Report - agencezoo.fr/connexion-mabanque/bnpparibas/app/

Report Overview

Submitted URL
agencezoo.fr/connexion-mabanque/bnpparibas/app/
IP
213.186.33.151
ASN
#16276 OVH SAS
Submitted
2023-02-02 00:07:00
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	737 B	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.160.122.190
ka-f.fontawesome.com	3598	2019-12-17T07:36:13Z	2023-03-13T05:10:17Z	2.7 kB	295 kB	172.64.168.22
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.2 kB	41 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
kit.fontawesome.com	1868	2019-12-16T20:51:31Z	2023-03-13T05:10:17Z	392 B	5.2 kB	104.18.23.52
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
agencezoo.fr	unknown	2015-09-14T13:51:31Z	2023-02-02T01:05:59Z	8.5 kB	224 kB	213.186.33.151

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/	BNP Paribas

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/jquery.min.js	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/load.php	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/1.php	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Bold.woff	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Regular.woff	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-SemiBold.woff	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js	Phishing
2023-02-02	medium	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/popper.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	kit.fontawesome.com/adf8330f2a.js	11 kB	2023-03-08	2023-03-13
Pretty URL kit.fontawesome.com/adf8330f2a.js IP 104.18.23.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:05 Last Seen2023-03-13 14:32:53 Times Seen1 Hash 8abba9a50741f40e52313db0f9e45ba1 be51911c3cc52681feb1b3c76274bc78132f1d57 2d7a6f3be4242a24989328e0ca9b6aae93de389e52ed8adc0821984197811aae Loading...

	agencezoo.fr/connexion-mabanque/bnpparibas/app/	3.5 kB	2023-03-13	2023-03-13
Pretty URL agencezoo.fr/connexion-mabanque/bnpparibas/app/ IP 213.186.33.151 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32:53 Last Seen2023-03-13 14:32:53 Times Seen1 Hash 3c936d753d2d509415e9e792b847f5cc 80c62284a4e09a8c9a9dd9cc6ad3fb585cf57d2e 50523d67731cc0782a178b38496dce2d310cad3ef0d96c0f96d771dc834e0633 Loading...

	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/popper.min.js	20 kB	2023-03-07	2024-04-19
Pretty URL agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/popper.min.js IP 213.186.33.151 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:42 Last Seen2024-04-19 12:23:27 Times Seen4079 Hash 5644e6835941af44dcb5cead916c2b79 6eb1840d55338895ce6ecc3eab56132b1d152b93 315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58 Loading...

	agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js	58 kB	2023-03-07	2023-03-29
Pretty URL agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js IP 213.186.33.151 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:34 Last Seen2023-03-29 23:42:24 Times Seen2 Hash db7eb57c1f7832433b7be546dba17675 5d865db842e483fbd49f36e7e9084f3e4c37fd9e 81a502dbbe28e9768537bee7f2320fe8b240954588724ce5b358f3e96fc1baa7 Loading...

HTTP Transactions (42)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2786
Expires: Thu, 02 Feb 2023 00:53:15 GMT
Date: Thu, 02 Feb 2023 00:06:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18781
Expires: Thu, 02 Feb 2023 05:19:50 GMT
Date: Thu, 02 Feb 2023 00:06:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Thu, 02 Feb 2023 03:59:47 GMT
Date: Thu, 02 Feb 2023 00:06:49 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 23:43:26 GMT
content-type: application/json
age: 1403
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Wc6+mygJb9mrvWYVllArS8MpAGA47vDi54u7KJtDkQQ/ouv5LdsDHNHDU5Vr4n9BrlspJR4+9TA=
x-amz-request-id: KA6PA56EDBWGTDV6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 23:22:51 GMT
age: 2638
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5509395827a3af84a027fbfe40313f65
a0ecb15ec85b31528cedfabcdf1d2f7cb1183d72
24291fbabbc501fe5fd2fd58b6f4d0633d855cb7c397a305e942867932e999a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24291FBABBC501FE5FD2FD58B6F4D0633D855CB7C397A305E942867932E999A9"
Last-Modified: Thu, 02 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Thu, 02 Feb 2023 06:05:59 GMT
Date: Thu, 02 Feb 2023 00:06:49 GMT
Connection: keep-alive

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/fonts.css

213.186.33.151

200 OK

402 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/fonts.css
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
402 B (402 bytes)
Hash
3eba08959c602c57bd8c20aa04c5c1be
b93b5f58aa1e6dd7f4050a99ffc1ec70d677b288
a489ff12c37fa6c9e30535644bfac6764bf52e2092655e65ce7591b45e72714b

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/css/fonts.css HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: text/css
last-modified: Sun, 03 Nov 2019 12:14:54 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660891
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
content-length: 402
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0bfa5b6aa996442e23a0bc88d731fec2
7fb66a39781a0333502ca7d0fdfb2bae5b5f83c5
272e17f4eccec18edbce753e4287be7769433ce2d79c6f8c708fdec681227805

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3079
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:06:49 GMT
Last-Modified: Wed, 01 Feb 2023 23:15:30 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 23:41:43 GMT
age: 1506
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8703
Expires: Thu, 02 Feb 2023 02:31:53 GMT
Date: Thu, 02 Feb 2023 00:06:50 GMT
Connection: keep-alive

push.services.mozilla.com/

35.160.122.190

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.122.190:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SG0JBHAx95agrCe6RdjHtw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pw8PsTX8kYiNqCS7xiaS2JfeS6k=

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/jquery.min.js

213.186.33.151

404 Not Found

4.6 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/jquery.min.js
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746)
Size
4.6 kB (4631 bytes)
Hash
bd6f5d81b6ffe3bb09401bc09c8b2674
6e9ab1622a2a9df9e18ce5d9ca894777a074249c
2a05dceb96af1e6ef1177d5d71b3610c477833e5d8eba594dc48b61f261ed653

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/js/jquery.min.js HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://agencezoo.fr/wp-json/>; rel="https://api.w.org/"
x-request-id: 363660893
content-encoding: br
cache-control: no-cache
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
content-length: 4631
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/favicon.ico

213.186.33.151

200 OK

1.7 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/favicon.ico
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
MS Windows icon resource - 2 icons, 16x16, 8 bits/pixel, 16x16, 16 colors, 4 bits/pixel\012- data
Size
1.7 kB (1718 bytes)
Hash
d9da731ed30480099fd55876cecc697e
72fbeb44d8dab5bd3ecda3c63801208ac30b3696
fe0765d1602e351523c2069febfff8fe11e9b7f00c52999a98829ada67f7df95

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/images/favicon.ico HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: image/x-icon
content-length: 1718
last-modified: Tue, 15 Oct 2019 14:28:22 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:50 GMT
x-request-id: 363660897
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/load.php

213.186.33.151

200 OK

2.1 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/load.php
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (345), with CRLF line terminators
Size
2.1 kB (2132 bytes)
Hash
92c35ab5ad4a70cb0357e4b0bddd7f64
f04cb99ba8d0b7210517f301d0e20b812bdfb6fe
d5a0f8ddd4682530c50106490d147d8a5b59a4c4eae8ee405e0e83ff9c7cd51c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/pages/load.php HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/html
vary: Accept-Encoding
x-request-id: 363660898
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
content-length: 2132
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/1.php

213.186.33.151

200 OK

7.4 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/pages/1.php
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (345), with CRLF line terminators
Size
7.4 kB (7401 bytes)
Hash
fc710225ec642adf8097523d1981d05c
c878bae2c7dc2fec8bc2d8575f9789e7a8d1525d
671dc1fa358afbd5200f62b7605d7a5a88563b98ef49df9cc748ab4f205c8f07

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/pages/1.php HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/html
vary: Accept-Encoding
x-request-id: 363660896
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/service.jpg

213.186.33.151

200 OK

3.7 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/service.jpg
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:10:16 00:19:07], baseline, precision 8, 175x34, components 3\012- data
Size
3.7 kB (3745 bytes)
Hash
1264575d9ef3dd2bb7243f03aa6079d3
1951d5baf221231682320ac90946035d83960eb0
895124676e79720d4e3286e86e82b1a703dd8cc27d38f9dfd26acc01a16cf09d

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/images/service.jpg HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: image/jpeg
content-length: 3745
last-modified: Tue, 15 Oct 2019 15:19:08 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:50 GMT
x-request-id: 363660902
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2

172.64.168.22

200 OK

150 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 150500, version 770.768\012- data
Size
150 kB (150500 bytes)
Hash
69a76555beae5c43a59559396c1aeb54
7d2759002c67a66fc38a72dd0e395e2da3d41474
1494e2691e1c13a3f35cbc3e1b56c5187c10ffe220d1fdc58d99494a666244d4

HTTP Headers

GET /releases/v6.2.1/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://agencezoo.fr
Connection: keep-alive
Referer: https://agencezoo.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: font/woff2
content-length: 150500
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "69a76555beae5c43a59559396c1aeb54"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 b6143952706f018e1ba3e69247a6e10c.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: Zz4iGRLSmybDv1IuVo99LBAyftYOf1nj6rdN7IfpeGDiCbqSeMOJTA==
age: 226351
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Io4K3HH1vluaL%2FW8dzbUKNvuQC0QUjoolrgUkv3aSumUxvhryHb3wyCEZq9blKdNe2KcrEPVADBBsjaeHXNN2FM0FRuqdnXMEry9ueYfuzhvx0W595gUxA2jRk3STofvou12h5JJcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eaee77b11777a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2

172.64.168.22

200 OK

108 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 107656, version 770.768\012- data
Size
108 kB (107656 bytes)
Hash
d3c93d772e2ec6d8c7c7e726f92a7dbf
4bed608cc63253a50fe7e1abbb28396066902d0e
4f04c94b287d7dfdfad36e60915eefbef7127a073546e6c21512b5052c6ac48d

HTTP Headers

GET /releases/v6.2.1/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://agencezoo.fr
Connection: keep-alive
Referer: https://agencezoo.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: font/woff2
content-length: 107656
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "d3c93d772e2ec6d8c7c7e726f92a7dbf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 9a9edb00220c3ef50c1919f84fea4888.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: aNDUgiG_98naFj4Ij7hWEO2P6QpRC3IZV6bknT7IKbmYWQOBo_mjjA==
age: 226351
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fc%2B%2F4uaujtaS6x4UcvzT5TXr4Ii5flydzSzSbuCU7PONJbGY9%2Ba58aVC2o219icIeP1zTHSgy0q5m4JK263YMtdUfQ1bKy3J9%2BW3jjYbiuLs0P70vgp96%2Bp1YlATELCPcDdDbz%2F5hw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eaee7ab31777a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/load.gif

213.186.33.151

200 OK

28 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/images/load.gif
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 128 x 43\012- data
Size
28 kB (28108 bytes)
Hash
ef8f659d700511a0d7bdf8b4245533d5
75943031ba156907490e94279ed5d497a557fa92
8f3d202499766ef0c323cff695f545c557c2ddf355896c31e0eef9c6672d9e0b

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/images/load.gif HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: image/gif
content-length: 28108
last-modified: Sat, 17 Sep 2022 12:52:06 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:50 GMT
x-request-id: 363660901
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Bold.woff

213.186.33.151

200 OK

47 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Bold.woff
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
Web Open Font Format, TrueType, length 47376, version 0.0\012- data
Size
47 kB (47376 bytes)
Hash
4abf620df273ff5fe4b8e2fb8974b384
57a5674f9597d27b31b4c58197e4f88f69e6607f
f8a0fe1123bb5d8a3f465045e852077b3e0560989e86e66f3640a9d85f5078ff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Bold.woff HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: application/x-font-woff
content-length: 47376
last-modified: Sun, 03 Nov 2019 12:10:50 GMT
x-request-id: 363660903
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9502
Expires: Thu, 02 Feb 2023 02:45:13 GMT
Date: Thu, 02 Feb 2023 00:06:51 GMT
Connection: keep-alive

kit.fontawesome.com/adf8330f2a.js

104.18.23.52

200 OK

4.5 kB

URL HTTP/2
kit.fontawesome.com/adf8330f2a.js
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
4.5 kB (4508 bytes)
Hash
46a7bfb369f366d31e8348ad401ce268
c4c0e68c59b6d1246b52341e12cacb81ae9dbe4c
1d269aedf44fdc61befb81aeda0c767ad93a56d63e293d9a51c748e2f7555548

HTTP Headers

GET /adf8330f2a.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://agencezoo.fr
Connection: keep-alive
Referer: https://agencezoo.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fz8lmMFQO5CMNSfhaq7C
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 792eaee1cc41b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9502
Expires: Thu, 02 Feb 2023 02:45:13 GMT
Date: Thu, 02 Feb 2023 00:06:51 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (15051 bytes)
Hash
6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 8425
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b1e36ab-6847-48e2-8227-fc589124cb93.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7036 bytes)
Hash
6f4dbd75e0cdc28265ccbe825c5c5b6c
78187b014be0ee8bf7543fb873915db8a9c8dbc4
bf49642b990d73f58ca5f9ee979271ba2ab80bae94c8f333fa5737b16016d1c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b1e36ab-6847-48e2-8227-fc589124cb93.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7036
x-amzn-requestid: 9d54dd82-add1-4d7d-97b7-53c92eecb724
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJxCHAqoAMF3qA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcd3-109d34d11a9834886e3080ee;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U45NW79hI4Vtd7fV7kXnxqlxRQzC-u9PVlNK4D1pBkAa8CBYuUf9ig==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:06:05 GMT
age: 61246
etag: "78187b014be0ee8bf7543fb873915db8a9c8dbc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=adf8330f2a

172.64.168.22

200 OK

30 kB

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=adf8330f2a
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65321)
Size
30 kB (29926 bytes)
Hash
02db07725c0364377ba6225e6f1a3a66
2bf8f319dc0fb8560617f59e2a2cfd89c0dbf030
2da31276cafcb615caa49d0d703e31e89048204bb46f45557ba472f1fae50733

HTTP Headers

GET /releases/v6.2.1/css/free.min.css?token=adf8330f2a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://agencezoo.fr/
Origin: https://agencezoo.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"2dbe34367e935e2684b01124b0860d71"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e6c7f319441995c0d64be3f90dad8370.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: y8rWXRbxO5FUkBGqr6aOBZtuVxx02CkgzlZD9aIPK4HRAEJZBBAAsw==
age: 226351
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9TtoZEgl6zOH6egDet7w82mFjs51Xh4IqBqHPVHvLK9yUFNuURJq0b3Aun09cdI4vNxvFjXSA6hZhx%2FrnNq7dcjRd45Gaky2LPudYjXY23VLfxI3A1ze1mNfVqJRC4FZZJIfOA7GEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792eaee43f88777a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 77813
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/bootstrap.min.css

213.186.33.151

200 OK

28 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/bootstrap.min.css
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (65324)
Size
28 kB (27765 bytes)
Hash
d04bd18c5b6ca4e49c21ef5b1b7ed0c3
e9a8d17991f1f99ec11c2c10d41ba2698a336dc5
db7e940c648686c660622ad96ae9a338df451055ad50299a28dbb2cc497aa78f

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/css/bootstrap.min.css HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: text/css
last-modified: Tue, 12 Feb 2019 23:01:40 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660889
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 6476
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Regular.woff

213.186.33.151

200 OK

47 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Regular.woff
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
Web Open Font Format, TrueType, length 47336, version 0.0\012- data
Size
47 kB (47336 bytes)
Hash
a00a87150a0ff4c2bc215de5c0907f24
b182f28dd93bee0ab55270fce9aaeb111c111db3
8dd780947b9ca87bf800347c934ae4f2726b6a6e73339e1290e9a3a6e92b0f03

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-Regular.woff HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:52 GMT
content-type: application/x-font-woff
content-length: 47336
last-modified: Sun, 03 Nov 2019 12:12:04 GMT
x-request-id: 363660905
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-SemiBold.woff

213.186.33.151

200 OK

47 kB

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-SemiBold.woff
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type
Web Open Font Format, TrueType, length 47264, version 0.0\012- data
Size
47 kB (47264 bytes)
Hash
5b9c3c29201557c575f59745a3b25f82
52d883ccf879792087c5360cc2ae3c5ea3ec4022
377ed808aa05dd000d5832ef5a72f62d4bf9d504b5c36c588b173c45be928d66

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/fonts/Dosis-SemiBold.woff HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:52 GMT
content-type: application/x-font-woff
content-length: 47264
last-modified: Sun, 03 Nov 2019 12:13:06 GMT
x-request-id: 363660906
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/

213.186.33.151

200 OK

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	BNP Paribas
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/ HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: text/html
vary: Accept-Encoding
x-request-id: 363660888
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js

213.186.33.151

200 OK

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/js/bootstrap.min.js HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: application/javascript
last-modified: Sun, 03 Nov 2019 12:02:48 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660895
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/assets/images/idea.png

213.186.33.151

404 Not Found

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/assets/images/idea.png
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /connexion-mabanque/bnpparibas/assets/images/idea.png HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 00:06:53 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://agencezoo.fr/wp-json/>; rel="https://api.w.org/"
x-request-id: 363660904
cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=adf8330f2a

172.64.168.22

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=adf8330f2a
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.1/css/free-v5-font-face.min.css?token=adf8330f2a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://agencezoo.fr/
Origin: https://agencezoo.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"15e2713dff942747406520edde3fd0bf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 e9e4350b1ded67c8df30434cb8337934.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: sCVZFrT5au8XsjLI04piZxKctKzQ_vBBlaWjGfbiy3yP-wMnAqWVaQ==
age: 226351
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2BBKjJjiBo0%2FNZM8G7BRSv6mK42xX2jUH16yTul0ZVZL9NbJIhUJqlfe9yzuEkF7YZIydERH31uUkQ916U5j4HAZZSrS8qSgcHbjw0wZodPXrElNUez9stUWc2YgymuIORNHQOLt5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eaee44f9e777a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/main.css

213.186.33.151

200 OK

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/main.css
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/css/main.css HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: text/css
last-modified: Wed, 23 Mar 2022 21:40:36 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660892
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/helpers.css

213.186.33.151

200 OK

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/css/helpers.css
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/css/helpers.css HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: text/css
last-modified: Mon, 26 Nov 2018 15:16:10 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660890
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=adf8330f2a

172.64.168.22

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=adf8330f2a
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.1/css/free-v4-font-face.min.css?token=adf8330f2a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://agencezoo.fr/
Origin: https://agencezoo.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"075b2106ba08d32bc88fff3724503b1e"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e6c7f319441995c0d64be3f90dad8370.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: q_3W0-7mNnh0w4PVFWaej41F05du2sKHFZPLAMYSnERwtOF35FHk-g==
age: 226351
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bFG3UBHlrSFL8Vr2e84x5yWUlIZNeSgknN41ZBYye40Vl5NxNrUTr7g1LL%2BEYk5EJkgctXi9kuO0TF78IEadwHyMsDUm8W25JXQPuUTAIa%2BfOACvcj0uINCh%2FLsdM4L%2FuacIjhyyFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792eaee45fb1777a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/assets/images/idea.png

213.186.33.151

404 Not Found

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/assets/images/idea.png
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /connexion-mabanque/bnpparibas/assets/images/idea.png HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 00:06:51 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://agencezoo.fr/wp-json/>; rel="https://api.w.org/"
x-request-id: 363660900
cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
X-Firefox-Spdy: h2

agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/popper.min.js

213.186.33.151

200 OK

0 B

URL HTTP/2
agencezoo.fr/connexion-mabanque/bnpparibas/app/assets/js/popper.min.js
IP
213.186.33.151:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /connexion-mabanque/bnpparibas/app/assets/js/popper.min.js HTTP/1.1
Host: agencezoo.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agencezoo.fr/connexion-mabanque/bnpparibas/app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:49 GMT
content-type: application/javascript
last-modified: Sun, 25 Nov 2018 11:02:48 GMT
cache-control: max-age=900
expires: Thu, 02 Feb 2023 00:21:49 GMT
vary: Accept-Encoding
x-request-id: 363660894
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=adf8330f2a

172.64.168.22

200 OK

0 B

URL HTTP/2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=adf8330f2a
IP
172.64.168.22:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.1/css/free-v4-shims.min.css?token=adf8330f2a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://agencezoo.fr/
Origin: https://agencezoo.fr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:06:50 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"0d00741459c51dd7330d97cd19326a7b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 43334d331c518c3406b3d27e1a927864.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: IyhiZAqNnVG9WVI5GKXhpyE1bE39AwYvP3BC-5cvCilg5INjFZLb-Q==
age: 226351
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vrGsdiRCU099CWyIdnAQQCTKDZirhaRHlhBGDLC4nWU7zxefJK68cZTzeBserA7SlUPUvgHQ6bpnLO4p82q%2F%2Fkp39ei15PBM6JeOjIRZZck1xC1O20%2FK4RuTWjB7EuVzCGF5RqvNsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792eaee45fa4777a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (42)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type