3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
34.149.204.188308 Permanent Redirect 101 B URL HTTP/1.1 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
IP 34.149.204.188:0
File type HTML document, ASCII text
Hash 832a93d61ebfedc3974442d08e82018e
0a87d7f9532ff93492dd8c4d419a9154ffb8e14d
1152c3417cf0ad860d391851099b0828c6a820fe09010caef30cb6724f8c4bfd
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /login.php HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html; charset=utf-8
Location: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Replit-Cluster: global
Date: Mon, 06 Feb 2023 18:36:01 GMT
Content-Length: 101
Via: 1.1 google
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8893
Expires: Mon, 06 Feb 2023 21:04:14 GMT
Date: Mon, 06 Feb 2023 18:36:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16619
Expires: Mon, 06 Feb 2023 23:13:00 GMT
Date: Mon, 06 Feb 2023 18:36:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 18:34:06 GMT
content-type: application/json
age: 115
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5474
Expires: Mon, 06 Feb 2023 20:07:15 GMT
Date: Mon, 06 Feb 2023 18:36:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LQiEVb2dESUByR1apUZBOttJgGdTD9V9St4W2Web0gJ0LzFuCHHF5e/WdaFYeldny6bHCC/PDQs=
x-amz-request-id: 4JBPS6JFR3A7R4VW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 18:35:13 GMT
age: 48
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 18:36:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 200bf219423662e1e5da9e69866821ab
2380cbbf34055f4d98863ac31ed6e072be9ecdcc
c73fc1f65685428f354198a05b74d1fbe5ff8d5cca4d531f94a0dae93e15baba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C73FC1F65685428F354198A05B74D1FBE5FF8D5CCA4D531F94A0DAE93E15BABA"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Mon, 06 Feb 2023 23:14:11 GMT
Date: Mon, 06 Feb 2023 18:36:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 18:07:20 GMT
age: 1721
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4620
Expires: Mon, 06 Feb 2023 19:53:02 GMT
Date: Mon, 06 Feb 2023 18:36:02 GMT
Connection: keep-alive
assets.adobedtm.com/37617e04bc40/148ea22e9d02/launch-b85999266f92.min.js
2.18.172.233200 OK 185 kB URL HTTP/2 assets.adobedtm.com/37617e04bc40/148ea22e9d02/launch-b85999266f92.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32760)
Size 185 kB (184562 bytes)
Hash 036c46b3d941d1898bd2e564165b5a7d
cc27e0be4e3cd4acc4cc857990c6c5336a973219
a7c3206e1dc942f5bcf2698fb4840f63fc654be944c39a42237c80d8bc7820a9
GET /37617e04bc40/148ea22e9d02/launch-b85999266f92.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9459bb995a8cdd1f94d082eba5685570:1673266903.699655"
last-modified: Mon, 09 Jan 2023 12:21:43 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Mon, 06 Feb 2023 19:36:02 GMT
date: Mon, 06 Feb 2023 18:36:02 GMT
content-length: 184562
access-control-allow-origin: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/37617e04bc40/148ea22e9d02/ec923150e907/EXcbed6db11d6a41a3a0d1449d9393f83d-libraryCode_source.min.js
2.18.172.233200 OK 14 kB URL HTTP/2 assets.adobedtm.com/37617e04bc40/148ea22e9d02/ec923150e907/EXcbed6db11d6a41a3a0d1449d9393f83d-libraryCode_source.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32763)
Hash 07609db7370c6ecff6f346354028183b
ab050dbacfecc32fdcaa13075ceab0ac45abed38
baf7539964d4c4c7e50a9e648c4784cc68a6ead55456c8e6a121c52723b12184
GET /37617e04bc40/148ea22e9d02/ec923150e907/EXcbed6db11d6a41a3a0d1449d9393f83d-libraryCode_source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "5e8026743d1ffd881e96c1ae9ede6feb:1673266904.704351"
last-modified: Mon, 09 Jan 2023 12:21:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 14004
cache-control: max-age=3600
expires: Mon, 06 Feb 2023 19:36:02 GMT
date: Mon, 06 Feb 2023 18:36:02 GMT
access-control-allow-origin: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 5a817c8339c5e15d506737cc29401663
c3cba31f5bdd016887fccbf1f8efe6a829117494
a26584ba93f846a10daad56d336ed223fd0e3634dca7b07afdf955223094e938
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "A26584BA93F846A10DAAD56D336ED223FD0E3634DCA7B07AFDF955223094E938"
Last-Modified: Mon, 06 Feb 2023 16:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3073
Expires: Mon, 06 Feb 2023 19:27:15 GMT
Date: Mon, 06 Feb 2023 18:36:02 GMT
Connection: keep-alive
content.connexion-mabanque.bnpparibas/bwmohyju72uolwuc.js?idi24qub4l70p9xk=cco37scf&6gg9xeofwodfgw2o=4add1b58-e81e-4435-9dfd-ab0d9fe25553&sw7uhingpmzksnn3=101
91.235.132.68200 OK 13 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/bwmohyju72uolwuc.js?idi24qub4l70p9xk=cco37scf&6gg9xeofwodfgw2o=4add1b58-e81e-4435-9dfd-ab0d9fe25553&sw7uhingpmzksnn3=101
IP 91.235.132.68:0
File type ASCII text, with very long lines (15506)
Hash 194b10ab832f403bdeee97a95e146c5a
241fe61e094c4b3245b653c8480639362ad317c5
26a64e8c3c7e2efe947dc0e733d631715ff8a60b3df3de727087ced579f25252
GET /bwmohyju72uolwuc.js?idi24qub4l70p9xk=cco37scf&6gg9xeofwodfgw2o=4add1b58-e81e-4435-9dfd-ab0d9fe25553&sw7uhingpmzksnn3=101 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:02 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f; Max-Age=33696000; Version=1; HttpOnly; Path=/; Secure; SameSite=None;
P3P: CP=IVAa PSAa
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/grille-705ed221746a2c5c6985f0a6326d17ed.js
34.149.204.188200 OK 2.1 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/grille-705ed221746a2c5c6985f0a6326d17ed.js
IP 34.149.204.188:0
Hash 705ed221746a2c5c6985f0a6326d17ed
65fef6ad7dea58feaba07e6402d2909f323d84d0
4e12df9c551e9fc5202dc5be74df6cad94a7cf590abb88d165d448fdbd927395
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/js/grille-705ed221746a2c5c6985f0a6326d17ed.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 2116
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/mabanque/js/publication-e4070c51eb28c1fd29d9698714cd783f.js
34.149.204.188200 OK 9.1 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/mabanque/js/publication-e4070c51eb28c1fd29d9698714cd783f.js
IP 34.149.204.188:0
Hash e4070c51eb28c1fd29d9698714cd783f
c9dc5ff7d210da09d0b08e82d402a037dfbd5c27
d69bf1cb590c5064e597319ba8ca627df0709858e4ae40d63f9cb549fc5e3964
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /mabanque/js/publication-e4070c51eb28c1fd29d9698714cd783f.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 9087
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/generique/satelliteLoader.js
34.149.204.188200 OK 4.5 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/generique/satelliteLoader.js
IP 34.149.204.188:0
File type HTML document, ASCII text
Hash df345621c0b7dc9afa26121c52fad00d
b0c316cf8a54a34fc69411bc069cd6fe44362a52
8636c0ef48fadbb158b5a730a4cd0cf28cbcf391271562a1173d765499a60ea6
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/script/generique/satelliteLoader.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 4467
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/threatMetrix/bjtdzi1212.js
34.149.204.188200 OK 2.8 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/threatMetrix/bjtdzi1212.js
IP 34.149.204.188:0
File type ASCII text, with very long lines (2825), with no line terminators
Hash 6367d9a9f75fbb1457ab74de0d3d58b0
063fe6df96477ea9b1e4aad77e5890488b1497d4
2fa90f2efcf345b936a95809f58499ada6277c089fe7908a70090850fbccaa5e
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/threatMetrix/bjtdzi1212.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 2825
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte-bpf.png
34.149.204.188404 Not Found 581 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b5a51e8ede5126e089b8126a5b37fbda
d2e86c14206d64548902a4a1b6007e8291320c6e
0ce7b05c93e1c63e44f8eb9fb5a603d21ffbba09cb825e5ecfe31e074e4e196c
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/oposer-carte-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 581
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/debloquer-carte-bpf.png
34.149.204.188200 OK 3.8 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/debloquer-carte-bpf.png
IP 34.149.204.188:0
File type PNG image data, 45 x 36, 8-bit/color RGBA, interlaced\012- data
Hash ea7fd77533b4e5193894e0cc3c575f11
c9b2b2e22d750232ecd7fd18aadae387306db7c6
613fea59d1d4bfe6ef9b5553eaa4e4a3c5cfb2a7e122fc947b55e074ac325f4d
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/debloquer-carte-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 3774
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/cas-8da6e3f4dedbd2a8e537fcf64deb8c38.js
34.149.204.188200 OK 1.8 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/cas-8da6e3f4dedbd2a8e537fcf64deb8c38.js
IP 34.149.204.188:0
File type HTML document, ASCII text
Hash 628281a3fbef243358bc5b03c57fdbfe
e36faa4159bbf6c34162c376fba6653ba17168ed
c0ee52eff55c3ef3094125109f543b0095b8034439e1eba662b1e587ed504e2f
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/js/cas-8da6e3f4dedbd2a8e537fcf64deb8c38.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 1819
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/keepalive-9d8dc0169810b25ddc72bd43c32028e1.js
34.149.204.188200 OK 1.6 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/keepalive-9d8dc0169810b25ddc72bd43c32028e1.js
IP 34.149.204.188:0
Hash 9d8dc0169810b25ddc72bd43c32028e1
0d835b7a6b43617ddc2dc7838f414926cccf646e
c3081eb7ad1abe25c308cbf596d9a3a4cf869311677021f098e866f3834417d3
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/js/keepalive-9d8dc0169810b25ddc72bd43c32028e1.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 1608
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/generique/DependanceSatelliteLoader.js
34.149.204.188200 OK 1.1 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/generique/DependanceSatelliteLoader.js
IP 34.149.204.188:0
Hash 4518ffbc47a13f94974367a162418497
10920d45ceebea1792a7e38463d06bbc4a5dd361
1525b785a6b073047ae8e7727cd5b146489c6893607757da099a14c903bfe7d2
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/script/generique/DependanceSatelliteLoader.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 1119
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque-bpf.png
34.149.204.188404 Not Found 583 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 511cce545822b0a5c841b0c8200cfb53
b62b2474a5cc9081a653d39356e88bfeff2d8ec6
66759427abff628880c6646ff748eb6201c260ac6b1752529c8a8d09dddfd585
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-cheque-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 583
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/particuliers/min/cas.min.js
34.149.204.188200 OK 4.5 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/script/particuliers/min/cas.min.js
IP 34.149.204.188:0
File type ASCII text, with very long lines (4510)
Hash 2f26519d3390b945c1a682f562fc4d45
72e5187d392c5be40d9ec50eedf24d195d3ee709
ec8337d829f7b5f1e4b93e4f210922bba59fca93ce09ec73072c5fcc54d576ae
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/script/particuliers/min/cas.min.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 4547
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement-bpf.png
34.149.204.188404 Not Found 588 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d389e0c3d71b3c9ede36874bb0b43dc2
0cae28dee5c7fbada837cff64b06e1c8a97cf56b
a5afa7c760e0a3e8060f3f290ff1e5597c2a4918b3205cb4389d4ad4b7b56eb2
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-prelevement-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 588
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-giro-bpf.svg
34.149.204.188200 OK 1.1 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-giro-bpf.svg
IP 34.149.204.188:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (661)
Hash c50c65bf8f82c30a6c1ab6cd4931f887
a837e07a669c0624264ab2015810f761735d4bc6
6b32c695ff289891fa9d948c836625d81cd6146b85fab955b572cfcd4e294f8e
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/image/generique/picto-giro-bpf.svg HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 1112
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque.png
34.149.204.188404 Not Found 579 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cb7e47cba1d831b44219e56301931f04
415f465cf4a87d77b197d283e36da2cce753386c
fe5022e4f2dd1773b311d2bb877b5042faa3b09a6c95605a665ee6dde1163c7c
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-cheque.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 579
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte.png
34.149.204.188404 Not Found 577 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f90f90b7953ccafbd53147dae8b2b948
5a091a36447ce79b80010228268a1734f7ce51d0
e86ca1cabf5e595a5439a01f5be7b84b67bba84f437513ccde284182fa02f323
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/oposer-carte.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 577
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/urgence.svg
34.149.204.188200 OK 600 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/urgence.svg
IP 34.149.204.188:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (338)
Hash 77ca1eb8178358fe857aec08dc511404
992d2bf30df0591abc44fdc3d592951fa99f4d2b
52b355e1ce355a40ed04bc7930bbe0f7b9863c5c3db9e9c769f3e583f52c3177
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/image/generique/urgence.svg HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 600
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/threatMetrix/pfbp.js
34.149.204.188200 OK 455 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/threatMetrix/pfbp.js
IP 34.149.204.188:0
Hash 7f68b34e64b2a103d3b5805744720a22
8b33af78f4bdc91ffa7db1db322bcd760f6b3753
aed89694e48821648f93b2fd812a01e9f1e4ac7e63c3ca3907dc074cb69a3603
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/threatMetrix/pfbp.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 455
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2nDvv1XbwCbxncMBPMNITw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QG/iy6/ygFGlc8DWvYe4e904xSw=
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement.png
34.149.204.188404 Not Found 584 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1498120e617aa02c32d957de103b1ec
a762cf73362f3a8fd202dd0a357a497744ae55e8
7903fdbea7c3b35eb1ec80574dc082bb345ae5e11a2b41acbbfc8e2dd29b36ac
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-prelevement.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 584
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png
34.149.204.188404 Not Found 611 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 403ad9a4485f0e7e673fb27144e0c8b6
b98c2230cd096915a5a2feac96c2589e5c70a9fa
6218ad51dac3c4cdda010f6b969749e2efe2e85fe6b43e01979656beaa2d7ed3
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 611
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-giro.svg
34.149.204.188200 OK 1.1 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-giro.svg
IP 34.149.204.188:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (662)
Hash eba020e4b21c30a42e5d619318c75c16
63450c7f2d8dea1bbc9876f42fe0118a88ad80e4
755817d0cd3fbbb17a05ad9f8d601632e46fe126a501b37455c52a7049b30f00
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/image/generique/picto-giro.svg HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 1111
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png
34.149.204.188404 Not Found 625 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7fb730c26aaac9fe0f246c3b522d6ac5
dbab0283fc48ea76148123674a0858a62c7ce6ab
1934b579b8f19d02948f705a98c9b206ae0fcafd9994cd3550149254b000edfc
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 625
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a51270449e2ce571a0f3c6f9cf005b7
7870c9b709562eb7acbe18ea07f13254264ec8a3
70f1d7e762d145af998942ab9c03c697b628757243e879c52199327eb3dcc526
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png
34.149.204.188404 Not Found 610 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8bc4ce6721c63505e4ed5605d5e54d2
3e0b024f80bb4a70c089ea663460c716af02e1fe
38473e62b6693a270e2cde707b0833ade712326a4016c9ef0932ba8648615019
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 610
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png
34.149.204.188404 Not Found 610 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 559fcd36f7f488fbeeff3dfa5dd1bf16
93316dc0d659e3489993da403e584dfeee25276f
f02f767f5be0cdfee8f3ec0b08ab438b18bbf0592d840deb71d3d735cd1af4b3
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 610
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8b70aedf0a56d494d4cf93c9e88c9a0
598d626cedc138bbb21b1dfdc6e472e0123ce3c3
04f065101920da50486ec9506cb9d233fbd0519671c43dbc0dd51f28067d6321
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3deebf46bf50c871cd8d32f9e37b5717
3d36994619039050b6d4457ff883af7b39568b67
823e32fe76e78fcf59f6a8c9d97e6f1b086e571c0c35b5f801424ec6b30b44b1
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png
34.149.204.188404 Not Found 607 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 401ec6f834846d3dc1f017ad7fe19f0f
7eb60708e2f9691de853aa252583edb1d1e5f6db
c0f59e66b889dce8935bfc96082b40b4f3cdc8136c4952fe24bd2611dbd4824e
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 607
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-carte-bloqu-e.png
34.149.204.188200 OK 3.5 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/picto-carte-bloqu-e.png
IP 34.149.204.188:0
File type PNG image data, 40 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash fd951519695291388f2049aa1167ba62
cafc7c5c0f50efcbd97fa980037b9c8625efab66
052502d678d3e394ab3ae793bf2c6a61a9b5b8d40ff9a2af93e38a10105efbfe
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/picto-carte-bloqu-e.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 3532
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/css/style.css
34.149.204.188200 OK 46 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/css/style.css
IP 34.149.204.188:0
File type assembler source, Unicode text, UTF-8 text
Hash d94dee76f198c93b9f11703574471ed9
ccc866ef8a4fb8e0bb4b715ffcb5a82bc079f9f4
b32d4687be628c9dc9ca03f0b3803ec50491074205034af27928c90bb359addb
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/identification/src/themes/mabanque/css/style.css HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 46328
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-footer-part.css
34.149.204.188200 OK 82 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-footer-part.css
IP 34.149.204.188:0
File type ASCII text, with very long lines (53186)
Hash 49a70ffbda9c075a82b34cdc0b9294dc
0ead6df0d0b4ab1ec884d1620f4e675ca680d7fa
fd6c21120b6eeba8cc78aa02e2cc6f14f8a6b8a567292b4609dffbba71378afd
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/css/particuliers/cas-footer-part.css HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 82086
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
34.149.204.188200 OK 196 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
IP 34.149.204.188:0
File type ASCII text, with very long lines (53169)
Size 196 kB (195858 bytes)
Hash 346f67b2d21a3d6dc3944d1b309c613f
fbecab0f56928efb2e8b9702e0c4bc7031ef0760
822013e19b44242e8d215ab42fbf7b87ae86ef86c705b90c722b4c0cb07d2084
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/css/particuliers/cas-header-part.css HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 195858
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/01_jquery-3.3.1-6a07da9fae934baf3f749e876bbfdd96.js
34.149.204.188200 OK 272 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/common/js/01_jquery-3.3.1-6a07da9fae934baf3f749e876bbfdd96.js
IP 34.149.204.188:0
Size 272 kB (271751 bytes)
Hash 6a07da9fae934baf3f749e876bbfdd96
46a436eba01c79acdb225757ed80bf54bad6416b
d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /common/js/01_jquery-3.3.1-6a07da9fae934baf3f749e876bbfdd96.js HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 18:36:02 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984713; includeSubDomains
content-length: 271751
X-Firefox-Spdy: h2
content.connexion-mabanque.bnpparibas/IBmpBiExJbHYZD5A?3bd3347632680a70=TCJVZb5hqAtv6njLg5ctRyeUXc6wCiPLJ9PcExZ9hZJh4BRH7mz2uLiNncyFGWCNW0VjCo6CMxZOYHTMNK0u7DSSPOBUy_uZCoi0taIWiHwqlf9XWM2izoMm9WIX12FCULsoxfbpdCA0ZCXENm0WcUxCSk0&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
91.235.132.68200 OK 5.9 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/IBmpBiExJbHYZD5A?3bd3347632680a70=TCJVZb5hqAtv6njLg5ctRyeUXc6wCiPLJ9PcExZ9hZJh4BRH7mz2uLiNncyFGWCNW0VjCo6CMxZOYHTMNK0u7DSSPOBUy_uZCoi0taIWiHwqlf9XWM2izoMm9WIX12FCULsoxfbpdCA0ZCXENm0WcUxCSk0&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
IP 91.235.132.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (332), with CRLF, LF line terminators
Hash 28c9019b2a7d2c22c175a99aa157c0fa
08d3d25f599509a0ac6c2fe292327ace4f435e39
145f3ae83ff277d2e7eb373682e9f699e6ae6b0f908fdf5630a99d753af44393
GET /IBmpBiExJbHYZD5A?3bd3347632680a70=TCJVZb5hqAtv6njLg5ctRyeUXc6wCiPLJ9PcExZ9hZJh4BRH7mz2uLiNncyFGWCNW0VjCo6CMxZOYHTMNK0u7DSSPOBUy_uZCoi0taIWiHwqlf9XWM2izoMm9WIX12FCULsoxfbpdCA0ZCXENm0WcUxCSk0&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:03 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-UA-Compatible: IE=Edge
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5929
Keep-Alive: timeout=2, max=99
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte.png
34.149.204.188404 Not Found 577 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f90f90b7953ccafbd53147dae8b2b948
5a091a36447ce79b80010228268a1734f7ce51d0
e86ca1cabf5e595a5439a01f5be7b84b67bba84f437513ccde284182fa02f323
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/oposer-carte.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 577
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque-bpf.png
34.149.204.188404 Not Found 583 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 511cce545822b0a5c841b0c8200cfb53
b62b2474a5cc9081a653d39356e88bfeff2d8ec6
66759427abff628880c6646ff748eb6201c260ac6b1752529c8a8d09dddfd585
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-cheque-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 583
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement.png
34.149.204.188404 Not Found 584 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1498120e617aa02c32d957de103b1ec
a762cf73362f3a8fd202dd0a357a497744ae55e8
7903fdbea7c3b35eb1ec80574dc082bb345ae5e11a2b41acbbfc8e2dd29b36ac
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-prelevement.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 584
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte-bpf.png
34.149.204.188404 Not Found 581 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/oposer-carte-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b5a51e8ede5126e089b8126a5b37fbda
d2e86c14206d64548902a4a1b6007e8291320c6e
0ce7b05c93e1c63e44f8eb9fb5a603d21ffbba09cb825e5ecfe31e074e4e196c
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/oposer-carte-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 581
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque.png
34.149.204.188404 Not Found 579 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-cheque.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cb7e47cba1d831b44219e56301931f04
415f465cf4a87d77b197d283e36da2cce753386c
fe5022e4f2dd1773b311d2bb877b5042faa3b09a6c95605a665ee6dde1163c7c
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-cheque.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 579
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement-bpf.png
34.149.204.188404 Not Found 588 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/generique/opposer-prelevement-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d389e0c3d71b3c9ede36874bb0b43dc2
0cae28dee5c7fbada837cff64b06e1c8a97cf56b
a5afa7c760e0a3e8060f3f290ff1e5597c2a4918b3205cb4389d4ad4b7b56eb2
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/generique/opposer-prelevement-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 588
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3deebf46bf50c871cd8d32f9e37b5717
3d36994619039050b6d4457ff883af7b39568b67
823e32fe76e78fcf59f6a8c9d97e6f1b086e571c0c35b5f801424ec6b30b44b1
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-voiture.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png
34.149.204.188404 Not Found 611 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 403ad9a4485f0e7e673fb27144e0c8b6
b98c2230cd096915a5a2feac96c2589e5c70a9fa
6218ad51dac3c4cdda010f6b969749e2efe2e85fe6b43e01979656beaa2d7ed3
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-voiture-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 611
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png
34.149.204.188404 Not Found 610 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8bc4ce6721c63505e4ed5605d5e54d2
3e0b024f80bb4a70c089ea663460c716af02e1fe
38473e62b6693a270e2cde707b0833ade712326a4016c9ef0932ba8648615019
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-cle-QA-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 610
X-Firefox-Spdy: h2
content.connexion-mabanque.bnpparibas/K8IBu566L31QzYbf?fa33689a031f6b0c=xcYvaVF3Fq-Jpjbd0h1bnpzAxo6TLTEP1AlldZ6upKttprQMyEKCv6mG1fbPASwKawwZJUZkuZzE-ZJqRxznrHzRdB07CC0XhVW05Pro00CVvNsmK7Kolw5hkdqgh74rM6yrnjXc47L3Vmm9Ppu9V5D-g4ewtP9G4S-YVDV2qlW7
91.235.132.68200 OK 30 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/K8IBu566L31QzYbf?fa33689a031f6b0c=xcYvaVF3Fq-Jpjbd0h1bnpzAxo6TLTEP1AlldZ6upKttprQMyEKCv6mG1fbPASwKawwZJUZkuZzE-ZJqRxznrHzRdB07CC0XhVW05Pro00CVvNsmK7Kolw5hkdqgh74rM6yrnjXc47L3Vmm9Ppu9V5D-g4ewtP9G4S-YVDV2qlW7
IP 91.235.132.68:0
File type ASCII text, with very long lines (15506)
Hash 17480ec7ef8c015a7a8103cda9b1f259
039278d51569f9c15555f7fb1af8a91fed8d3e21
310f43cc2bf1ef598e281d815f026e4d79645f49d111af080a985b1f188f2b97
GET /K8IBu566L31QzYbf?fa33689a031f6b0c=xcYvaVF3Fq-Jpjbd0h1bnpzAxo6TLTEP1AlldZ6upKttprQMyEKCv6mG1fbPASwKawwZJUZkuZzE-ZJqRxznrHzRdB07CC0XhVW05Pro00CVvNsmK7Kolw5hkdqgh74rM6yrnjXc47L3Vmm9Ppu9V5D-g4ewtP9G4S-YVDV2qlW7 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/IBmpBiExJbHYZD5A?3bd3347632680a70=TCJVZb5hqAtv6njLg5ctRyeUXc6wCiPLJ9PcExZ9hZJh4BRH7mz2uLiNncyFGWCNW0VjCo6CMxZOYHTMNK0u7DSSPOBUy_uZCoi0taIWiHwqlf9XWM2izoMm9WIX12FCULsoxfbpdCA0ZCXENm0WcUxCSk0&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:03 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
tmx-nonce: 37eee64c2ade5d7b
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=98
Transfer-Encoding: chunked
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f8b70aedf0a56d494d4cf93c9e88c9a0
598d626cedc138bbb21b1dfdc6e472e0123ce3c3
04f065101920da50486ec9506cb9d233fbd0519671c43dbc0dd51f28067d6321
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-cles-QA.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png
34.149.204.188404 Not Found 607 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 401ec6f834846d3dc1f017ad7fe19f0f
7eb60708e2f9691de853aa252583edb1d1e5f6db
c0f59e66b889dce8935bfc96082b40b4f3cdc8136c4952fe24bd2611dbd4824e
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-mobileo.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 607
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png
34.149.204.188404 Not Found 625 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7fb730c26aaac9fe0f246c3b522d6ac5
dbab0283fc48ea76148123674a0858a62c7ce6ab
1934b579b8f19d02948f705a98c9b206ae0fcafd9994cd3550149254b000edfc
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-maison.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 625
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png
34.149.204.188404 Not Found 610 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 559fcd36f7f488fbeeff3dfa5dd1bf16
93316dc0d659e3489993da403e584dfeee25276f
f02f767f5be0cdfee8f3ec0b08ab438b18bbf0592d840deb71d3d735cd1af4b3
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/bpf/infographies/espace-sinistre/images/picto-maison-bpf.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 610
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png
34.149.204.188404 Not Found 626 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a51270449e2ce571a0f3c6f9cf005b7
7870c9b709562eb7acbe18ea07f13254264ec8a3
70f1d7e762d145af998942ab9c03c697b628757243e879c52199327eb3dcc526
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/html/particuliers/infographies/assurance/espace-sinistre/images/picto-mobileo.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 626
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/particuliers/ident/image-ordi-loupe_2x.jpg
34.149.204.188404 Not Found 593 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/image/particuliers/ident/image-ordi-loupe_2x.jpg
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 20e1f4bf221a240b55f4c584062f1d7e
ee93cf81c98121a67145b128b93c2f4ee3110f2b
85c330ac885cf6e04a30239152112f3dbd6cf056e72b1f598773439c3974c587
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/image/particuliers/ident/image-ordi-loupe_2x.jpg HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 593
X-Firefox-Spdy: h2
content.connexion-mabanque.bnpparibas/ofdguIKppuTkJWSN?67cabd2910a45199=rpXENcT1SqQpeg9aTHJNvVgByL5GoovaJ7nMAloj-Hflcn09t3betPuCM89pvwh-Z00E1EOpZrC94xbYucIBZInnh_kJ2l6kp37L461r3W6ibwtm0L6spWBrtRXqd5TiKC-u2XWoZxmACQXCtMD5Y8p_Wd4ySow1_k3sSv6xbLI8xbf3Ceb68g1PvBZSY8Bodzc9DHmokeWhumBZB7VhUzUBbdA&sera_parametere=VUdYUgBVUVoBUFxdAFICBwBWBlMBDwJQV1YHXQJRBlEDAAEHBgAHUgMAV0NGFwoLXUcQERYTBycXViZAAiASUANdFgAJU1kGXBUXQAYgElVxB0BSIRMGU1oOFxFGQQQmFgAnQFJyEgdbXAddAFNRAVcBUAAABAdXB1FdXAMGVVQHVVBRUAINAFZRAgZTXAdQUQBDCwpYVwYPUlMAUAEBVlAFBAEAA1BUUEcOFghUT1cAAVxRUw8AWlFQVwEDXAVUCgBQV1ICAgELA1cAUV1RBAQGVlNcVQNFUwhZVAVSAVoVXgxYSAcSE1tcXVwMXQ9EW1xYQwcLcgpABAIKTUJVFA4GVVBDVFsQDy0NC0AcEQFRChEBH2lXAl4NBgRWDxEHRwpcXA%3D%3D&count=0&max=0
91.235.132.68200 OK 61 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/ofdguIKppuTkJWSN?67cabd2910a45199=rpXENcT1SqQpeg9aTHJNvVgByL5GoovaJ7nMAloj-Hflcn09t3betPuCM89pvwh-Z00E1EOpZrC94xbYucIBZInnh_kJ2l6kp37L461r3W6ibwtm0L6spWBrtRXqd5TiKC-u2XWoZxmACQXCtMD5Y8p_Wd4ySow1_k3sSv6xbLI8xbf3Ceb68g1PvBZSY8Bodzc9DHmokeWhumBZB7VhUzUBbdA&sera_parametere=VUdYUgBVUVoBUFxdAFICBwBWBlMBDwJQV1YHXQJRBlEDAAEHBgAHUgMAV0NGFwoLXUcQERYTBycXViZAAiASUANdFgAJU1kGXBUXQAYgElVxB0BSIRMGU1oOFxFGQQQmFgAnQFJyEgdbXAddAFNRAVcBUAAABAdXB1FdXAMGVVQHVVBRUAINAFZRAgZTXAdQUQBDCwpYVwYPUlMAUAEBVlAFBAEAA1BUUEcOFghUT1cAAVxRUw8AWlFQVwEDXAVUCgBQV1ICAgELA1cAUV1RBAQGVlNcVQNFUwhZVAVSAVoVXgxYSAcSE1tcXVwMXQ9EW1xYQwcLcgpABAIKTUJVFA4GVVBDVFsQDy0NC0AcEQFRChEBH2lXAl4NBgRWDxEHRwpcXA%3D%3D&count=0&max=0
IP 91.235.132.68:0
File type ASCII text, with no line terminators
Hash 795513736e42f268cd8268d9590fc188
ec5c43c224fc192ab05fb2a7f9b8ec281a9c3bf6
e837a1191d908f099b6996f462c65f3fd1c9d38a83a2e94109cbad6c1af1b467
GET /ofdguIKppuTkJWSN?67cabd2910a45199=rpXENcT1SqQpeg9aTHJNvVgByL5GoovaJ7nMAloj-Hflcn09t3betPuCM89pvwh-Z00E1EOpZrC94xbYucIBZInnh_kJ2l6kp37L461r3W6ibwtm0L6spWBrtRXqd5TiKC-u2XWoZxmACQXCtMD5Y8p_Wd4ySow1_k3sSv6xbLI8xbf3Ceb68g1PvBZSY8Bodzc9DHmokeWhumBZB7VhUzUBbdA&sera_parametere=VUdYUgBVUVoBUFxdAFICBwBWBlMBDwJQV1YHXQJRBlEDAAEHBgAHUgMAV0NGFwoLXUcQERYTBycXViZAAiASUANdFgAJU1kGXBUXQAYgElVxB0BSIRMGU1oOFxFGQQQmFgAnQFJyEgdbXAddAFNRAVcBUAAABAdXB1FdXAMGVVQHVVBRUAINAFZRAgZTXAdQUQBDCwpYVwYPUlMAUAEBVlAFBAEAA1BUUEcOFghUT1cAAVxRUw8AWlFQVwEDXAVUCgBQV1ICAgELA1cAUV1RBAQGVlNcVQNFUwhZVAVSAVoVXgxYSAcSE1tcXVwMXQ9EW1xYQwcLcgpABAIKTUJVFA4GVVBDVFsQDy0NC0AcEQFRChEBH2lXAl4NBgRWDxEHRwpcXA%3D%3D&count=0&max=0 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/IBmpBiExJbHYZD5A?3bd3347632680a70=TCJVZb5hqAtv6njLg5ctRyeUXc6wCiPLJ9PcExZ9hZJh4BRH7mz2uLiNncyFGWCNW0VjCo6CMxZOYHTMNK0u7DSSPOBUy_uZCoi0taIWiHwqlf9XWM2izoMm9WIX12FCULsoxfbpdCA0ZCXENm0WcUxCSk0&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:03 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=97
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8776
Expires: Mon, 06 Feb 2023 21:02:19 GMT
Date: Mon, 06 Feb 2023 18:36:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8776
Expires: Mon, 06 Feb 2023 21:02:19 GMT
Date: Mon, 06 Feb 2023 18:36:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8776
Expires: Mon, 06 Feb 2023 21:02:19 GMT
Date: Mon, 06 Feb 2023 18:36:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8776
Expires: Mon, 06 Feb 2023 21:02:19 GMT
Date: Mon, 06 Feb 2023 18:36:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8776
Expires: Mon, 06 Feb 2023 21:02:19 GMT
Date: Mon, 06 Feb 2023 18:36:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 74760
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:13:39 GMT
age: 73344
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tNp3KhwtaSjchn-VAo1VellQ63I1W9uIbkQ_84Y7z_4z--vGfz8PGA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:53:56 GMT
age: 74527
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 74760
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 74754
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FRZf4nkQyttwihy5BBbuHzT9lYQvBPqcOTdT5esu46vqMTvXAi5aQw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 18:39:44 GMT
age: 86179
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/images/content/sprite-form.png
34.149.204.188404 Not Found 610 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/images/content/sprite-form.png
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa5f19bb36f03734cf230649939fcd2a
078a693a443335f1d375443740828e2abcbcf53b
6fcd9473085013ab148b5269d1d797b82d8199a93a13f5622b3b7c2f44cbf86b
Analyzer Verdict Alert openphish BNP Paribas
GET /rsc/contrib/identification/src/themes/mabanque/images/content/sprite-form.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 610
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/bnp.png
34.149.204.188200 OK 21 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/bnp.png
IP 34.149.204.188:0
File type PNG image data, 238 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash 056737d7335f6ec90ec59cba89018c49
d6b4f3d071455b0fb8827415dabd44a10d760d00
7765b30f55d23c1e9b5da76e6b4bb7129665b9fb7e0ff1f949f51d74a22f93be
Analyzer Verdict Alert openphish BNP Paribas
GET /bnp.png HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 21266
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/bnpp_type_regular_v2-webfont.woff2
34.149.204.188200 OK 19 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/bnpp_type_regular_v2-webfont.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 19132, version 2.0\012- data
Hash e5d728db9c4d27876efe1926010a370a
e609553597fd2a276119c7f32b6d4e28b17d8762
9bd666cb14522b64d114d834d585e185a8bdfabdca8b99e53605d640fa75bf66
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/bnpp_type_regular_v2-webfont.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 19132
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/bnpp_sans_cond_light_v2-webfont.woff2
34.149.204.188200 OK 19 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/bnpp_sans_cond_light_v2-webfont.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 18612, version 2.0\012- data
Hash 446fe4fe07c0daa942b0c50659107914
3e39feea0aa5b365924e45e492408d673b8430ee
3ace9214510af04a9c296dbf7420c7f6aa4b9974afff8e3f87d6fcef0c751f02
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/bnpp_sans_cond_light_v2-webfont.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 18612
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-SemiBold.woff2
34.149.204.188200 OK 52 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-SemiBold.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 52188, version 1.0\012- data
Hash dbee1c4201517c33a8c7269601afc5c7
2ed85013b2fd9b904264bebfa842a25b9f8259b4
0617aa7cdb72567c16c28fee6d42a6cc466df1e02212f98596b5cb429b6a173c
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/OpenSans-SemiBold.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 52188
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-Bold.woff2
34.149.204.188200 OK 52 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-Bold.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 52016, version 1.0\012- data
Hash c9e6ced6ee6d6f30cc5d3de2a811c27a
c81657cf6561a0b53204237dd231c4eaa0e5d9f2
5fd2e0b935a3fb40a41495182558112674c6508349974e523b7441e0835c0b3a
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/OpenSans-Bold.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 52016
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-ExtraBold.woff2
34.149.204.188200 OK 52 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-ExtraBold.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 51776, version 1.0\012- data
Hash f2cc18d929ab128d73bc828bb18a1a0b
7183bb3f45ef99950aa2050d8f0aac4ce6c72bac
196d8f00bc7c598adf046790eec18c52abe426edfe6e9e018e6b8dc876895ee0
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/OpenSans-ExtraBold.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 51776
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e13f91e2e8b1fa7474b504e9a260c7a2
a08ddb56bc8760a566536e15e93e8321a7bfc1a0
52ca8a5727dc747b38363cee935f8f4cadbc5da6a15ad1cc19cdc64515cf186a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5156
Cache-Control: max-age=138405
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 18:36:04 GMT
Etag: "63e0ae15-1d7"
Expires: Wed, 08 Feb 2023 09:02:49 GMT
Last-Modified: Mon, 06 Feb 2023 07:36:53 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/grid/login.php
34.149.204.188404 Not Found 547 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/grid/login.php
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a692ad0cb94e9e67baef6f942f1704dd
797b62003d118b5222ad20b0b8707c63c7a87ea4
95d7bfb45de69057287724dd976aa5ad1db4d22c7a9aba60f3025c607a757c24
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /grid/login.php HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Connection: keep-alive
Cookie: PHPSESSID=1e952453380b28ac62e1b297d54f23c5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984711; includeSubDomains
content-length: 547
X-Firefox-Spdy: h2
bddf.d3.sc.omtrdc.net/b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
15.236.125.10302 Found 0 B URL HTTP/2 bddf.d3.sc.omtrdc.net/b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: bddf.d3.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
vary: Origin
date: Mon, 06 Feb 2023 18:36:04 GMT
content-type: text/plain;charset=utf-8
expires: Sun, 05 Feb 2023 18:36:04 GMT
last-modified: Tue, 07 Feb 2023 18:36:04 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_ussquygdx7Ecrzvuvyfbrgexxs=[CS]v4|0-0|63E14894[CE]; Path=/; Domain=omtrdc.net; Max-Age=34127700; Expires=Thu, 07 Mar 2024 18:31:31 GMT; SameSite=None; Secure
location: https://bddf.d3.sc.omtrdc.net/b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&pccr=true&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/iconbnp.woff
34.149.204.188200 OK 285 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/iconbnp.woff
IP 34.149.204.188:0
File type Web Open Font Format, TrueType, length 285008, version 1.0\012- data
Size 285 kB (285008 bytes)
Hash 46bcedb85c157102777d7adc60dcd9a8
19db6017daded89d47c566df4b54448a8c23d61a
d248352dbf6770f55ab1260b4593fa1b4c0f7ad6bc2937e67d6edf254348e409
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/iconbnp.woff HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 285008
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-Regular.woff2
34.149.204.188200 OK 50 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/fonts/OpenSans-Regular.woff2
IP 34.149.204.188:0
File type Web Open Font Format (Version 2), TrueType, length 50180, version 1.0\012- data
Hash a725497524525c361f0d545e4e8ec577
b0135a2d4e69e1a7aeb1d269c9ee43e37fdcc29f
893f7f57805f1a70e7cb63621dcc596e49fc87551d1231c7756b7a958bac931b
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/css/fonts/OpenSans-Regular.woff2 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/css/particuliers/cas-header-part.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984712; includeSubDomains
content-length: 50180
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/favicon.ico
34.149.204.188200 OK 1.7 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/favicon.ico
IP 34.149.204.188:0
File type MS Windows icon resource - 2 icons, 16x16, 8 bits/pixel, 16x16, 16 colors, 4 bits/pixel\012- data
Hash d9da731ed30480099fd55876cecc697e
72fbeb44d8dab5bd3ecda3c63801208ac30b3696
fe0765d1602e351523c2069febfff8fe11e9b7f00c52999a98829ada67f7df95
Analyzer Verdict Alert openphish BNP Paribas
GET /favicon.ico HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Cookie: PHPSESSID=1e952453380b28ac62e1b297d54f23c5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984711; includeSubDomains
content-length: 1718
X-Firefox-Spdy: h2
bddf.d3.sc.omtrdc.net/b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&pccr=true&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
15.236.125.10200 OK 43 B URL HTTP/2 bddf.d3.sc.omtrdc.net/b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&pccr=true&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/bddfbnpsitemabanqueprod/1/JS-2.22.4-LCXS/s81251299671740?AQB=1&pccr=true&ndh=1&pf=1&t=6%2F1%2F2023%2018%3A36%3A49%201%200&ce=UTF-8&cl=34127700&pageName=%2Flogin.php&g=https%3A%2F%2F3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&cc=EUR&v4=non%20connecte&v9=3710cb97-de0b-4bac-b42e-f61e6b53b272&c29=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&c38=17&c40=17&v87=Launch%20production%20%3A%202023-01-09T12%3A16%3A36Z&v91=3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co%2Flogin.php&v200=Autonomy&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: bddf.d3.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Mon, 06 Feb 2023 18:36:05 GMT
expires: Sun, 05 Feb 2023 18:36:05 GMT
last-modified: Tue, 07 Feb 2023 18:36:05 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598556743737442304-4619686798791881393
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.eot
34.149.204.188404 Not Found 597 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.eot
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e25eccf3484af146f0f7d5c4e3cfc6fc
a07491345b80b814ed2f14833499b9f9a0b7468b
fb38e201dacdd94a4f2e3494e809bd202d69a95114a357194688c8a73afb8bfa
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.eot HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/css/style.css
Cookie: PHPSESSID=64b7f3928a8553f0bcef8a2f8f93ed9d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:05 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984711; includeSubDomains
content-length: 597
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.woff
34.149.204.188200 OK 285 kB URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.woff
IP 34.149.204.188:0
File type Web Open Font Format, TrueType, length 285008, version 1.0\012- data
Size 285 kB (285008 bytes)
Hash 46bcedb85c157102777d7adc60dcd9a8
19db6017daded89d47c566df4b54448a8c23d61a
d248352dbf6770f55ab1260b4593fa1b4c0f7ad6bc2937e67d6edf254348e409
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /rsc/contrib/identification/src/themes/mabanque/fonts/iconbnp.woff HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/rsc/contrib/identification/src/themes/mabanque/css/style.css
Cookie: PHPSESSID=64b7f3928a8553f0bcef8a2f8f93ed9d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff
date: Mon, 06 Feb 2023 18:36:05 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984710; includeSubDomains
content-length: 285008
X-Firefox-Spdy: h2
content.connexion-mabanque.bnpparibas/dbgi85oxk840web9.js?viref8b8m5ipzm2g=cco37scf&fisdn21ogcu9ykpc=4add1b58-e81e-4435-9dfd-ab0d9fe25553&8npcla2x7q01bslp=101
91.235.132.68200 OK 13 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/dbgi85oxk840web9.js?viref8b8m5ipzm2g=cco37scf&fisdn21ogcu9ykpc=4add1b58-e81e-4435-9dfd-ab0d9fe25553&8npcla2x7q01bslp=101
IP 91.235.132.68:0
File type ASCII text, with very long lines (15506)
Hash 467ae15677ad274b7b3de3417e840a6a
ef60baa248c5f51e619c774bf8c4dee483c89091
d09dea09c9e31f85f76c30d738601b00a0e72db6250d83cb8e2fbc23f2fffadc
GET /dbgi85oxk840web9.js?viref8b8m5ipzm2g=cco37scf&fisdn21ogcu9ykpc=4add1b58-e81e-4435-9dfd-ab0d9fe25553&8npcla2x7q01bslp=101 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=96
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/8He0-W8noA8Ktjpl?ec9d5f895c5c4a34=YJ3WbK-b0GyZS2X4x5tRZnp4t-47CTsdjZCfsCmPWOwXmKAoVyMcQviHmv1DDbWetxCU_dpch6Y6hcwro3lGLB_MwP5L3TcgO-cPlC-zAuJTVPwCCRidPynX8nTBGqH_QZPfT4OuugLgf20pHQBtrrzAtALEWLGrb005flE
91.235.132.68200 OK 81 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/8He0-W8noA8Ktjpl?ec9d5f895c5c4a34=YJ3WbK-b0GyZS2X4x5tRZnp4t-47CTsdjZCfsCmPWOwXmKAoVyMcQviHmv1DDbWetxCU_dpch6Y6hcwro3lGLB_MwP5L3TcgO-cPlC-zAuJTVPwCCRidPynX8nTBGqH_QZPfT4OuugLgf20pHQBtrrzAtALEWLGrb005flE
IP 91.235.132.68:0
File type PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b6d2de2867a3e11063ba25aa1cd4209
bd20b0e089f31f35cba4d0fa7277e73aa74d944c
95518cbec0d55a574a9c8ef72a2a7d62ac0d40a4de5dfe67a76a7d214dc8b743
GET /8He0-W8noA8Ktjpl?ec9d5f895c5c4a34=YJ3WbK-b0GyZS2X4x5tRZnp4t-47CTsdjZCfsCmPWOwXmKAoVyMcQviHmv1DDbWetxCU_dpch6Y6hcwro3lGLB_MwP5L3TcgO-cPlC-zAuJTVPwCCRidPynX8nTBGqH_QZPfT4OuugLgf20pHQBtrrzAtALEWLGrb005flE HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 81
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: image/png
content.connexion-mabanque.bnpparibas/0pWpVgjQS2sCjP_N?34ad220e3f97a59c=Wik7tiO67EoQr7raWq4gmWkMgt_L_REDWRC8zHeJKK2KWt09agsEcgxL0PzC48oZDeTJuQykcq_Hk5-qf-LinMhYeZsJ77kpfKeskHs_91rSTgDFOHMc7Bx0vqoeoLyrzysr87x_JDXfS-HrAwRepp65BYiLaL4FUgC5Rik
91.235.132.68200 OK 81 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/0pWpVgjQS2sCjP_N?34ad220e3f97a59c=Wik7tiO67EoQr7raWq4gmWkMgt_L_REDWRC8zHeJKK2KWt09agsEcgxL0PzC48oZDeTJuQykcq_Hk5-qf-LinMhYeZsJ77kpfKeskHs_91rSTgDFOHMc7Bx0vqoeoLyrzysr87x_JDXfS-HrAwRepp65BYiLaL4FUgC5Rik
IP 91.235.132.68:0
File type PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b6d2de2867a3e11063ba25aa1cd4209
bd20b0e089f31f35cba4d0fa7277e73aa74d944c
95518cbec0d55a574a9c8ef72a2a7d62ac0d40a4de5dfe67a76a7d214dc8b743
GET /0pWpVgjQS2sCjP_N?34ad220e3f97a59c=Wik7tiO67EoQr7raWq4gmWkMgt_L_REDWRC8zHeJKK2KWt09agsEcgxL0PzC48oZDeTJuQykcq_Hk5-qf-LinMhYeZsJ77kpfKeskHs_91rSTgDFOHMc7Bx0vqoeoLyrzysr87x_JDXfS-HrAwRepp65BYiLaL4FUgC5Rik HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 81
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
content.connexion-mabanque.bnpparibas/tqOyqYrugX_R89kO?f32c20fec98ff690=hJPKTP9KKoBAXSexYOFtGUgXCTNSURlrs57tI2QT2h4PmTKVEf2P-l4AxORnz_oG9M-x5JbJxyKcdbO0TiVwO3BW2j7SCWkD7mquDPLARqRg-zF-DP-5KSOftlOjScEFo848PAjzDREe0S8BiMxu9rr4GNq5JAz0SPOyzmoQdB83mZlo-G0_tgQR2UdBCRAFzMyrVqdUeKkcHBrU&jb=353226266a716f7d354c616e7570266a716f3544696c7570266873627d3f466b7265666d78266a73623f46617a656e6f782d323033303d
91.235.132.68200 OK 94 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/tqOyqYrugX_R89kO?f32c20fec98ff690=hJPKTP9KKoBAXSexYOFtGUgXCTNSURlrs57tI2QT2h4PmTKVEf2P-l4AxORnz_oG9M-x5JbJxyKcdbO0TiVwO3BW2j7SCWkD7mquDPLARqRg-zF-DP-5KSOftlOjScEFo848PAjzDREe0S8BiMxu9rr4GNq5JAz0SPOyzmoQdB83mZlo-G0_tgQR2UdBCRAFzMyrVqdUeKkcHBrU&jb=353226266a716f7d354c616e7570266a716f3544696c7570266873627d3f466b7265666d78266a73623f46617a656e6f782d323033303d
IP 91.235.132.68:0
File type ASCII text, with very long lines (10230)
Hash fe52ec1793faaf478bd4bcdc2710dd60
32660ee226676b207f3295a9686981a747d35048
ce8ac644fad1ab7e09d502ff0f59048736a7d7affc581395de5be84af50906d1
GET /tqOyqYrugX_R89kO?f32c20fec98ff690=hJPKTP9KKoBAXSexYOFtGUgXCTNSURlrs57tI2QT2h4PmTKVEf2P-l4AxORnz_oG9M-x5JbJxyKcdbO0TiVwO3BW2j7SCWkD7mquDPLARqRg-zF-DP-5KSOftlOjScEFo848PAjzDREe0S8BiMxu9rr4GNq5JAz0SPOyzmoQdB83mZlo-G0_tgQR2UdBCRAFzMyrVqdUeKkcHBrU&jb=353226266a716f7d354c616e7570266a716f3544696c7570266873627d3f466b7265666d78266a73623f46617a656e6f782d323033303d HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
tmx-nonce: 98e025a01f92a31f
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=94
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/dnVZXf-V1dc0GNj0?abb509c4a99c3f9a=l4SPmMBobIqBl4uJ1J1MaTWF5WhLu2CrKwr5093NPU92J3k-LwO1-v6iGHgA5v19BcxOBLWa-eQilZeBhPNO9WD6b-_EdDLqyR-O4rrlXdApcMWMVGDTMdMt5lI43wVOohMTwFTVTGWynN4eCqZmBN6EwWs&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
91.235.132.68200 OK 5.9 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/dnVZXf-V1dc0GNj0?abb509c4a99c3f9a=l4SPmMBobIqBl4uJ1J1MaTWF5WhLu2CrKwr5093NPU92J3k-LwO1-v6iGHgA5v19BcxOBLWa-eQilZeBhPNO9WD6b-_EdDLqyR-O4rrlXdApcMWMVGDTMdMt5lI43wVOohMTwFTVTGWynN4eCqZmBN6EwWs&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
IP 91.235.132.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (332), with CRLF, LF line terminators
Hash 4375a4a27cedc076c033f5d5a45c36f9
748dd2795b00c67ebcfab62a2f73868e97a88bd3
aa99e081df77dd8b735d9bd3517336d9b2879daf70ab35bf503eb4aed566e2e9
GET /dnVZXf-V1dc0GNj0?abb509c4a99c3f9a=l4SPmMBobIqBl4uJ1J1MaTWF5WhLu2CrKwr5093NPU92J3k-LwO1-v6iGHgA5v19BcxOBLWa-eQilZeBhPNO9WD6b-_EdDLqyR-O4rrlXdApcMWMVGDTMdMt5lI43wVOohMTwFTVTGWynN4eCqZmBN6EwWs&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-UA-Compatible: IE=Edge
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5932
Keep-Alive: timeout=2, max=93
content.connexion-mabanque.bnpparibas/IBEgVw_iHgIhFEIK?facc6a6837513c19=AiA1jm3IWZpBlu6fTw65Sux7lspskbPeVvIHvQot3XRMTJzraLMf_pUBxllSYzp0u84DkmcQ7umPfEFQUUhu7Q62Wts5SdplUNNUI4yp6hDTxkxDwIpFNl25DD0HJTDlq2jOq_ztGzGts_i7c55tF_9j4kJkzIcIw14KfCzwJ1X2EuXaC1uAj8QIiL5sGAhLRqOD3meulEJ95f4QBFQ
91.235.132.68200 OK 13 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/IBEgVw_iHgIhFEIK?facc6a6837513c19=AiA1jm3IWZpBlu6fTw65Sux7lspskbPeVvIHvQot3XRMTJzraLMf_pUBxllSYzp0u84DkmcQ7umPfEFQUUhu7Q62Wts5SdplUNNUI4yp6hDTxkxDwIpFNl25DD0HJTDlq2jOq_ztGzGts_i7c55tF_9j4kJkzIcIw14KfCzwJ1X2EuXaC1uAj8QIiL5sGAhLRqOD3meulEJ95f4QBFQ
IP 91.235.132.68:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15506)
Hash 3367ae0fb6c30e6c4d15a495faed313a
b3103bc19f1e7db4124b7f20bd583d92529245ea
9c798f2a0bc106241d3073fea1ca5ad44ea1934891ab74451ae65392d3e552ab
GET /IBEgVw_iHgIhFEIK?facc6a6837513c19=AiA1jm3IWZpBlu6fTw65Sux7lspskbPeVvIHvQot3XRMTJzraLMf_pUBxllSYzp0u84DkmcQ7umPfEFQUUhu7Q62Wts5SdplUNNUI4yp6hDTxkxDwIpFNl25DD0HJTDlq2jOq_ztGzGts_i7c55tF_9j4kJkzIcIw14KfCzwJ1X2EuXaC1uAj8QIiL5sGAhLRqOD3meulEJ95f4QBFQ HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=99
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jb=3336266c73633d3d3e653066383d63373161313c6561616a323b36653863356033623233366636
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jb=3336266c73633d3d3e653066383d63373161313c6561616a323b36653863356033623233366636
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jb=3336266c73633d3d3e653066383d63373161313c6561616a323b36653863356033623233366636 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:05 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/javascript
content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jd=353526266a646e353f2662666835386433623c3f613a653e30346535396066356537326361316637623a383b6d652e6a667c6e3d323a3e3e3a35
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jd=353526266a646e353f2662666835386433623c3f613a653e30346535396066356537326361316637623a383b6d652e6a667c6e3d323a3e3e3a35
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jd=353526266a646e353f2662666835386433623c3f613a653e30346535396066356537326361316637623a383b6d652e6a667c6e3d323a3e3e3a35 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive
Content-Type: text/javascript
content.connexion-mabanque.bnpparibas/tuWWyGzVnHkOeXCp?5d2ba83a1f998213=ro3fhvdTc0nbieIbOwX6x0qNaorge3ZsFbZWcM2kE8R3lAJueUMuWO2V2Vjj1TOoL6eOd9fEdQrClruxgs5s6tX7EPFwg5Kgr3VL7wcIOz11Fj_7WudaFa5xzgqqh7TOJ_xdQnYhWKiJbbP-LvH1wsC3pVdR72A9xc1iOISA8pZOie6rsDwoWdE1X-6HwLWurn0Zo3yfZVCvIy6EhJYJ
91.235.132.68200 OK 13 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/tuWWyGzVnHkOeXCp?5d2ba83a1f998213=ro3fhvdTc0nbieIbOwX6x0qNaorge3ZsFbZWcM2kE8R3lAJueUMuWO2V2Vjj1TOoL6eOd9fEdQrClruxgs5s6tX7EPFwg5Kgr3VL7wcIOz11Fj_7WudaFa5xzgqqh7TOJ_xdQnYhWKiJbbP-LvH1wsC3pVdR72A9xc1iOISA8pZOie6rsDwoWdE1X-6HwLWurn0Zo3yfZVCvIy6EhJYJ
IP 91.235.132.68:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15506)
Hash 75ba949752d801e2f41f06a4130c0812
27ee495ae4792c322191ded05dbaba0e2adde5d3
8d42ea8651a3076bfff1941b9d875c11c70f963905af80b540245e2e3cf9d0e6
GET /tuWWyGzVnHkOeXCp?5d2ba83a1f998213=ro3fhvdTc0nbieIbOwX6x0qNaorge3ZsFbZWcM2kE8R3lAJueUMuWO2V2Vjj1TOoL6eOd9fEdQrClruxgs5s6tX7EPFwg5Kgr3VL7wcIOz11Fj_7WudaFa5xzgqqh7TOJ_xdQnYhWKiJbbP-LvH1wsC3pVdR72A9xc1iOISA8pZOie6rsDwoWdE1X-6HwLWurn0Zo3yfZVCvIy6EhJYJ HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=98
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/fp/clear.png
91.235.132.68200 OK 81 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/fp/clear.png
IP 91.235.132.68:0
File type PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b6d2de2867a3e11063ba25aa1cd4209
bd20b0e089f31f35cba4d0fa7277e73aa74d944c
95518cbec0d55a574a9c8ef72a2a7d62ac0d40a4de5dfe67a76a7d214dc8b743
GET /fp/clear.png HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*, cco37scf/98e025a01f92a31f4add1b58-e81e-4435-9dfd-ab0d9fe25553
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Last-Modified: Mon, 06 Feb 2023 18:36:06 GMT
Expires: Sat, 05 Feb 2028 18:36:06 GMT
Etag: 68dfa7840bfc4934a01b193e759a3153
Cache-Control: private, must-revalidate, max-age=0
Access-Control-Allow-Origin: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
Content-Length: 81
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&ja=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&jb=313133266c733d45677a616c6c6925324435263825303020576b6e646775732732304e5625323031302c302d3b422d32305f696e34342d3b42273238783434253b4025303072762733413130352c30212d323847656b6b6f27324e3a30333038313231253a32466b7265666d782532463132352638
91.235.132.68204 204 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&ja=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&jb=313133266c733d45677a616c6c6925324435263825303020576b6e646775732732304e5625323031302c302d3b422d32305f696e34342d3b42273238783434253b4025303072762733413130352c30212d323847656b6b6f27324e3a30333038313231253a32466b7265666d782532463132352638
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&ja=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&jb=313133266c733d45677a616c6c6925324435263825303020576b6e646775732732304e5625323031302c302d3b422d32305f696e34342d3b42273238783434253b4025303072762733413130352c30212d323847656b6b6f27324e3a30333038313231253a32466b7265666d782532463132352638 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 204
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Content-Type: text/javascript;charset=UTF-8
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
ocsp.securetrust.com/
95.101.10.123200 OK 638 B IP 95.101.10.123:0
ASN #20940 Akamai International B.V.
Hash 63d2ecca0483e61171f51fadfc85f84b
795bd2e94e3857ea85d4e3ebc175a39b73d95ff5
1a24888bf433822a58ccd29f5127c0eb3fb5d15a50b0ab07498209cb97036218
POST / HTTP/1.1
Host: ocsp.securetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 638
Date: Mon, 06 Feb 2023 18:36:06 GMT
Connection: keep-alive
cco37scf6wsroufpnsa2owtefr72qbb3hhgfg4l698e025a01f92a31fam1.e.aa.online-metrix.net/jRHu4ngXj9tVn2GX?7c44a6264ae802b9=z9ctbWCMd2vDUJY2PVE4Y3VQ6jFHfAAew02KsHbGr-F1OSWevUmbth8E3dLeJtIr3URgDLSxjH_81FMlICTOV0Du052x0uqVnpAIHOKpGoVFdZbquEcmwS0QNVoqaHGtlNF-W_oKHuhC3N1Tyi9WzsH0ahdsG5b14jU4
91.235.134.131200 OK 81 B URL HTTP/1.1 cco37scf6wsroufpnsa2owtefr72qbb3hhgfg4l698e025a01f92a31fam1.e.aa.online-metrix.net/jRHu4ngXj9tVn2GX?7c44a6264ae802b9=z9ctbWCMd2vDUJY2PVE4Y3VQ6jFHfAAew02KsHbGr-F1OSWevUmbth8E3dLeJtIr3URgDLSxjH_81FMlICTOV0Du052x0uqVnpAIHOKpGoVFdZbquEcmwS0QNVoqaHGtlNF-W_oKHuhC3N1Tyi9WzsH0ahdsG5b14jU4
IP 91.235.134.131:0
File type PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b6d2de2867a3e11063ba25aa1cd4209
bd20b0e089f31f35cba4d0fa7277e73aa74d944c
95518cbec0d55a574a9c8ef72a2a7d62ac0d40a4de5dfe67a76a7d214dc8b743
GET /jRHu4ngXj9tVn2GX?7c44a6264ae802b9=z9ctbWCMd2vDUJY2PVE4Y3VQ6jFHfAAew02KsHbGr-F1OSWevUmbth8E3dLeJtIr3URgDLSxjH_81FMlICTOV0Du052x0uqVnpAIHOKpGoVFdZbquEcmwS0QNVoqaHGtlNF-W_oKHuhC3N1Tyi9WzsH0ahdsG5b14jU4 HTTP/1.1
Host: cco37scf6wsroufpnsa2owtefr72qbb3hhgfg4l698e025a01f92a31fam1.e.aa.online-metrix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Connection: close
Content-Length: 81
Content-Type: image/png
content.connexion-mabanque.bnpparibas/IOXoZFYbrOhogca5?f392af1cd7aa4a81=Y9V-5atkda9XQzGcm1M_-BxDj8Z16TXi2fFShqidmaB1dSaSLeNUydLNZM5J_7d-XwHxO8wzgojdIT6THAp-fBIw_056Z-508xs5q64SOi2iE0B9BLHNIvsnZ3oZ8qrSJSmZUUtCuzasDrNVnyxW1qIuOY4&jf=3336266c73603d396d653165343f616432653a3c64343630316766616b33653366353635376337
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/IOXoZFYbrOhogca5?f392af1cd7aa4a81=Y9V-5atkda9XQzGcm1M_-BxDj8Z16TXi2fFShqidmaB1dSaSLeNUydLNZM5J_7d-XwHxO8wzgojdIT6THAp-fBIw_056Z-508xs5q64SOi2iE0B9BLHNIvsnZ3oZ8qrSJSmZUUtCuzasDrNVnyxW1qIuOY4&jf=3336266c73603d396d653165343f616432653a3c64343630316766616b33653366353635376337
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /IOXoZFYbrOhogca5?f392af1cd7aa4a81=Y9V-5atkda9XQzGcm1M_-BxDj8Z16TXi2fFShqidmaB1dSaSLeNUydLNZM5J_7d-XwHxO8wzgojdIT6THAp-fBIw_056Z-508xs5q64SOi2iE0B9BLHNIvsnZ3oZ8qrSJSmZUUtCuzasDrNVnyxW1qIuOY4&jf=3336266c73603d396d653165343f616432653a3c64343630316766616b33653366353635376337 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/IBEgVw_iHgIhFEIK?facc6a6837513c19=AiA1jm3IWZpBlu6fTw65Sux7lspskbPeVvIHvQot3XRMTJzraLMf_pUBxllSYzp0u84DkmcQ7umPfEFQUUhu7Q62Wts5SdplUNNUI4yp6hDTxkxDwIpFNl25DD0HJTDlq2jOq_ztGzGts_i7c55tF_9j4kJkzIcIw14KfCzwJ1X2EuXaC1uAj8QIiL5sGAhLRqOD3meulEJ95f4QBFQ
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: text/javascript
content.connexion-mabanque.bnpparibas/oCwwD2zmMIaVqJdZ?d8270a745d31049a=lV9aGRYLQ-Mf_LG3LnFXvVJLtV1fNkOUl8zovE46jKF6SOA8FCd5e9_oFQOQj3Ssn2QgoPiIWoKRbc0dQFWrTVzuUWt3BvPiRKIgdyF-RGMDjItqFc9PT6c_zoTZD_uNvqVRk-C5VEtONByR0_UY8ZjoJO-gXLyP8RYpeBqGEln-
91.235.132.68200 OK 30 kB URL HTTP/1.1 content.connexion-mabanque.bnpparibas/oCwwD2zmMIaVqJdZ?d8270a745d31049a=lV9aGRYLQ-Mf_LG3LnFXvVJLtV1fNkOUl8zovE46jKF6SOA8FCd5e9_oFQOQj3Ssn2QgoPiIWoKRbc0dQFWrTVzuUWt3BvPiRKIgdyF-RGMDjItqFc9PT6c_zoTZD_uNvqVRk-C5VEtONByR0_UY8ZjoJO-gXLyP8RYpeBqGEln-
IP 91.235.132.68:0
File type ASCII text, with very long lines (15506)
Hash aa09d06c4342ae9806a06922f733e251
004879a038e22dfb2fab2b186e20d8c13a19cbe5
252172c1745eb97db4627a5da09133a567f55b56c2d403e3de17c327ec83c520
GET /oCwwD2zmMIaVqJdZ?d8270a745d31049a=lV9aGRYLQ-Mf_LG3LnFXvVJLtV1fNkOUl8zovE46jKF6SOA8FCd5e9_oFQOQj3Ssn2QgoPiIWoKRbc0dQFWrTVzuUWt3BvPiRKIgdyF-RGMDjItqFc9PT6c_zoTZD_uNvqVRk-C5VEtONByR0_UY8ZjoJO-gXLyP8RYpeBqGEln- HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/dnVZXf-V1dc0GNj0?abb509c4a99c3f9a=l4SPmMBobIqBl4uJ1J1MaTWF5WhLu2CrKwr5093NPU92J3k-LwO1-v6iGHgA5v19BcxOBLWa-eQilZeBhPNO9WD6b-_EdDLqyR-O4rrlXdApcMWMVGDTMdMt5lI43wVOohMTwFTVTGWynN4eCqZmBN6EwWs&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
tmx-nonce: 98e025a01f92a31f
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=91
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/TTTDldsmG8uE8a31?d64b88aeaeea513e=cWOiIMxS_we7mlFAkqL2DJzKiQg_RbtYypUjBkLj5X2T3_9PUL3rpLt_PtrWrKVvB8XXORXOJhhj4NVXzAJkUufWZ1E076oGRcVVuJmdu4buBlF7yqIPCL09buzhvoSTDthXWJiElCz5cReKyjkAUl9dQ1mrRmjzK9bEMYOhoKOxvurCq8o45o2pqNVXHjwONXhZ1S5JrdYhjOWmoIY&jf=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
91.235.132.68204 204 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/TTTDldsmG8uE8a31?d64b88aeaeea513e=cWOiIMxS_we7mlFAkqL2DJzKiQg_RbtYypUjBkLj5X2T3_9PUL3rpLt_PtrWrKVvB8XXORXOJhhj4NVXzAJkUufWZ1E076oGRcVVuJmdu4buBlF7yqIPCL09buzhvoSTDthXWJiElCz5cReKyjkAUl9dQ1mrRmjzK9bEMYOhoKOxvurCq8o45o2pqNVXHjwONXhZ1S5JrdYhjOWmoIY&jf=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
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /TTTDldsmG8uE8a31?d64b88aeaeea513e=cWOiIMxS_we7mlFAkqL2DJzKiQg_RbtYypUjBkLj5X2T3_9PUL3rpLt_PtrWrKVvB8XXORXOJhhj4NVXzAJkUufWZ1E076oGRcVVuJmdu4buBlF7yqIPCL09buzhvoSTDthXWJiElCz5cReKyjkAUl9dQ1mrRmjzK9bEMYOhoKOxvurCq8o45o2pqNVXHjwONXhZ1S5JrdYhjOWmoIY&jf=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 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 204
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: image/png;charset=UTF-8
Keep-Alive: timeout=2, max=90
content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=3132312626726d35666f2e61756c683d66663d3c62373438383235356b6635676236303b636365646363353e3f323e65633d313034633e303534323063673964383b373b36363333343032333166643a2e6570333d6c66363a656e3f62323730386366346a35396462386660656265653364356969636b643331363432
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=3132312626726d35666f2e61756c683d66663d3c62373438383235356b6635676236303b636365646363353e3f323e65633d313034633e303534323063673964383b373b36363333343032333166643a2e6570333d6c66363a656e3f62323730386366346a35396462386660656265653364356969636b643331363432
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=3132312626726d35666f2e61756c683d66663d3c62373438383235356b6635676236303b636365646363353e3f323e65633d313034633e303534323063673964383b373b36363333343032333166643a2e6570333d6c66363a656e3f62323730386366346a35396462386660656265653364356969636b643331363432 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=89
Connection: Keep-Alive
Content-Type: text/javascript
content.connexion-mabanque.bnpparibas/vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34362626706b636735393966383f34303a363b303337633e343563346932353536623533313734303837643e6c393c3031
91.235.132.68204 204 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34362626706b636735393966383f34303a363b303337633e343563346932353536623533313734303837643e6c393c3031
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34362626706b636735393966383f34303a363b303337633e343563346932353536623533313734303837643e6c393c3031 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 204
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Content-Type: text/javascript;charset=UTF-8
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
content.connexion-mabanque.bnpparibas/WDhhro2tzMO4EZwR?6eff72bec07b59d0=FKSOu51op_9cALfdqift1wrDyBLF9OZAv9h6WGDxSKwGx5anWnGPgX_ks5Mal528YjCZuqC-RD7W7vmhTvPJ-dPfcKt_NSi8Kye8162tmZYcKU1BMV8G8hZZ2zWwBpzS53G3jZG5lS-59fEjPwzhrqsc1Ip9m9fd_8rMtUKSVumDjSY-BGobT1LvqOtB4GNFPc1y0AH_0RV70YZfPUyW4BvccZ0&sera_parametere=X0hYBwAFBAcFAAgDAwQHAApdXAICAVUGB1MOAAIGA1EOW1ADBlFUBFBTXBQSQAwPV0gQREEQUnQUUXsXVncUVAlSFlVeUAxVXxJKF1J3FFF7CEAHdhBTAFkJSkYSFgIiHA8nFQVxR1RYW1oKVARXBV0OUFVXB1IEBFYAC1dRU1ANWlAEBwFYU1VWX1EHCwFUWw9DXl1bAlUMXwFXUQEEBwkJAwkAVFIBV0BTQVwDSVNdDAZUVFNZUQUCW1BZAFMAD1xdUwRTVgkEUF0LWQAGBQ8MXFIBV1kWUA8EA1EFB14fUQwNHwRHQFhbAAtYCglAUVNYFlAIJ1lDA19dGRVTEAQJVQUUVw5DDCpQXBRLFwVbBRFUSGoCUV0KW1MCWBcDTQVcAA%3D%3D&count=0&max=0
91.235.132.68200 OK 61 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/WDhhro2tzMO4EZwR?6eff72bec07b59d0=FKSOu51op_9cALfdqift1wrDyBLF9OZAv9h6WGDxSKwGx5anWnGPgX_ks5Mal528YjCZuqC-RD7W7vmhTvPJ-dPfcKt_NSi8Kye8162tmZYcKU1BMV8G8hZZ2zWwBpzS53G3jZG5lS-59fEjPwzhrqsc1Ip9m9fd_8rMtUKSVumDjSY-BGobT1LvqOtB4GNFPc1y0AH_0RV70YZfPUyW4BvccZ0&sera_parametere=X0hYBwAFBAcFAAgDAwQHAApdXAICAVUGB1MOAAIGA1EOW1ADBlFUBFBTXBQSQAwPV0gQREEQUnQUUXsXVncUVAlSFlVeUAxVXxJKF1J3FFF7CEAHdhBTAFkJSkYSFgIiHA8nFQVxR1RYW1oKVARXBV0OUFVXB1IEBFYAC1dRU1ANWlAEBwFYU1VWX1EHCwFUWw9DXl1bAlUMXwFXUQEEBwkJAwkAVFIBV0BTQVwDSVNdDAZUVFNZUQUCW1BZAFMAD1xdUwRTVgkEUF0LWQAGBQ8MXFIBV1kWUA8EA1EFB14fUQwNHwRHQFhbAAtYCglAUVNYFlAIJ1lDA19dGRVTEAQJVQUUVw5DDCpQXBRLFwVbBRFUSGoCUV0KW1MCWBcDTQVcAA%3D%3D&count=0&max=0
IP 91.235.132.68:0
File type ASCII text, with no line terminators
Hash c7bb399916c86a08970d6c251288967b
c377c3368b2f58a3ccb563302c8f36dd2cbb0fa4
830417ea767f6063c10f50949f3555516a710211996f82fd952767432308441a
GET /WDhhro2tzMO4EZwR?6eff72bec07b59d0=FKSOu51op_9cALfdqift1wrDyBLF9OZAv9h6WGDxSKwGx5anWnGPgX_ks5Mal528YjCZuqC-RD7W7vmhTvPJ-dPfcKt_NSi8Kye8162tmZYcKU1BMV8G8hZZ2zWwBpzS53G3jZG5lS-59fEjPwzhrqsc1Ip9m9fd_8rMtUKSVumDjSY-BGobT1LvqOtB4GNFPc1y0AH_0RV70YZfPUyW4BvccZ0&sera_parametere=X0hYBwAFBAcFAAgDAwQHAApdXAICAVUGB1MOAAIGA1EOW1ADBlFUBFBTXBQSQAwPV0gQREEQUnQUUXsXVncUVAlSFlVeUAxVXxJKF1J3FFF7CEAHdhBTAFkJSkYSFgIiHA8nFQVxR1RYW1oKVARXBV0OUFVXB1IEBFYAC1dRU1ANWlAEBwFYU1VWX1EHCwFUWw9DXl1bAlUMXwFXUQEEBwkJAwkAVFIBV0BTQVwDSVNdDAZUVFNZUQUCW1BZAFMAD1xdUwRTVgkEUF0LWQAGBQ8MXFIBV1kWUA8EA1EFB14fUQwNHwRHQFhbAAtYCglAUVNYFlAIJ1lDA19dGRVTEAQJVQUUVw5DDCpQXBRLFwVbBRFUSGoCUV0KW1MCWBcDTQVcAA%3D%3D&count=0&max=0 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/dnVZXf-V1dc0GNj0?abb509c4a99c3f9a=l4SPmMBobIqBl4uJ1J1MaTWF5WhLu2CrKwr5093NPU92J3k-LwO1-v6iGHgA5v19BcxOBLWa-eQilZeBhPNO9WD6b-_EdDLqyR-O4rrlXdApcMWMVGDTMdMt5lI43wVOohMTwFTVTGWynN4eCqZmBN6EwWs&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.cmb.frxaccueil.jspx.credit-agricole.frxentreeBam?sessionSAGx.labanquepostale.fr/xreleveCPP-releve_ccp.eax.secure.bnpparibas.net/NSFR?Actionx.secure.lcl.frxAccueilxcredem.it/OneToOne/ebank/functionsxmijn.ing.nl/xonline.ybs.co.ukxwww.discover.com/xorder.cdiscount.comxCustomer.aspxxsealinfo.verisign.com/splash?form_filexvos-comptes.credit-du-nord.fr/CDC_TableauDeBord_0.asp?xvoscomptesenligne.labanquepostale.frxwww.x.caisse-epargne.fr/Portail.aspxxwww.exabanque.netxonglet.phpxdeutsche-bank.de/xnorisbank.de/xpostbank.de/xtargobank.de/x.x.de/portal/x.bankofamerica.com/x/commonscript.js.bmo.com/OLB?id=x.bmo.com/RMC?id=x.chase.com/x.aspxx.chase.com/js/Reporting.jsx.koodomobile.com/account/selfserve/x/xaccountId=x.payment.ru/x.scotiabank.com/portal/index.jsp?xbancopopular.es/empresasxcreval.it/login2007/loginSiciliano.aspxfirst-direct.com/xipko.plxmybusinessbank.co.ukxsanpaoloimi.com/xulsterbankanytimebanking.x/login.aspxx
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 18:36:06 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Connection: Keep-Alive, Keep-Alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/javascript;charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=88
Transfer-Encoding: chunked
content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=32352626776b6d357f656a72746b5f696c746d7a6e636c576d666e73
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=32352626776b6d357f656a72746b5f696c746d7a6e636c576d666e73
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /08fQ4QR2hQo4Tc_s?0ae330f496486e94=Fa_Xkc2emHCR0C92jFTK4IqLYl6IWZ80zCz5lnakVo_-8q-SK3zc6sLrPx6UfQS9w87iyhgXUz-f7S9hEWcosfQfphOyy8hNOw37qp87C3CgPElWzjfZj-biD51eUK0y3waajDX5bd-xU8QqeR9poZo1d_I&jac=1&je=32352626776b6d357f656a72746b5f696c746d7a6e636c576d666e73 HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:10 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/javascript
content.connexion-mabanque.bnpparibas/vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34372626706565577d706c61746d3d2535422d3a3232253a322733412d35422732327667722532322531413b2d374c25374c
91.235.132.68204 204 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34372626706565577d706c61746d3d2535422d3a3232253a322733412d35422732327667722532322531413b2d374c25374c
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vadcXMuERTkqVpOv?42a5776e2e0432f8=Rdg6oeE-O5-WZx6q1hIfuB8LWr9HPnB9a1M53YlmoFLBap2uX9ylRXcXhp9jL_mLl8IQeAoRiBuzBS1UPSt4WLjAQtxV9eZLVSARGmdHTBVpPtFVYT7T6UW6WsX0l0dZVU5oJCVKN23E0OUpnU2MbI-ByPOa6e2u10tLYQahnICvebWLQixdFP-N19YEnTJdxCiTKlDSgJCmk1HtUY4&jac=1&je=34372626706565577d706c61746d3d2535422d3a3232253a322733412d35422732327667722532322531413b2d374c25374c HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 204
Date: Mon, 06 Feb 2023 18:36:10 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Content-Type: text/javascript;charset=UTF-8
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
content.connexion-mabanque.bnpparibas/DD3Wxae7lMtXHsrx?6a9b29f95cf18274=8WyiKRoF0N6SjvOd8GkSJui2vM5j1F61WP9XQt0vbUxbhefxXC71tM5j7MI7CkYn2ygpx4JQ-s-xjbmYGcTZ4G3HeV3PQoSzoLty9ONHKPG3DrSUXn8S_8NL-ga1kxJPk6Y1dx38THQX-DqqL1U47vdD7Fo
91.235.132.68204 No Content 0 B URL HTTP/1.1 content.connexion-mabanque.bnpparibas/DD3Wxae7lMtXHsrx?6a9b29f95cf18274=8WyiKRoF0N6SjvOd8GkSJui2vM5j1F61WP9XQt0vbUxbhefxXC71tM5j7MI7CkYn2ygpx4JQ-s-xjbmYGcTZ4G3HeV3PQoSzoLty9ONHKPG3DrSUXn8S_8NL-ga1kxJPk6Y1dx38THQX-DqqL1U47vdD7Fo
IP 91.235.132.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /DD3Wxae7lMtXHsrx?6a9b29f95cf18274=8WyiKRoF0N6SjvOd8GkSJui2vM5j1F61WP9XQt0vbUxbhefxXC71tM5j7MI7CkYn2ygpx4JQ-s-xjbmYGcTZ4G3HeV3PQoSzoLty9ONHKPG3DrSUXn8S_8NL-ga1kxJPk6Y1dx38THQX-DqqL1U47vdD7Fo HTTP/1.1
Host: content.connexion-mabanque.bnpparibas
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7
Origin: https://content.connexion-mabanque.bnpparibas
Connection: keep-alive
Referer: https://content.connexion-mabanque.bnpparibas/tuWWyGzVnHkOeXCp?5d2ba83a1f998213=ro3fhvdTc0nbieIbOwX6x0qNaorge3ZsFbZWcM2kE8R3lAJueUMuWO2V2Vjj1TOoL6eOd9fEdQrClruxgs5s6tX7EPFwg5Kgr3VL7wcIOz11Fj_7WudaFa5xzgqqh7TOJ_xdQnYhWKiJbbP-LvH1wsC3pVdR72A9xc1iOISA8pZOie6rsDwoWdE1X-6HwLWurn0Zo3yfZVCvIy6EhJYJ
Cookie: thx_guid=b35c9c7b4cd6f50e1d7cf1a118cb682f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Date: Mon, 06 Feb 2023 18:36:10 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Connection: close
Access-Control-Allow-Origin: https://content.connexion-mabanque.bnpparibas
Content-Type: text/javascript
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/keepalive
34.149.204.188302 Found 0 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/keepalive
IP 34.149.204.188:0
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /keepalive HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
expires: Thu, 19 Nov 1981 08:52:00 GMT
location: login.php
pragma: no-cache
replit-cluster: global
set-cookie: PHPSESSID=64b7f3928a8553f0bcef8a2f8f93ed9d; path=/
strict-transport-security: max-age=3984712; includeSubDomains
x-powered-by: PHP/7.4.21
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
34.149.204.188200 OK 0 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
IP 34.149.204.188:0
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /login.php HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:01 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984714; includeSubDomains
x-powered-by: PHP/7.4.21
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/grid/c24205860470317084637324093612477495043
34.149.204.188302 Found 0 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/grid/c24205860470317084637324093612477495043
IP 34.149.204.188:0
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /grid/c24205860470317084637324093612477495043 HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:03 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
expires: Thu, 19 Nov 1981 08:52:00 GMT
location: login.php
pragma: no-cache
replit-cluster: global
set-cookie: PHPSESSID=1e952453380b28ac62e1b297d54f23c5; path=/
strict-transport-security: max-age=3984712; includeSubDomains
x-powered-by: PHP/7.4.21
X-Firefox-Spdy: h2
3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
34.149.204.188200 OK 0 B URL HTTP/2 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
IP 34.149.204.188:0
Analyzer Verdict Alert openphish BNP Paribas
fortinet Phishing
GET /login.php HTTP/1.1
Host: 3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://3710cb97-de0b-4bac-b42e-f61e6b53b272.id.repl.co/login.php
Connection: keep-alive
Cookie: PHPSESSID=64b7f3928a8553f0bcef8a2f8f93ed9d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 06 Feb 2023 18:36:04 GMT
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=3984711; includeSubDomains
x-powered-by: PHP/7.4.21
X-Firefox-Spdy: h2