Overview

URL dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063
IP23.185.0.4
ASNFASTLY
Location United States
Report completed2022-08-28 19:38:25 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063 La Banque postale
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063 Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/ Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/saved_resource Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/saved_resource(1) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/bsd Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/seg Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/4050178.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/px Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/f(1).txt Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/seg(1) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/seg(2) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/px(2) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/px(1) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/il_transverse_ (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/common/log.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/assets/js/main.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/etc.clientlibs/labanquepostale/commons/client (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/uwt.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts/res (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/wreport_wcm.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base.min.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts/res (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/f.txt Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts/res (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/e1e16f7b41.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/wamfactory_dpm (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/991001.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/LOGO-LBP-digit (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts/res (...) Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/oct.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/bat.js Phishing
2022-08-28 2 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/991000.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-08-28 04:43:52 UTC 23.36.77.32
mnemonic passive DNS www.google.de (1) 5462 2012-05-20 20:47:16 UTC 2022-08-28 18:02:43 UTC 216.58.211.3
mnemonic passive DNS ocsp.godaddy.com (3) 698 2012-05-20 19:28:57 UTC 2022-08-28 04:46:08 UTC 192.124.249.36
mnemonic passive DNS mmtro.com (1) 18252 2013-10-09 06:59:54 UTC 2022-08-28 17:50:39 UTC 195.66.82.41
mnemonic passive DNS its.tradelab.fr (9) 93795 2013-05-09 11:23:20 UTC 2022-08-28 06:05:19 UTC 85.17.192.105
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-08-28 04:49:25 UTC 35.165.182.128
mnemonic passive DNS cdn.tradelab.fr (4) 101153 2012-10-20 15:38:11 UTC 2022-08-28 06:05:19 UTC 152.199.20.219
mnemonic passive DNS dev-bpnetaucx.pantheonsite.io (37) 0 2022-08-24 09:24:29 UTC 2022-08-28 12:43:32 UTC 23.185.0.4 Unknown ranking
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2012-05-23 12:49:49 UTC 2022-08-28 08:14:38 UTC 104.17.24.14
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-08-28 16:46:48 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (6) 175 2017-06-14 07:23:31 UTC 2022-08-28 04:43:45 UTC 142.250.74.3
mnemonic passive DNS ib.adnxs.com (5) 241 2012-05-20 19:01:49 UTC 2022-08-28 05:23:06 UTC 37.252.172.250
mnemonic passive DNS cm.g.doubleclick.net (2) 202 2012-05-22 09:58:28 UTC 2022-08-28 18:14:53 UTC 216.58.211.2
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2022-08-28 10:15:13 UTC 143.204.55.35
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-08-28 05:48:36 UTC 143.204.55.49
mnemonic passive DNS cstatic.weborama.fr (1) 21619 2015-02-24 13:20:40 UTC 2022-08-28 18:00:16 UTC 93.184.221.133
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-08-28 04:11:28 UTC 34.120.237.76
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-08-28 04:47:14 UTC 34.117.237.239
mnemonic passive DNS secure.adnxs.com (8) 396 2012-05-22 16:37:37 UTC 2022-08-28 05:23:06 UTC 185.89.210.82


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 23.185.0.4

Date UQ / IDS / BL URL IP
2022-11-28 18:22:32 +0000
0 - 0 - 1 www.nokidhungry.org/who-we-are/pressroom/stat (...) 23.185.0.4
2022-11-28 07:15:30 +0000
0 - 0 - 2 dev-5542.pantheonsite.io/index.php 23.185.0.4
2022-11-28 07:15:23 +0000
0 - 0 - 2 dev-bibanco.pantheonsite.io/index.php 23.185.0.4
2022-11-28 07:14:45 +0000
0 - 0 - 2 dev-b-n-l-ine-a.pantheonsite.io/index.php 23.185.0.4
2022-11-28 07:14:41 +0000
0 - 0 - 2 dev-bi-industrial00.pantheonsite.io/index.php 23.185.0.4

Last 5 reports on ASN: FASTLY

Date UQ / IDS / BL URL IP
2022-11-28 23:57:32 +0000
0 - 0 - 3 dev-li92.pantheonsite.io/ 23.185.0.3
2022-11-28 23:56:47 +0000
0 - 0 - 2 www.fondatheatre.com/rentals 151.101.86.132
2022-11-28 23:31:42 +0000
0 - 0 - 2 www.thewarfieldtheatre.com/rentals 151.101.86.132
2022-11-28 23:18:32 +0000
0 - 0 - 2 opendrr.github.io/ 185.199.108.153
2022-11-28 23:16:28 +0000
0 - 0 - 2 dsepost.web.app/r9sar0h3linF4AB12ABCDEFGHIJKL (...) 199.36.158.100

Last 5 reports on domain: dev-bpnetaucx.pantheonsite.io

Date UQ / IDS / BL URL IP
2022-10-24 15:34:27 +0000
0 - 0 - 2 dev-bpnetaucx.pantheonsite.io/wp-content/sync (...) 23.185.0.4
2022-08-28 22:58:06 +0000
0 - 0 - 34 dev-bpnetaucx.pantheonsite.io/wp-content/sync (...) 23.185.0.4
2022-08-28 22:57:48 +0000
0 - 0 - 37 dev-bpnetaucx.pantheonsite.io/wp-content/synchro/ 23.185.0.4
2022-08-28 22:31:46 +0000
0 - 0 - 35 dev-bpnetaucx.pantheonsite.io/wp-content/sync (...) 23.185.0.4
2022-08-28 22:25:09 +0000
0 - 0 - 31 dev-bpnetaucx.pantheonsite.io/wp-content/sync (...) 23.185.0.4

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-26 06:19:03 +0000
18 - 0 - 38 dev-ccvbdres.pantheonsite.io/wp-content/web/ 23.185.0.2
2022-11-24 07:15:03 +0000
22 - 0 - 39 dev-mbpvenron.pantheonsite.io/web/62800 23.185.0.3
2022-11-24 07:14:43 +0000
21 - 0 - 38 dev-appbpbusness.pantheonsite.io/sm/64765 23.185.0.4
2022-11-24 07:14:00 +0000
20 - 0 - 37 dev-cbpbusiness.pantheonsite.io/web/22314 23.185.0.4
2022-11-24 07:13:41 +0000
17 - 0 - 34 dev-mybanquepostale.pantheonsite.io/mpn/69196 23.185.0.1


JavaScript

Executed Scripts (26)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (96)


Request Response
                                        
                                            GET /wp-content/synchro/39063 HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         23.185.0.4
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
location: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
server: nginx
strict-transport-security: max-age=300
traceparent: 00-5153708cfd684711a7098a9e467f31c7-6f4170e18f49c108-00
x-cloud-trace-context: 5153708cfd684711a7098a9e467f31c7/8016812925770121480;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: 35faeaf5-2685-11ed-a8a6-36f62962685c
cache-control: public, max-age=86400
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21022-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715494.253702,VS0,VE2
vary: Cookie, Cookie
x-robots-tag: noindex
age: 56585
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 162
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - openphish: La Banque postale
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 28 Aug 2022 19:13:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9yHZ3ZTfla4mpVo5ErDJ1SryaQfAqzbFyDJoyxT05_P6lXvkoivi-A==
Age: 1455


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7EBE5D06EFE28C8507B4CDFBF68C6E5BBD9919BA776990FB8A22D90CCA0C1C1B"
Last-Modified: Sat, 27 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4386
Expires: Sun, 28 Aug 2022 20:51:20 GMT
Date: Sun, 28 Aug 2022 19:38:14 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 27 Aug 2022 22:35:58 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qvl5Y1y4W06IFZjyKNPRdfsSDtQFuYoPgCnjEGppqKEYQG7GKePoaw==
age: 75736
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /wp-content/synchro/39063/ HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
content-encoding: gzip
server: nginx
strict-transport-security: max-age=300
traceparent: 00-7578e875641a4e6f8b877fa10e01180a-a615d9ad0df53ccb-00
x-cloud-trace-context: 7578e875641a4e6f8b877fa10e01180a/11967710922093706443;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f52182ad-2708-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21023-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715494.405366,VS0,VE37
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 27587
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1449)
Size:   27587
Md5:    cd10c03cfc3663c97c9683dbc0ef2a13
Sha1:   a5e48d1259b9b7a9d861c14340e43c532e32714b
Sha256: 600b1d4f6759581f2dad777e2cc0f1883aef8307a23d90977d881b82b87b34ca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 28 Aug 2022 19:38:14 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/synchro/39063/asset/base-fonts.min.a7e7927fdac70bd77ee0c5330bedd24b.css HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"630ae71a-b0f"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-7223fbba772b41a584430b0a59f6e37c-2d03cc1c9e9c4c4c-00
x-cloud-trace-context: 7223fbba772b41a584430b0a59f6e37c/3243660579929082956;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: f53ea704-2708-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12737-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.593980,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 599
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (477)
Size:   599
Md5:    cac57a3c4bf741d845e6f013a4ed6f7a
Sha1:   fb84e768c3c246ee3c3e0d43cc116d1376f00449
Sha256: e0d97d039af1dba42f2cb50e5a844b38617b18752c48ca95a5ee6186e40b72e5
                                        
                                            GET /wp-content/synchro/39063/asset/saved_resource HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"630ae71a-2b"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-c21dfe4e4d204355a207985b98ebc7eb-c8147ad56e0f8db5-00
x-cloud-trace-context: c21dfe4e4d204355a207985b98ebc7eb/14417283364212936117;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: cf75e107-26d9-11ed-baa3-5e0d87cff249
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21056-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.597083,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 59
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   59
Md5:    84455fcbb9d61b5b76c43701007a7240
Sha1:   a39c2c1d2f997ea63adb3ac27e436a7e2374fe70
Sha256: 13c7df46eca6672ea379cb53820afa12862aed2f6e349f5fcaefd1f4d884bbc9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/saved_resource(1) HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"630ae71a-2b"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-aee9cbc96bdd4911a3452292bb8b5b5f-b648889d761d7e42-00
x-cloud-trace-context: aee9cbc96bdd4911a3452292bb8b5b5f/13134898523098938946;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 733abeef-2685-11ed-af03-52872e658687
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12731-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.597386,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 59
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   59
Md5:    84455fcbb9d61b5b76c43701007a7240
Sha1:   a39c2c1d2f997ea63adb3ac27e436a7e2374fe70
Sha256: 13c7df46eca6672ea379cb53820afa12862aed2f6e349f5fcaefd1f4d884bbc9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/assets/css/spinner.css HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"630ae71a-317"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-3e4b7ccdaf334fd5bf118b036bc0b2a8-7808c544aaf27705-00
x-cloud-trace-context: 3e4b7ccdaf334fd5bf118b036bc0b2a8/8649379983081502469;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f53f345f-2708-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12741-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.593098,VS0,VE37
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 380
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   380
Md5:    00ca23199a1a85f3c2cf38dabfeef853
Sha1:   f7da43579189b67a2e02e26b47da70d38562078e
Sha256: af6ea681e0934131dc76799700e56c6416398f7ca618b6e66039276248286d30
                                        
                                            GET /ajax/libs/jquery/3.4.1/jquery.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dev-bpnetaucx.pantheonsite.io
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 28 Aug 2022 19:38:14 GMT
content-length: 69049
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-4472c"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 352659
expires: Fri, 18 Aug 2023 19:38:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GTEHrCwLwuLiWFWwrrC8dF%2F0DpXk1M5n6m4KqKVaEM4gqIH5avOt5LK4ombyslNyPzQuxSwZTKjJT%2Bfa0YIZYbSbsLVWeHhSsPzkamyPNjgnp7bVxboJcPUmoArP2g8e16Er8YzD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 741f819179190b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   69049
Md5:    7c286e6d8efea0a5a4001f1d303b084d
Sha1:   7af68edb8af057d92a5267c635285b81e2d75ba3
Sha256: 9f0e70f01fea22da5fcb038a5a0df0807fcb33cf30de95af1d7c5ce4d84105ae
                                        
                                            GET /wp-content/synchro/39063/asset/bsd HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-11"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-4e1caec67167479882583c57bf10b43e-9d3a4e25482f074b-00
x-cloud-trace-context: 4e1caec67167479882583c57bf10b43e/11329453734635702091;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: 0fe94b0c-2686-11ed-a8a6-36f62962685c
content-encoding: gzip
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21059-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.599109,VS0,VE38
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 37
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   37
Md5:    0c0982212f5443915a3b3afa003dab34
Sha1:   368c52b8f5718a0471bc5cbf6934d19d2884f9ce
Sha256: 76b2e00f0ce7e3a16b06bc1afa8697b53c18c1cf62e74755ae8b19eed401369f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/seg HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-7d81f8712a924e518156888f0c22f5ac-3eed397778d1ebe8-00
x-cloud-trace-context: 7d81f8712a924e518156888f0c22f5ac/4534343585122872296;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: edd2a578-268f-11ed-b224-6292cfeb6104
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21065-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.608838,VS0,VE30
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/4050178.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
etag: "630ae71a-0"
expires: Sun, 28 Aug 2022 14:15:52 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-6d8478445fa14c3ba1124af9dc487de3-31bcb804e46831f9-00
x-cloud-trace-context: 6d8478445fa14c3ba1124af9dc487de3/3583941734631485945;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: ed481333-26db-11ed-a8a6-36f62962685c
cache-control: public, max-age=120
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12734-AMS, cache-bma1634-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1661715495.609440,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"630ae71a-1b8e7"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-b980e000db2e4377aacf811f6a81bfb7-1e4fa20a15506a02-00
x-cloud-trace-context: b980e000db2e4377aacf811f6a81bfb7/2184142508488944130;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: 73823c0d-2685-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12730-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.607799,VS0,VE34
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 48720
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1596)
Size:   48720
Md5:    62d31eb88dba4caaf44df4fe1077e09b
Sha1:   a51994ef0a180ddf1d4eb0c0e7a052a05916fcb2
Sha256: 0b927f74d6b20771facd456fb2cf1f8aea7e95aead8fb57187cb26862f44b78d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/px HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-2f55f81ab8dd44f9b7c24a4bd7d6a139-9f82bf69de5b7bff-00
x-cloud-trace-context: 2f55f81ab8dd44f9b7c24a4bd7d6a139/11493959660425935871;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: 9d4ea7e3-26d4-11ed-b224-6292cfeb6104
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12776-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.608347,VS0,VE35
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/f(1).txt HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"630ae71a-9e0"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-1dc1fab6cb834245a977b878d01305d9-47305220a8849eca-00
x-cloud-trace-context: 1dc1fab6cb834245a977b878d01305d9/5129690275794689738;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: f5411ae5-2708-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21052-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.611743,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1119
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2528), with no line terminators
Size:   1119
Md5:    f7bf09284ae316d5c3e93a382e4a5f5f
Sha1:   f4c578ae0bf340d5ab34d5c73894db6a1b466dd6
Sha256: 7a851e7bae4d74f50e2741d60c35ab6e8a8c1080c8ffedf2f84458217d239434

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/seg(1) HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-e74ed2d589594216a099e222e01afaed-ed893e80f853ee38-00
x-cloud-trace-context: e74ed2d589594216a099e222e01afaed/17116280582441266744;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 6737b569-26d7-11ed-af03-52872e658687
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12729-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.612854,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/seg(2) HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-f2a8d8f928154609b07f07f28deafaa1-d2949b5c51efe3e2-00
x-cloud-trace-context: f2a8d8f928154609b07f07f28deafaa1/15173923865332016098;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 733a7863-2685-11ed-af03-52872e658687
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21051-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.614113,VS0,VE30
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/px(2) HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-bae97a48a8984294be2b68429906256a-cf75959548ab8127-00
x-cloud-trace-context: bae97a48a8984294be2b68429906256a/14949019006528094503;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: 73820682-2685-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12734-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.613570,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/px(1) HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
etag: "630ae71a-0"
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-f60f8dff721f4bcea72f074bba2039f7-034873865df6d5f9-00
x-cloud-trace-context: f60f8dff721f4bcea72f074bba2039f7/236566001376220665;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: 733a228b-2685-11ed-baa3-5e0d87cff249
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21022-AMS, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661715495.612296,VS0,VE35
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/il_transverse_warning.svg HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
content-encoding: gzip
etag: W/"630ae71a-438"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-c6f3e30d9c1449db9c885c78c9104f9c-2e67f242404ee00f-00
x-cloud-trace-context: c6f3e30d9c1449db9c885c78c9104f9c/3343907614706556943;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: f541da4a-2708-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21064-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.615294,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 574
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1080), with no line terminators
Size:   574
Md5:    9d55298064d0b1f7253fbd98dc91225a
Sha1:   3dbc3e08fb91dd45d34af878c4dc31a1b51045e3
Sha256: 8bc2bdf82cd3be7623805b8abb5c118a2c092f220490447cd06da9dea418c278

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/common/log.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-329"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-1c8c74319eaa4f5faea5a6eba9510753-c4960dfc14298d87-00
x-cloud-trace-context: 1c8c74319eaa4f5faea5a6eba9510753/14165525054261661063;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f542db4b-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12744-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.621713,VS0,VE36
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 419
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   419
Md5:    45bdf328a2b2a3b7e6ed74f266e18808
Sha1:   9630fa83905b07b5a1433e7560596afff1d5f0d6
Sha256: 0a32f4d23aba5363b8d708fb8cd149ac87ed29958a28c0aafd887558d0f5c4ea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/assets/js/main.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-71f"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-d714680fe87a4a74aecac9d7e7ff3995-b44d8e23f0911b18-00
x-cloud-trace-context: d714680fe87a4a74aecac9d7e7ff3995/12992196785044790040;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f5455601-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12734-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.621609,VS0,VE48
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 560
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Size:   560
Md5:    f253ff3968dd80cefec84b09c5437a0f
Sha1:   0392cd7e1d577b7079bd0590673409711b4b3f77
Sha256: 1bfc467e8165b7296c7d9b8953c1069981e2bd9401ea63ed2d18b285c2ae59a2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "11C4B0A2CA7BB6D9AFFC5487A22E844DDD7DAB5E457052200DA5E26C9558F4FC"
Last-Modified: Sat, 27 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=663
Expires: Sun, 28 Aug 2022 19:49:17 GMT
Date: Sun, 28 Aug 2022 19:38:14 GMT
Connection: keep-alive

                                        
                                            GET /iframe/sync.html?key=ids_sync&wamid=&src=wamf.laposte.js&ref=dev-bpnetaucx.pantheonsite.io&d.r=1661715494760 HTTP/1.1 
Host: cstatic.weborama.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         93.184.221.133
HTTP/2 200 OK
content-type: text/html
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 381226
cache-control: max-age=604800
date: Sun, 28 Aug 2022 19:38:14 GMT
etag: "282943589"
expires: Sun, 04 Sep 2022 19:38:14 GMT
last-modified: Mon, 20 Sep 2021 08:52:49 GMT
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
server: ECAcc (ska/F6CF)
vary: Accept-Encoding
x-cache: HIT
content-length: 207
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   207
Md5:    156d13a9471aa8d01e8aafd7330dc5b1
Sha1:   99dfd9a28e98032e6e6d510f32e4ddb1ddac4343
Sha256: 1b6f17ea3e1cbc6b005b2c76299fb8fa1832119d8fe5386f019125ee5b44a9a4
                                        
                                            GET /etc.clientlibs/labanquepostale/commons/clientlibs/designsystem/base/resources/svg-icons.svg HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-bpnetaucx.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-f8094ce230454ae087af4cbb376c9782-b2922d72122093bc-00
x-cloud-trace-context: f8094ce230454ae087af4cbb376c9782/12867397053304574908;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f560aa11-2708-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12769-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.819250,VS0,VE106
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16709), with CRLF, LF line terminators
Size:   13520
Md5:    5133dd84ff2f0ded8162662efbfb3899
Sha1:   580ae565537307a729e657f3917149ab7595e2ef
Sha256: 509d86fa6b7addbb7fb1dbb1c5d391282e3507127156e723acd1f7a1132c771a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 28 Aug 2022 19:17:13 GMT
Cache-Control: max-age=3600
Expires: Sun, 28 Aug 2022 19:47:34 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K8cMz-PSAptW123kM_u2_mZwhD_T7wh4ozsXxM-EyMXGd7P0qYFMcw==
Age: 1263


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/synchro/39063/asset/uwt.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-ddec"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-0d1c7c83edac4efa91b84e6bf71be9b0-bca9f493f996e9f8-00
x-cloud-trace-context: 0d1c7c83edac4efa91b84e6bf71be9b0/13594665866579339768;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f53f57fe-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21071-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.600436,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65391), with no line terminators
Size:   20697
Md5:    bd2239152aefef4ef3c9586d23605bb1
Sha1:   0608f69843c99010bd93acb64f771b777f679236
Sha256: 6843fe184586352f03817a1eebf4d8e8f069da7a672f022f0fac06518cc04cda

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6179
Cache-Control: 'max-age=158059'
Date: Sun, 28 Aug 2022 19:38:15 GMT
Last-Modified: Sun, 28 Aug 2022 17:55:16 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/synchro/39063/asset/base-fonts/resources/fonts/lato/Lato-Light.woff HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts.min.a7e7927fdac70bd77ee0c5330bedd24b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-bpnetaucx.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-e36ab969781c4706aa3988333c8de9a8-4fbda561b727ae70-00
x-cloud-trace-context: e36ab969781c4706aa3988333c8de9a8/5745930538697862768;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f58056c0-2708-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:15 GMT
x-served-by: cache-ams21026-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.023417,VS0,VE144
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16709)
Size:   62123
Md5:    543761c14e58179f92a21924292a46e7
Sha1:   0c79b8cde1cf96d14111e503a0a39221ebc6d599
Sha256: ace8ba7776840c61e0dd8014ae3d232a4dc5f0233f1593b30895a11b78daddce

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /getuid?//its.tradelab.fr/?type=tlsync&uuid2=$UID&callback=tl_sync HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.172.250
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3F%2F%2Fits.tradelab.fr%2F%3Ftype%3Dtlsync%26uuid2%3D%24UID%26callback%3Dtl_sync
AN-X-Request-Uuid: 367a7f87-247c-466e-8b74-5ba2ac594f7c
Set-Cookie: uuid2=2490015223108132022; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:15 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 538.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            GET /pagead/1p-user-list/993136125/?random=1656518854176&cv=9&fst=1656518400000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=3&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa6r0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.labanquepostale.fr%2Fparticulier%2Fconnexion-espace-client.html&ref=https%3A%2F%2Fwww.labanquepostale.fr%2F&tiba=Connexion%20%C3%A0%20l%27espace%20client%20-%20La%20Banque%20Postale&async=1&fmt=3&is_vtc=1&random=1411629599&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 28 Aug 2022 19:38:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /wp-content/synchro/39063/asset/wreport_wcm.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-3e68"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-a333258aa9364a779dd84fc7575c5268-d528a7e85daef79e-00
x-cloud-trace-context: a333258aa9364a779dd84fc7575c5268/15359711145593075614;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f53fb2d1-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12747-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.600863,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   67621
Md5:    2a893158141c082cc86e6af3f5f1dd5c
Sha1:   bd7a00efaf71e6e18ea41ee08cffe10179ad2486
Sha256: 6c5423ae5da2d8253fd1f888712a09e4a61b4f29245af7964e6918e2701179d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/base.min.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-8aad4"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-70027cf83c4f43f38570553cc10d544e-be71c8b43c048399-00
x-cloud-trace-context: 70027cf83c4f43f38570553cc10d544e/13722970216001209241;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: f541b350-2708-11ed-baa3-5e0d87cff249
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21079-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.616132,VS0,VE33
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   249797
Md5:    2635f86f66fb95a3aaf5bc8d9d4e7a98
Sha1:   65a12c702416a514285e5b416df4b5124c8aabdc
Sha256: 3e39f6edd878a87f3b4cf4b273ca60e4127002082b6b182a31aa1611b63fb38c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /bounce?%2Fpx%3Fid%3D991001%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 7784ad45-be2e-4e69-bac4-4a922e4bf727
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /getuid?//its.tradelab.fr/?type=convr&x=1&uuid2=$UID&cdata=%7B%22a%22%3A991000%2C%22l%22%3A%5B6129654%2C6129670%2C6129677%2C6129705%2C6140244%2C6140246%2C6140363%2C6141029%2C6205745%2C6205752%2C6205755%2C6205762%2C6220830%2C8124214%2C8124594%2C8124968%2C8124973%2C8125344%2C8141760%2C8141763%2C8141816%2C8141850%2C8141875%2C8141880%2C8141931%2C8141938%2C8176847%2C8176869%2C8176878%2C8178278%2C8178332%2C8217168%2C8239623%2C8245529%2C8245533%2C8245537%2C8245540%2C8260100%2C8445392%2C8505468%2C8505515%2C9271738%2C9271745%2C9271969%2C9272093%2C9272160%2C9272905%2C9408323%2C9408407%2C9408587%2C9408663%2C9408768%2C9511553%2C9611699%2C9611846%2C9683342%2C9683349%2C9719394%2C10005812%2C10226877%2C10226889%2C10226919%2C10244639%2C10381193%2C10480996%2C12967986%2C12968507%2C12968515%2C12968543%2C12968782%2C12968784%2C13104005%2C13259085%2C13477519%2C14058054%2C14058197%2C14058205%2C14058228%2C14069494%2C14069497%2C14069560%2C14069565%2C14069590%2C14069626%2C14074179%2C14112662%2C14130392%2C14212376%2C14212411%2C14212419%2C14212455%2C14212467%2C14212692%2C14212694%2C14570528%2C14570544%5D%2C%22i%22%3A1%2C%22c%22%3A7%2C%22t%22%3A%22h%22%2C%22m%22%3A%22null%22%2C%22vi%22%3A0%2C%22vc%22%3A0%2C%22hf%22%3A0%2C%22x%22%3A%7B%7D%7D&advid=2602146 HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.172.250
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3F%2F%2Fits.tradelab.fr%2F%3Ftype%3Dconvr%26x%3D1%26uuid2%3D%24UID%26cdata%3D%257B%2522a%2522%253A991000%252C%2522l%2522%253A%255B6129654%252C6129670%252C6129677%252C6129705%252C6140244%252C6140246%252C6140363%252C6141029%252C6205745%252C6205752%252C6205755%252C6205762%252C6220830%252C8124214%252C8124594%252C8124968%252C8124973%252C8125344%252C8141760%252C8141763%252C8141816%252C8141850%252C8141875%252C8141880%252C8141931%252C8141938%252C8176847%252C8176869%252C8176878%252C8178278%252C8178332%252C8217168%252C8239623%252C8245529%252C8245533%252C8245537%252C8245540%252C8260100%252C8445392%252C8505468%252C8505515%252C9271738%252C9271745%252C9271969%252C9272093%252C9272160%252C9272905%252C9408323%252C9408407%252C9408587%252C9408663%252C9408768%252C9511553%252C9611699%252C9611846%252C9683342%252C9683349%252C9719394%252C10005812%252C10226877%252C10226889%252C10226919%252C10244639%252C10381193%252C10480996%252C12967986%252C12968507%252C12968515%252C12968543%252C12968782%252C12968784%252C13104005%252C13259085%252C13477519%252C14058054%252C14058197%252C14058205%252C14058228%252C14069494%252C14069497%252C14069560%252C14069565%252C14069590%252C14069626%252C14074179%252C14112662%252C14130392%252C14212376%252C14212411%252C14212419%252C14212455%252C14212467%252C14212692%252C14212694%252C14570528%252C14570544%255D%252C%2522i%2522%253A1%252C%2522c%2522%253A7%252C%2522t%2522%253A%2522h%2522%252C%2522m%2522%253A%2522null%2522%252C%2522vi%2522%253A0%252C%2522vc%2522%253A0%252C%2522hf%2522%253A0%252C%2522x%2522%253A%257B%257D%257D%26advid%3D2602146
AN-X-Request-Uuid: 7b8239ef-01c8-4067-9f34-5217bde60edf
Set-Cookie: uuid2=4154798547211099165; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:15 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 538.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            GET /bounce?%2Fgetuid%3F%2F%2Fits.tradelab.fr%2F%3Ftype%3Dtlsync%26uuid2%3D%24UID%26callback%3Dtl_sync HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.172.250
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: //its.tradelab.fr/?type=tlsync&uuid2=0&callback=tl_sync
AN-X-Request-Uuid: af46cf65-f72f-48fd-bf5d-bc9691aabe54
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 538.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bounce?%2Fgetuid%3F%2F%2Fits.tradelab.fr%2F%3Ftype%3Dconvr%26x%3D1%26uuid2%3D%24UID%26cdata%3D%257B%2522a%2522%253A991001%252C%2522l%2522%253A%255B6129654%252C6129670%252C6129677%252C6129705%252C6140244%252C6140246%252C6140363%252C6141029%252C6205745%252C6205752%252C6205755%252C6205762%252C6220830%252C8124214%252C8124594%252C8124968%252C8124973%252C8125344%252C8141760%252C8141763%252C8141816%252C8141850%252C8141875%252C8141880%252C8141931%252C8141938%252C8176847%252C8176869%252C8176878%252C8239623%252C8245529%252C8245533%252C8245537%252C8245540%252C8260100%252C8445392%252C8505468%252C8505515%252C9271738%252C9271745%252C9271969%252C9272093%252C9272160%252C9272905%252C9408323%252C9408407%252C9408587%252C9408663%252C9408768%252C9511553%252C9611699%252C9611846%252C9683342%252C9683349%252C9719394%252C10005812%252C10226877%252C10226889%252C10226919%252C10244639%252C10381193%252C10480996%252C12967986%252C12968507%252C12968515%252C12968543%252C12968782%252C12968784%252C13104005%252C13259085%252C13477519%252C14058054%252C14058197%252C14058205%252C14058228%252C14069494%252C14069497%252C14069560%252C14069565%252C14069590%252C14069626%252C14074179%252C14112662%252C14130392%252C14212376%252C14212411%252C14212419%252C14212455%252C14212467%252C14212692%252C14212694%252C14570528%252C14570544%255D%252C%2522i%2522%253A1%252C%2522c%2522%253A7%252C%2522t%2522%253A%2522h%2522%252C%2522m%2522%253A%2522null%2522%252C%2522vi%2522%253A0%252C%2522vc%2522%253A0%252C%2522hf%2522%253A0%252C%2522x%2522%253A%257B%257D%257D%26advid%3D2602146 HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.172.250
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: //its.tradelab.fr/?type=convr&x=1&uuid2=0&cdata={"a":991001,"l":[6129654,6129670,6129677,6129705,6140244,6140246,6140363,6141029,6205745,6205752,6205755,6205762,6220830,8124214,8124594,8124968,8124973,8125344,8141760,8141763,8141816,8141850,8141875,8141880,8141931,8141938,8176847,8176869,8176878,8239623,8245529,8245533,8245537,8245540,8260100,8445392,8505468,8505515,9271738,9271745,9271969,9272093,9272160,9272905,9408323,9408407,9408587,9408663,9408768,9511553,9611699,9611846,9683342,9683349,9719394,10005812,10226877,10226889,10226919,10244639,10381193,10480996,12967986,12968507,12968515,12968543,12968782,12968784,13104005,13259085,13477519,14058054,14058197,14058205,14058228,14069494,14069497,14069560,14069565,14069590,14069626,14074179,14112662,14130392,14212376,14212411,14212419,14212455,14212467,14212692,14212694,14570528,14570544],"i":1,"c":7,"t":"h","m":"null","vi":0,"vc":0,"hf":0,"x":{}}&advid=2602146
AN-X-Request-Uuid: 08d6d294-0bfd-4311-8c99-013bcd59e7b4
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 538.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/synchro/39063/asset/base-fonts/resources/fonts/lato/Lato-Regular.ttf HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts.min.a7e7927fdac70bd77ee0c5330bedd24b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-bpnetaucx.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-549b8c72c2004c7e8c52f6d347d0c35d-b1c3886c10f91392-00
x-cloud-trace-context: 549b8c72c2004c7e8c52f6d347d0c35d/12809231762894427026;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: f55ad40a-2708-11ed-baa3-5e0d87cff249
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21064-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.780554,VS0,VE108
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16709)
Size:   24090
Md5:    4ac13367e1587b63fc478697cb466962
Sha1:   7e160d70cdef5a04e0e794358bed1fa540220803
Sha256: ff2458b58e40e0543ab21f40202cd23e076943cbc894dcfe3a036ee30edf5b71

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /bounce?%2Fgetuid%3F%2F%2Fits.tradelab.fr%2F%3Ftype%3Dconvr%26x%3D1%26uuid2%3D%24UID%26cdata%3D%257B%2522a%2522%253A991000%252C%2522l%2522%253A%255B6129654%252C6129670%252C6129677%252C6129705%252C6140244%252C6140246%252C6140363%252C6141029%252C6205745%252C6205752%252C6205755%252C6205762%252C6220830%252C8124214%252C8124594%252C8124968%252C8124973%252C8125344%252C8141760%252C8141763%252C8141816%252C8141850%252C8141875%252C8141880%252C8141931%252C8141938%252C8176847%252C8176869%252C8176878%252C8178278%252C8178332%252C8217168%252C8239623%252C8245529%252C8245533%252C8245537%252C8245540%252C8260100%252C8445392%252C8505468%252C8505515%252C9271738%252C9271745%252C9271969%252C9272093%252C9272160%252C9272905%252C9408323%252C9408407%252C9408587%252C9408663%252C9408768%252C9511553%252C9611699%252C9611846%252C9683342%252C9683349%252C9719394%252C10005812%252C10226877%252C10226889%252C10226919%252C10244639%252C10381193%252C10480996%252C12967986%252C12968507%252C12968515%252C12968543%252C12968782%252C12968784%252C13104005%252C13259085%252C13477519%252C14058054%252C14058197%252C14058205%252C14058228%252C14069494%252C14069497%252C14069560%252C14069565%252C14069590%252C14069626%252C14074179%252C14112662%252C14130392%252C14212376%252C14212411%252C14212419%252C14212455%252C14212467%252C14212692%252C14212694%252C14570528%252C14570544%255D%252C%2522i%2522%253A1%252C%2522c%2522%253A7%252C%2522t%2522%253A%2522h%2522%252C%2522m%2522%253A%2522null%2522%252C%2522vi%2522%253A0%252C%2522vc%2522%253A0%252C%2522hf%2522%253A0%252C%2522x%2522%253A%257B%257D%257D%26advid%3D2602146 HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.172.250
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: //its.tradelab.fr/?type=convr&x=1&uuid2=0&cdata={"a":991000,"l":[6129654,6129670,6129677,6129705,6140244,6140246,6140363,6141029,6205745,6205752,6205755,6205762,6220830,8124214,8124594,8124968,8124973,8125344,8141760,8141763,8141816,8141850,8141875,8141880,8141931,8141938,8176847,8176869,8176878,8178278,8178332,8217168,8239623,8245529,8245533,8245537,8245540,8260100,8445392,8505468,8505515,9271738,9271745,9271969,9272093,9272160,9272905,9408323,9408407,9408587,9408663,9408768,9511553,9611699,9611846,9683342,9683349,9719394,10005812,10226877,10226889,10226919,10244639,10381193,10480996,12967986,12968507,12968515,12968543,12968782,12968784,13104005,13259085,13477519,14058054,14058197,14058205,14058228,14069494,14069497,14069560,14069565,14069590,14069626,14074179,14112662,14130392,14212376,14212411,14212419,14212455,14212467,14212692,14212694,14570528,14570544],"i":1,"c":7,"t":"h","m":"null","vi":0,"vc":0,"hf":0,"x":{}}&advid=2602146
AN-X-Request-Uuid: 8aba8f19-2e1c-4e82-8575-68c1cb6148c5
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 538.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

                                        
                                            GET /bounce?%2Fpx%3Fid%3D991000%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 9faf9622-9ebc-4afe-a317-202fab5e4960
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 27 Aug 2022 23:18:25 GMT
Expires: Sun, 28 Aug 2022 23:18:25 GMT
ETag: "cf47f0b7add22eaa4ca6de527b87fc31e0dc2119"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    32316d7729ef5f09649b9afbfd9450b0
Sha1:   cf47f0b7add22eaa4ca6de527b87fc31e0dc2119
Sha256: f6fe966efe72c62ea4d66064c6d24927f81abb8b5bc308dfbc88ca3e285f8fe9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 28 Aug 2022 19:38:15 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 27 Aug 2022 23:18:25 GMT
Expires: Sun, 28 Aug 2022 23:18:25 GMT
ETag: "cf47f0b7add22eaa4ca6de527b87fc31e0dc2119"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    32316d7729ef5f09649b9afbfd9450b0
Sha1:   cf47f0b7add22eaa4ca6de527b87fc31e0dc2119
Sha256: f6fe966efe72c62ea4d66064c6d24927f81abb8b5bc308dfbc88ca3e285f8fe9
                                        
                                            GET /?type=convr&x=1&uuid2=0&cdata={%22a%22:991000,%22l%22:[6129654,6129670,6129677,6129705,6140244,6140246,6140363,6141029,6205745,6205752,6205755,6205762,6220830,8124214,8124594,8124968,8124973,8125344,8141760,8141763,8141816,8141850,8141875,8141880,8141931,8141938,8176847,8176869,8176878,8178278,8178332,8217168,8239623,8245529,8245533,8245537,8245540,8260100,8445392,8505468,8505515,9271738,9271745,9271969,9272093,9272160,9272905,9408323,9408407,9408587,9408663,9408768,9511553,9611699,9611846,9683342,9683349,9719394,10005812,10226877,10226889,10226919,10244639,10381193,10480996,12967986,12968507,12968515,12968543,12968782,12968784,13104005,13259085,13477519,14058054,14058197,14058205,14058228,14069494,14069497,14069560,14069565,14069590,14069626,14074179,14112662,14130392,14212376,14212411,14212419,14212455,14212467,14212692,14212694,14570528,14570544],%22i%22:1,%22c%22:7,%22t%22:%22h%22,%22m%22:%22null%22,%22vi%22:0,%22vc%22:0,%22hf%22:0,%22x%22:{}}&advid=2602146 HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid2=0; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:15 GMT; Secure; SameSite=None uuid=7460603324928286945; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:15 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
X-Powered-By: Tradelab ITS / node4.tradelab.fr


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /?type=convr&x=1&uuid2=0&cdata={%22a%22:991001,%22l%22:[6129654,6129670,6129677,6129705,6140244,6140246,6140363,6141029,6205745,6205752,6205755,6205762,6220830,8124214,8124594,8124968,8124973,8125344,8141760,8141763,8141816,8141850,8141875,8141880,8141931,8141938,8176847,8176869,8176878,8239623,8245529,8245533,8245537,8245540,8260100,8445392,8505468,8505515,9271738,9271745,9271969,9272093,9272160,9272905,9408323,9408407,9408587,9408663,9408768,9511553,9611699,9611846,9683342,9683349,9719394,10005812,10226877,10226889,10226919,10244639,10381193,10480996,12967986,12968507,12968515,12968543,12968782,12968784,13104005,13259085,13477519,14058054,14058197,14058205,14058228,14069494,14069497,14069560,14069565,14069590,14069626,14074179,14112662,14130392,14212376,14212411,14212419,14212455,14212467,14212692,14212694,14570528,14570544],%22i%22:1,%22c%22:7,%22t%22:%22h%22,%22m%22:%22null%22,%22vi%22:0,%22vc%22:0,%22hf%22:0,%22x%22:{}}&advid=2602146 HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid2=0; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:15 GMT; Secure; SameSite=None uuid=1114535423503893043; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:15 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
X-Powered-By: Tradelab ITS / node2.tradelab.fr


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5t1xDYRqqNcrShYFt7YREA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.165.182.128
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zkAmQy81VoHVRPzcTMKma3vp+pQ=

                                        
                                            GET /?type=tlsync&uuid2=0&callback=tl_sync HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid2=0; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None uuid=9365729957845845058; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0,post-check=0,pre-check=0
Access-Control-Allow-Origin: *
P3p: CP="CAO PSA OUR"


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   35
Md5:    6e97a9e9e258ef9731fc47b32fae15d0
Sha1:   f58ff4377482d5e92efb6e5310e9a71bd0eb037b
Sha256: f1adc18ec69d28160df547a2ebe816a0e3c7ffbd1c30a1870282ae0d47ab1701
                                        
                                            GET /seg?add=2491894:0&t=2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D2491894%3A0%26t%3D2
AN-X-Request-Uuid: 3e2960b2-e3e3-4700-8b55-3612616f95e3
Set-Cookie: uuid2=6124908814908103819; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /bounce?%2Fseg%3Fadd%3D2491894%3A0%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:16 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: cb928adc-9684-4f23-9d8c-b97542b7cc05
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2E>1dW%GD!]tbP6j2F-XstGt!@DY<$h'K$; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /?type=tp&advid=2602146&uuid=9365729957845845058&adata=%7B%22c%22%3A%7B%22ref_url%22%3A%22%22%2C%22ref_ts%22%3A1661715496%2C%22page_url%22%3A%22dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F%22%2C%22dm%22%3A%22www.labanquepostale.fr%22%7D%2C%22v%22%3A%7B%22vis_cnt%22%3A1%2C%22frst_vis_ts%22%3A1661715495%2C%22prev_vis_ts%22%3A1661715495%2C%22curr_vis_ts%22%3A1661715496%2C%22total_page_cnt%22%3A1%2C%22prev_page_cnt%22%3A1%2C%22curr_page_cnt%22%3A1%7D%7D HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 302 Found
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid=9365729957845845058; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None iev0=eJyrVjIyMzAyNDFTsqpWKiopVrIyNDMzNDc0NbE0M7G01FEqSs4rUbIyADJSSosgDKBIJoRVXACSq60FAH17EyQ=; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None
Access-Control-Allow-Origin: *
X-Powered-By: Tradelab ITS / node4.tradelab.fr
Location: https://cm.g.doubleclick.net/pixel?google_nid=tradelab_dmp&google_cm

                                        
                                            GET /fseg/2135.js?add=12608265 HTTP/1.1 
Host: cdn.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.20.219
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
access-control-allow-origin: *
age: 1015
cache-control: max-age=1800
date: Sun, 28 Aug 2022 19:38:16 GMT
etag: "1bbd-59ff7646fd68a-gzip"
expires: Sun, 28 Aug 2022 20:08:16 GMT
last-modified: Tue, 03 Mar 2020 18:22:54 GMT
server: ECAcc (ska/F73F)
vary: Accept-Encoding
x-cache: HIT
content-length: 2594
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (518)
Size:   2594
Md5:    e8e2acc1934a78e938bb2f88981f126c
Sha1:   04e508ff2ef2b20c1edabb2861528cb353ee7775
Sha256: c33fd65b0d81fa1bfb50c0e3ff4ac82c26aa752ea196874322466bed02496acd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pixel?google_nid=tradelab_dmp&google_cm HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=tradelab_dmp&google_cm=&google_tc=
date: Sun, 28 Aug 2022 19:38:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 285
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 28-Aug-2022 19:53:16 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   285
Md5:    99eacce2df6348525adbb66179b6a122
Sha1:   9ae2089704548b1c8545021a9de724f71fa8fb84
Sha256: cd793d1e2bdcc66fa07e118627012f0d24684aa085f149eed09b86a06ade7384
                                        
                                            GET /conv/991000.js HTTP/1.1 
Host: cdn.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.20.219
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
access-control-allow-origin: *
age: 26
cache-control: max-age=1800
date: Sun, 28 Aug 2022 19:38:16 GMT
etag: "15a7-5c445be4e9274-gzip"
expires: Sun, 28 Aug 2022 20:08:16 GMT
last-modified: Tue, 08 Jun 2021 18:58:28 GMT
server: ECAcc (lhb/62AF)
vary: Accept-Encoding
x-cache: HIT
content-length: 2034
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (832)
Size:   2034
Md5:    866cef51cc7a1af978bd63d062ad7597
Sha1:   fc1a7e138eff4b50c0a722a777684720ff1a1450
Sha256: 339200fc612e99e909baf07bd33255243a505dbbb0b92ebe802b0ec89c843053
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7987
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 19:38:16 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 28 Aug 2022 19:38:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7987
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 19:38:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7987
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 19:38:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7987
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 19:38:16 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c51c541-314b-4130-a3af-d06caf60bb7b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7058
x-amzn-requestid: 9059da6e-9360-445d-8605-e05f29234b44
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiuGcGYqoAMFRfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a908f-3faf9a64271fb8a02010d3e5;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:45:51 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IevbIr8ZUpryBbm6-c5-3MXJ4eXrXrHxTFGNl3-alDedXci9AzRzxw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:24:08 GMT
etag: "0c0aa0266043aa373afb74a15ab605fba7ceb654"
age: 76448
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7058
Md5:    d86049a1b34617a0d41fb4ef97009303
Sha1:   0c0aa0266043aa373afb74a15ab605fba7ceb654
Sha256: 02bcd4310d68f5cffd90c1cced9e9789876f3c51c1edb21f9b0dec1e659118b6
                                        
                                            GET /pixel?google_nid=tradelab_dmp&google_cm=&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.211.2
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://its.tradelab.fr/?type=tlsync_dbm&google_error=3
date: Sun, 28 Aug 2022 19:38:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   256
Md5:    71887a73cc8a27e417a04a9a689586c0
Sha1:   d3128cba3bfccf3eb54562cccc344d30ca175703
Sha256: 86083e6edab8fa44c3d8b0b5ff3a7292f6bdf16e2a3046f90a285f036b0ce96b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10824
x-amzn-requestid: abf116d5-7ffd-4100-bbbb-f8ebcc903e48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaJqgGfToAMFfmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6307230f-058b88810d3d902475af52a3;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:21:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 1QjI_En26B7SLes62WrxkEODPzBCDiUUo8ttH3vOUYsTTTo-ucHIqA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 07:43:27 GMT
age: 42889
etag: "96e49f02f48d8e212335722d7a95eba9b21050de"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10824
Md5:    e0a52aaf6cfd3c91ef396ec21e668634
Sha1:   96e49f02f48d8e212335722d7a95eba9b21050de
Sha256: edd20b6a1790cc65fd16f64e6e58c01140d814ffb27a6fe6f41c7dc285a76b2b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3669e6e-88e8-42f1-8b3b-7bb300b93ae6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6527
x-amzn-requestid: e00d8dd2-45c6-4d2f-ac77-22b789af807f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xis-kE_ZIAMFuew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8ec3-365ab7026fbf1302654e6e4d;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:38:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _f1PouXpFqxggzJGUxFunyYeNflxkdVmAjpnBlW3vV63TY3jjWetzQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:43:51 GMT
age: 78865
etag: "defd4c20c1034f6890d780022c94cab34cbf87f3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6527
Md5:    8609f20b4f6de9888a710a1a865a8cca
Sha1:   defd4c20c1034f6890d780022c94cab34cbf87f3
Sha256: 36444bc24a9bd966ab805567dd936db8fcded9244c675025c023fe99b32be5b0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6921
x-amzn-requestid: 727cc3c0-9535-43cf-8aa6-1f46d74a5e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xis-bGrXIAMF6ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8ec2-4794034041513a7022688600;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s_ITjoM4nQ-z0l4iSmsxpbalk2wXhRMjw_00b6NbSh5MCHvFApfPpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:10:01 GMT
age: 77295
etag: "54ebcbafcc02053b2e9477ef29e89c9924abb9e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6921
Md5:    f492a725bd0ff1ffb9bda36a618c8163
Sha1:   54ebcbafcc02053b2e9477ef29e89c9924abb9e0
Sha256: bbe69be8f14be3d6fdf09fee9cfdcee5847875bc9f6f6097e4afe1692553c125
                                        
                                            GET /?type=fseg&uuid2=0&sid=12608265&val=undefined&fun=2135&step=1&siev=12608262&fp=0&advid=2602146&isregen=0&ua=Mozilla%252F5.0%2520(X11%253B%2520Linux%2520x86_64%253B%2520rv%253A96.0)%2520Gecko%252F20100101%2520Firefox%252F96.0&ur=https%253A%252F%252Fdev-bpnetaucx.pantheonsite.io%252Fwp-content%252Fsynchro%252F39063%252F&adata=%7B%22c%22%3A%7B%22ref_url%22%3A%22%22%2C%22ref_ts%22%3A1661715496%2C%22page_url%22%3A%22dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F%22%2C%22dm%22%3A%22www.labanquepostale.fr%22%7D%2C%22v%22%3A%7B%22vis_cnt%22%3A1%2C%22frst_vis_ts%22%3A1661715495%2C%22prev_vis_ts%22%3A1661715495%2C%22curr_vis_ts%22%3A1661715496%2C%22total_page_cnt%22%3A1%2C%22prev_page_cnt%22%3A1%2C%22curr_page_cnt%22%3A1%7D%7D HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:16 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: uuid2=0; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None uuid=1809209758070129420; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0,post-check=0,pre-check=0
Access-Control-Allow-Origin: *
P3p: CP="CAO PSA OUR"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /?type=convr&x=1&cdata=%7B%22a%22%3A991000%2C%22l%22%3A%5B6129654%2C6129670%2C6129677%2C6129705%2C6140244%2C6140246%2C6140363%2C6141029%2C6205745%2C6205752%2C6205755%2C6205762%2C6220830%2C8124214%2C8124594%2C8124968%2C8124973%2C8125344%2C8141760%2C8141763%2C8141816%2C8141850%2C8141875%2C8141880%2C8141931%2C8141938%2C8176847%2C8176869%2C8176878%2C8178278%2C8178332%2C8217168%2C8239623%2C8245529%2C8245533%2C8245537%2C8245540%2C8260100%2C8445392%2C8505468%2C8505515%2C9271738%2C9271745%2C9271969%2C9272093%2C9272160%2C9272905%2C9408323%2C9408407%2C9408587%2C9408663%2C9408768%2C9511553%2C9611699%2C9611846%2C9683342%2C9683349%2C9719394%2C10005812%2C10226877%2C10226889%2C10226919%2C10244639%2C10381193%2C10480996%2C12967986%2C12968507%2C12968515%2C12968543%2C12968782%2C12968784%2C13104005%2C13259085%2C13477519%2C14058054%2C14058197%2C14058205%2C14058228%2C14069494%2C14069497%2C14069560%2C14069565%2C14069590%2C14069626%2C14074179%2C14112662%2C14130392%2C14212376%2C14212411%2C14212419%2C14212455%2C14212467%2C14212692%2C14212694%2C14570528%2C14570544%5D%2C%22i%22%3A1%2C%22c%22%3A7%2C%22t%22%3A%22h%22%2C%22m%22%3A%22null%22%2C%22vi%22%3A0%2C%22vc%22%3A0%2C%22hf%22%3A0%2C%22x%22%3A%7B%7D%7D&advid=2602146&xur=dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F&adata=%7B%22c%22%3A%7B%22ref_url%22%3A%22%22%2C%22ref_ts%22%3A1661715496%2C%22page_url%22%3A%22dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F%22%2C%22dm%22%3A%22www.labanquepostale.fr%22%7D%2C%22v%22%3A%7B%22vis_cnt%22%3A1%2C%22frst_vis_ts%22%3A1661715495%2C%22prev_vis_ts%22%3A1661715495%2C%22curr_vis_ts%22%3A1661715496%2C%22total_page_cnt%22%3A1%2C%22prev_page_cnt%22%3A1%2C%22curr_page_cnt%22%3A1%7D%7D HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid=4029632458031218328; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
X-Powered-By: Tradelab ITS / node3.tradelab.fr


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8884
x-amzn-requestid: b83f1ecc-1efc-4178-84ce-9d05c053e078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitVoF9_oAMFegA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f57-098fcb077607ffbd2a589692;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEWVM8EW4qN1I77DHk6KgQDWrlcCGmiGBqfOWcfA_7PG8liqglIQvg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:11:35 GMT
age: 77201
etag: "10ae4c1080524020dfeb06984c8c98aabe07db6a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8884
Md5:    bd559f24c149a22515344de424d9836d
Sha1:   10ae4c1080524020dfeb06984c8c98aabe07db6a
Sha256: 176d82e8f33969b2060fc8d1c8ac93e3e0934f857d90bcdeb7d83454d7d0448d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7505
x-amzn-requestid: 66ed5a9b-1b9c-40c4-b757-7c13e9dc6410
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitJxFFSIAMFhrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f0b-24404d4f7a2cae8f4c3bcb97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:39:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: r5P4oNSmxtoViJUfOF5jx7lWb9H1mGWPalhuWVplCADHXoUU_lcccg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:11:06 GMT
etag: "ec62fa681d45d696fc7308fede11cd16979594fd"
age: 77230
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7505
Md5:    ef5729bf444dd3cc7b8e7945187e09ee
Sha1:   ec62fa681d45d696fc7308fede11cd16979594fd
Sha256: 34d5df4a669399f171489c9cd0f90a53eea21c35c1ccd310df39cc356c9922cd
                                        
                                            GET /?type=tlsync_dbm&google_error=3 HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid=1552596607097922920; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:16 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
X-Powered-By: Tradelab ITS / node4.tradelab.fr


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /seg?add=12608265&t=2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:16 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D12608265%26t%3D2
AN-X-Request-Uuid: 36e7bdb8-c747-4352-a298-82a170f605c8
Set-Cookie: uuid2=1238843168365400169; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /bounce?%2Fseg%3Fadd%3D12608265%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:17 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 52f42036-ac58-4318-8955-ffd4c8e69d9f
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2E>9dW%GD!]tbP6j2F-XstGt!@DZ)$hMd); SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:17 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 28 Aug 2022 19:38:17 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 27 Aug 2022 23:18:25 GMT
Expires: Sun, 28 Aug 2022 23:18:25 GMT
ETag: "cf47f0b7add22eaa4ca6de527b87fc31e0dc2119"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    32316d7729ef5f09649b9afbfd9450b0
Sha1:   cf47f0b7add22eaa4ca6de527b87fc31e0dc2119
Sha256: f6fe966efe72c62ea4d66064c6d24927f81abb8b5bc308dfbc88ca3e285f8fe9
                                        
                                            GET /fseg/2135.js?add=12608266 HTTP/1.1 
Host: cdn.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.20.219
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
access-control-allow-origin: *
age: 1020
cache-control: max-age=1800
date: Sun, 28 Aug 2022 19:38:21 GMT
etag: "1bbd-59ff7646fd68a-gzip"
expires: Sun, 28 Aug 2022 20:08:21 GMT
last-modified: Tue, 03 Mar 2020 18:22:54 GMT
server: ECAcc (ska/F73F)
vary: Accept-Encoding
x-cache: HIT
content-length: 2594
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (518)
Size:   2594
Md5:    e8e2acc1934a78e938bb2f88981f126c
Sha1:   04e508ff2ef2b20c1edabb2861528cb353ee7775
Sha256: c33fd65b0d81fa1bfb50c0e3ff4ac82c26aa752ea196874322466bed02496acd
                                        
                                            GET /conv/991001.js HTTP/1.1 
Host: cdn.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.199.20.219
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
access-control-allow-origin: *
age: 538
cache-control: max-age=1800
date: Sun, 28 Aug 2022 19:38:21 GMT
etag: "158f-5c445be5b05ff-gzip"
expires: Sun, 28 Aug 2022 20:08:21 GMT
last-modified: Tue, 08 Jun 2021 18:58:28 GMT
server: ECAcc (ska/F730)
vary: Accept-Encoding
x-cache: HIT
content-length: 2023
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (808)
Size:   2023
Md5:    76ab9cb9225329cbb283ca854ec51436
Sha1:   0b6c85a3be3979ecb9c5464c793fad122794b9a9
Sha256: e44c53266fbef09b992000993e8e46ed1ad51742ab33fb389b2eb934c66c0b5d
                                        
                                            GET /seg?add=12608266&t=2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D12608266%26t%3D2
AN-X-Request-Uuid: 063f971d-2e8f-4ef0-8839-f759d03e70c1
Set-Cookie: uuid2=3302329523157802022; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:21 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /bounce?%2Fseg%3Fadd%3D12608266%26t%3D2 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-bpnetaucx.pantheonsite.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.82
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Sun, 28 Aug 2022 19:38:21 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 805c1882-3494-4638-9ecd-3b0b05ecd8e2
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2E><dW%GD!]tbP6j2F-XstGt!@D^<$j3o:; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 26-Nov-2022 19:38:21 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /?type=fseg&uuid2=0&sid=12608266&val=undefined&fun=2135&step=2&siev=12608263&fp=0&advid=2602146&isregen=0&ua=Mozilla%252F5.0%2520(X11%253B%2520Linux%2520x86_64%253B%2520rv%253A96.0)%2520Gecko%252F20100101%2520Firefox%252F96.0&ur=https%253A%252F%252Fdev-bpnetaucx.pantheonsite.io%252Fwp-content%252Fsynchro%252F39063%252F&adata=%7B%22c%22%3A%7B%22ref_url%22%3A%22%22%2C%22ref_ts%22%3A1661715496%2C%22page_url%22%3A%22dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F%22%2C%22dm%22%3A%22www.labanquepostale.fr%22%7D%2C%22v%22%3A%7B%22vis_cnt%22%3A1%2C%22frst_vis_ts%22%3A1661715495%2C%22prev_vis_ts%22%3A1661715495%2C%22curr_vis_ts%22%3A1661715496%2C%22total_page_cnt%22%3A1%2C%22prev_page_cnt%22%3A1%2C%22curr_page_cnt%22%3A1%7D%7D HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:21 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: uuid2=0; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:21 GMT; Secure; SameSite=None uuid=9632440845006844970; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:21 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0,post-check=0,pre-check=0
Access-Control-Allow-Origin: *
P3p: CP="CAO PSA OUR"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /?type=convr&x=1&cdata=%7B%22a%22%3A991001%2C%22l%22%3A%5B6129654%2C6129670%2C6129677%2C6129705%2C6140244%2C6140246%2C6140363%2C6141029%2C6205745%2C6205752%2C6205755%2C6205762%2C6220830%2C8124214%2C8124594%2C8124968%2C8124973%2C8125344%2C8141760%2C8141763%2C8141816%2C8141850%2C8141875%2C8141880%2C8141931%2C8141938%2C8176847%2C8176869%2C8176878%2C8239623%2C8245529%2C8245533%2C8245537%2C8245540%2C8260100%2C8445392%2C8505468%2C8505515%2C9271738%2C9271745%2C9271969%2C9272093%2C9272160%2C9272905%2C9408323%2C9408407%2C9408587%2C9408663%2C9408768%2C9511553%2C9611699%2C9611846%2C9683342%2C9683349%2C9719394%2C10005812%2C10226877%2C10226889%2C10226919%2C10244639%2C10381193%2C10480996%2C12967986%2C12968507%2C12968515%2C12968543%2C12968782%2C12968784%2C13104005%2C13259085%2C13477519%2C14058054%2C14058197%2C14058205%2C14058228%2C14069494%2C14069497%2C14069560%2C14069565%2C14069590%2C14069626%2C14074179%2C14112662%2C14130392%2C14212376%2C14212411%2C14212419%2C14212455%2C14212467%2C14212692%2C14212694%2C14570528%2C14570544%5D%2C%22i%22%3A1%2C%22c%22%3A7%2C%22t%22%3A%22h%22%2C%22m%22%3A%22null%22%2C%22vi%22%3A0%2C%22vc%22%3A0%2C%22hf%22%3A0%2C%22x%22%3A%7B%7D%7D&advid=2602146&xur=dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F&adata=%7B%22c%22%3A%7B%22ref_url%22%3A%22%22%2C%22ref_ts%22%3A1661715496%2C%22page_url%22%3A%22dev-bpnetaucx.pantheonsite.io%2Fwp-content%2Fsynchro%2F39063%2F%22%2C%22dm%22%3A%22www.labanquepostale.fr%22%7D%2C%22v%22%3A%7B%22vis_cnt%22%3A1%2C%22frst_vis_ts%22%3A1661715495%2C%22prev_vis_ts%22%3A1661715495%2C%22curr_vis_ts%22%3A1661715496%2C%22total_page_cnt%22%3A1%2C%22prev_page_cnt%22%3A1%2C%22curr_page_cnt%22%3A1%7D%7D HTTP/1.1 
Host: its.tradelab.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.17.192.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.20.1
Date: Sun, 28 Aug 2022 19:38:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uuid=7386700181933162192; Max-Age=7776000; Domain=.tradelab.fr; Path=/; Expires=Sat, 26 Nov 2022 20:38:21 GMT; Secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
X-Powered-By: Tradelab ITS / node2.tradelab.fr


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    45cf913e5d9d3c9b2058033056d3dd23
Sha1:   30cb5d44e276505b1d4c053c8b25525da228db30
Sha256: 42b976597a2d977d0e300f6d06bc903db389e5c112d33c1c8c249690a522d9f2
                                        
                                            GET /wp-content/synchro/39063/asset/f.txt HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"630ae71a-9c44"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-a2d9618b597b4bcd9487930a221ff5a7-8cd8f063662f9214-00
x-cloud-trace-context: a2d9618b597b4bcd9487930a221ff5a7/10149126069986234900;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f53eef8c-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21055-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.598041,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/base-fonts/resources/fonts/lato/Lato-Light.ttf HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts.min.a7e7927fdac70bd77ee0c5330bedd24b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-bpnetaucx.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-fec0c10db5c54dfc8ffea3fe390ebec7-ef26a3502c99473e-00
x-cloud-trace-context: fec0c10db5c54dfc8ffea3fe390ebec7/17232640588920735550;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f564f0fe-2708-11ed-a8a6-36f62962685c
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12754-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.845461,VS0,VE125
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/e1e16f7b41.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-4071"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-deabeb12527b41899f0d90319a7d4040-9c8b3e56424f4f41-00
x-cloud-trace-context: deabeb12527b41899f0d90319a7d4040/11280178231880142657;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f540533f-2708-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21028-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.604863,VS0,VE33
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/wamfactory_dpm.laposte.min.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-1398"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-41096f06e3634bf6983da7cdb6a86f07-a2435c4a3ad35046-00
x-cloud-trace-context: 41096f06e3634bf6983da7cdb6a86f07/11692290531468202054;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f5401f8b-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12765-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.604957,VS0,VE34
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/991001.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-158f"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-946b7d041b244379b2b60ad608187e0b-8428d8c7aafd4acf-00
x-cloud-trace-context: 946b7d041b244379b2b60ad608187e0b/9523099764153731791;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f541532b-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21030-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.611355,VS0,VE33
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tro.js HTTP/1.1 
Host: mmtro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         195.66.82.41
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Sun, 28 Aug 2022 19:38:14 GMT
vary: Accept-Encoding
x-rid: 630bc426b59b6cc9ab4aed09
cache-control: private, max-age=259200
p3p: policyref="https://mmtro.com/w3c/p3p_mmtro.xml", CP="ALL DSP LAW CUR TAIi PSAi PSDi IVAi IVDi OUR BUS UNI"
server: fdb141453c85e6bc89a824a70a7bfd71a273b947
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/synchro/39063/asset/LOGO-LBP-digital-fd-clair-RVB.svg HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/svg+xml
                                        
access-control-allow-origin: *
content-encoding: gzip
etag: W/"630ae71a-dd1"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-dc59691ee4da4eba87bf1799ee493378-8fad5b14a17ef507-00
x-cloud-trace-context: dc59691ee4da4eba87bf1799ee493378/10353031262561563911;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: f5419482-2708-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21064-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.615293,VS0,VE35
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1769
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/base-fonts/resources/fonts/lato/Lato-Bold.ttf HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/asset/base-fonts.min.a7e7927fdac70bd77ee0c5330bedd24b.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-bpnetaucx.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-97ac378929a542ebaf7463b227e16004-4a09b016599141d5-00
x-cloud-trace-context: 97ac378929a542ebaf7463b227e16004/5334988843635524053;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f563b7be-2708-11ed-b224-6292cfeb6104
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12747-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.837261,VS0,VE102
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/css/bootstrap.min.css HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"630ae71a-2606e"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-6fb78797ba3c4778995f47952c3bb5b4-dfb025c53382ee16-00
x-cloud-trace-context: 6fb78797ba3c4778995f47952c3bb5b4/16118424595262008854;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: f53e09e9-2708-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12736-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.592031,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/synchro/39063/asset/oct.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-ddec"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-51df717680c44545888e4f9426fecc84-04683e44c5ce5891-00
x-cloud-trace-context: 51df717680c44545888e4f9426fecc84/317572238826952849;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f54056f4-2708-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21054-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.604917,VS0,VE34
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/bat.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-976d"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-ae082c79385347759fd80dcd8446f322-67a6f856242fb4ea-00
x-cloud-trace-context: ae082c79385347759fd80dcd8446f322/7468930080898528490;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f53f46fa-2708-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12733-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.599824,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/991000.js HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"630ae71a-15a7"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-056ccd9053324907a48052753ec590e7-5e675317c33cc9f5-00
x-cloud-trace-context: 056ccd9053324907a48052753ec590e7/6802497123691317749;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: f540ea1f-2708-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams21082-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.610636,VS0,VE32
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/synchro/39063/asset/base.min.99f35a940b6f6915d544e01fa9d9b267.css HTTP/1.1 
Host: dev-bpnetaucx.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-bpnetaucx.pantheonsite.io/wp-content/synchro/39063/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"630ae71a-3cf1d"
expires: Sun, 28 Aug 2022 19:38:13 GMT
last-modified: Sun, 28 Aug 2022 03:55:06 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-62ec8386caa84cf8a2d0d3900cdf41bb-d4ab3d0f9de5d1f3-00
x-cloud-trace-context: 62ec8386caa84cf8a2d0d3900cdf41bb/15324409294341132787;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: f5413ca5-2708-11ed-baa3-5e0d87cff249
cache-control: no-cache, must-revalidate
date: Sun, 28 Aug 2022 19:38:14 GMT
x-served-by: cache-ams12777-AMS, cache-bma1634-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1661715495.595432,VS0,VE60
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---