carrefour.ro
Total score
0.33
/ 1.00
Web hosting
0.0Non-EU-controlled provider (US, CLOUDFLARENET)
- Hostname
- carrefour.ro
- IP address
- 104.18.34.7
- Country
- United States
- ASN
- CLOUDFLARENET
- Server software
- cloudflare (CDN: Cloudflare)
Show raw HTTP headers ↓
Date: Thu, 04 Jun 2026 15:51:44 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive CF-Ray: a06819c83e3027cc-HEL CF-Cache-Status: DYNAMIC Access-Control-Allow-Origin: https://carrefour.ro Age: 3066 Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Expires: -1 Server: cloudflare Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Accept-Encoding Pragma: no-cache Content-Security-Policy-Report-Only: font-src *.gstatic.com 'self' data: *.doubleclick.net *.facebook.com *.fontawesome.com *.googleapis.com *.shopogen.ro *.gigya.com *.carrefour.ro carrefour.ro *.google.com www.googletagmanager.com *.googletagmanager.com facebook.com *.prefixbox.com *.tiktok.com *.jsdelivr.net maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com *.facebook.com *.instagram.com *.gigya.com *.carrefour.ro carrefour.ro facebook.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ *.googletagmanager.com *.doubleclick.net *.facebook.com *.dotdigital-pages.com *.dotdigital.com *.cookiebot.com *.google.com *.gigya.com *.carrefour.ro carrefour.ro *.krxd.net *.hotjar.com *.jsdelivr.net *.btdirect.ro *.tiktok.com *.prefixbox.com facebook.com www.googletagmanager.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com www.paypalobjects.com t.paypal.com *.ftcdn.net *.behance.net www.paypal.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com 'self' data: *.googletagmanager.com *.google.bg *.facebook.com *.facebook.net *.doubleclick.net *.gstatic.com blob: *.3lift.com *.adnxs.com *.adsrvr.org *.bluekai.com *.casalemedia.com *.ck-ie.com *.contextweb.com *.cookielaw.org *.dotomi.com *.eyeota.net *.flavedo.io *.flix360.com *.flix360.io *.flixcar.com *.google.ro *.google-analytics.com *.googleadservices.com *.kargo.com *.lijit.com *.media.net *.mediaplex.com *.openx.net *.paypal.com *.pubmatic.com *.rlcdn.com *.rubiconproject.com servedbyadbutler.com *.sharethrough.com *.shopogen.ro *.stickyadstv.com *.streamtheworld.com *.tremorhub.com *.yahoo.com *.gigya.com 'unsafe-inline' data: *.carrefour.ro carrefour.ro facebook.com *.krxd.net *.google.com www.googletagmanager.com *.tiktok.com *.prefixbox.com *.jsdelivr.net *.newrelic.com bam.eu01.nr-data.net www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com secure.authorize.net test.authorize.net www.googleadservices.com www.google-analytics.com www.paypalobjects.com js.braintreegateway.com www.paypal.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.sandbox.paypal.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.google.com *.google.bg *.googletagmanager.com *.facebook.com *.facebook.net *.doubleclick.net *.google-analytics.com *.gstatic.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com *.cloudflare.com *.cookiebot.com *.dotomi.com *.flix360.com *.flix360.io *.flixcar.com *.flixfacts.com *.googleapis.com *.instagram.com *.jsdelivr.net *.newrelic.com *.paypal.com *.pingdom.net servedbyadbutler.com *.shopogen.ro *.gigya.com *.carrefour.ro carrefour.ro chimpstatic.com www.googletagmanager.com *.krxd.net *.prefixbox.com *.tiktok.com *.cookielaw.org *.hotjar.com facebook.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com *.googleapis.com *.doubleclick.net *.facebook.com *.gstatic.com *.googletagmanager.com *.fontawesome.com *.shopogen.ro *.twitter.com *.typekit.net *.gigya.com 'unsafe-inline' data: *.carrefour.ro carrefour.ro *.jsdelivr.net *.prefixbox.com *.tiktok.com maxcdn.bootstrapcdn.com unsafe-inline 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com *.google-analytics.com *.facebook.com *.facebook.net *.google.com *.trackedlink.net *.trackedweb.net *.dotdigital-pages.com *.citrusad.com *.doubleclick.net *.flix360.io *.flixcar.com *.googleapis.com *.googlesyndication.com *.instagram.com *.onetrust.com *.paypal.com *.pingdom.net *.shopogen.ro *.gigya.com *.carrefour.ro carrefour.ro *.cookielaw.org *.krxd.net *.hotjar.com *.jsdelivr.net *.prefixbox.com *.newrelic.com bam.eu01.nr-data.net api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src *.googleapis.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; V-S: 2 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block set-cookie: __cf_bm=br3HZg9irIm8IKkpl8TZ1aPuWKIC_4DC4W0.nfc429k-1780588304.6797314-1.0.1.1-wjJ087m4cZfbAnxWmeJG8uMMt1oYCjeNdWUt7o0lsNDpaAhp_ACXSPGM6lkXZErdUewtX_tYcYrMcLgQ3BBVfgL.OSewB6TvO_mCEnw4xlgsshP_w4chXN.Mjf1HSKI2; HttpOnly; SameSite=None; Secure; Path=/; Domain=carrefour.ro; Expires=Thu, 04 Jun 2026 16:21:44 GMT Content-Encoding: br alt-svc: h3=":443"; ma=86400
Verify independently
- Look up this IP on bgp.he.net (104.18.34.7) ↗
- Search this ASN on bgp.he.net ↗
- Run a DNS lookup on this host (carrefour.ro) ↗
Last scanned:
Mail hosting
1.0Hosted in the EU by an EU provider (Orange Romania S.A.)
- MX hostname
- mail.carrefour.ro
- IP address
- 109.166.194.210
- Country
- Romania
- ASN
- Orange Romania S.A.
- Error
- Could not connect (Network Error: TimeoutError)
Verify independently
- Look up this IP on bgp.he.net (109.166.194.210) ↗
- Search this ASN on bgp.he.net ↗
- Run a DNS lookup on this host (mail.carrefour.ro) ↗
Last scanned:
DNS
0.0DNS is managed by a non-EU provider: Cloudflare
- Primary nameserver
- luke.ns.cloudflare.com
- Country
- US
- ASN
- CLOUDFLARENET
Verify independently
- Search this ASN on bgp.he.net ↗
- Run a DNS lookup on this host (luke.ns.cloudflare.com) ↗
- To verify yourself, run: dig +short luke.ns.cloudflare.com, then look up the IP on bgp.he.net.
Last scanned:
Score values: 1.0 = sovereign (EU-hosted, EU provider). 0.0 = non-sovereign (outside the EU, or on a non-EU-controlled provider — US, UK, etc. — regardless of where the datacenter sits). N/A = the sub-score couldn't be measured (no MX record, unresolvable host, etc.) and is excluded from the total.