127:443
ASN
#16509 AMAZON-02

Requested by
https://www.welcomebeds.com/
Certificate
IssuerLet's Encrypt
Subjectwelcomebeds.com
Fingerprint8F:0B:FD:37:CF:8B:97:47:9D:97:2F:33:3B:2C:21:46:62:C5:78:34
ValiditySat, 05 Apr 2025 20:54:14 GMT - Fri, 04 Jul 2025 20:54:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /commons/login?redirect=false HTTP/1.1
Host: www.welcomebeds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.welcomebeds.com/
DNT: 1
Connection: keep-alive
Cookie: LANG=es_ES_WELCOMEBEDS-ES; SESSION=MzJhYmIxZjctMWI5My00OWRhLTgxMWMtZDIxYmEzMDljZWE4; webpSupported=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 401 Unauthorized
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=63072000
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0
date: Thu, 08 May 2025 23:45:20 GMT
expires: 0
location: https://fusionauth-svc-auth.ingress-public.ocppro.aws-pro.avoristravel.io/oauth2/authorize?response_type=code&client_id=57f2fde9-7ef8-4cea-b6f5-bffd32dc1cb6&scope=front&state=NG4d3ZQmvq3OYLAcBZwLsfKzmWC_3OkWiCzPYask8ag%3D&redirect_uri=https://www.welcomebeds.com/commons/login&acr_values=WELCOMEBEDS_ES
pragma: no-cache
server-timing: intid;desc=5ea6e85acb6da655
x-content-type-options: nosniff
x-frame-options: DENY
x-prisma-event-id: 1129f322-1aa5-757a-b581-dab651a8efab
x-xss-protection: 0
server: Web Server
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202410.1.0/otBannerSdk.js

104.18.86.42

200 OK

472 kB

URL GET
cdn.cookielaw.org/scripttemplates/202410.1.0/otBannerSdk.js
IP
104.18.86.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.welcomebeds.com/
Certificate
IssuerGoogle Trust Services
Subjectcookielaw.org
Fingerprint7E:44:88:32:61:F5:87:72:55:0B:A6:75:76:F3:7F:C1:B8:F6:CA:CF
ValiditySun, 06 Apr 2025 20:15:04 GMT - Sat, 05 Jul 2025 21:15:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
472 kB (471790 bytes)
Hash
3ecc3e562bffb3a0279c708d980e164e
21e09375a078200ee860c6cabffd3ee791c8cb6d
ea345fff49064976d477cba358fa7a9b7d44fe3f2603ece439ec7cceca25b0ae

HTTP Headers

GET /scripttemplates/202410.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 08 May 2025 23:45:21 GMT
content-type: application/javascript
content-length: 114246
content-encoding: gzip
content-md5: OI6ss05gYupGXEyzSe0Tqw==
last-modified: Thu, 28 Nov 2024 09:42:37 GMT
etag: 0x8DD0F90FEB32B93
x-ms-request-id: 6b313eaa-701e-002a-797a-41e6cf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64253
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 93ccd48b09a40b02-OSL
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/js/header.js?v=080520252303

3.167.7.36

200 OK

4.8 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/js/header.js?v=080520252303
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
4.8 kB (4806 bytes)
Hash
ab608f840a05f0e96b3d1c94c3e2d4a1
dde27bd72b1c4ff06be806bab1986a6b86ad61ea
bc2a180f41599e4eee6840a50ff056e4907aa068da4ac4a3aaadc0434cbafa19

HTTP Headers

GET /hydra/assets/js/header.js?v=080520252303 HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 06 May 2025 13:39:59 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: s581hl4cVaBMEZPgR8j9AUvxVvjACNGL
server: AmazonS3
date: Thu, 08 May 2025 13:50:22 GMT
etag: W/"ab608f840a05f0e96b3d1c94c3e2d4a1"
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: AugMeKip8swdWbi5NgzQggNR48jEI69ahjNyufqira1ND_ARJS5dSg==
age: 35697
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/logos/header-logo.png

3.167.7.36

200 OK

3.9 kB

URL GET
d1hkxmgwhmmdhs.cloudfront.net/hydra/assets/wbeds/img/logos/header-logo.png
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 220 x 50, 8-bit/color RGBA, non-interlaced
Size
3.9 kB (3923 bytes)
Hash
51892d84100d613f83217f81109da799
226868b295713ef4288ee51bf322b40f7b3d8b58
4efb5c63369e074d127555a39284cc655977555ff98eac111c5838077e942e40

HTTP Headers

GET /hydra/assets/wbeds/img/logos/header-logo.png HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3923
date: Thu, 08 May 2025 07:06:34 GMT
last-modified: Tue, 06 May 2025 13:40:52 GMT
etag: "51892d84100d613f83217f81109da799"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1yt8Pi0GRV6uyouXdIGM9Jp0i2ec8hPf
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: kz8ldwJBPSsmlCmzH4aYwZYmVxTPUumsLqyLxnIIMucZWQvp9V7CHw==
age: 59926
vary: Origin
X-Firefox-Spdy: h2

d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/graphics/shim.gif

3.167.7.36

200 OK

43 B

URL GET
d1hkxmgwhmmdhs.cloudfront.net/dist/assets/img/graphics/shim.gif
IP
3.167.7.36:443
ASN
#0

Requested by
https://www.welcomebeds.com/
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7

HTTP Headers

GET /dist/assets/img/graphics/shim.gif HTTP/1.1
Host: d1hkxmgwhmmdhs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.welcomebeds.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 May 2025 22:24:57 GMT
last-modified: Tue, 02 May 2023 09:16:09 GMT
etag: "221d8352905f2c38b3cb2bd191d630b0"
x-amz-server-side-encryption: AES256
x-amz-version-id: uja9UJi1MNdmEirdhVX11E1YajoKLgzG
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f1dfb112336c56393fdb3341c0df8da0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: TbhVjVFZjfp56DOAyLBfHN9VQ2ymZFIEHIcowKqypS4WpTv7rRqlxw==
age: 4823
vary: Origin
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML