www.credit-agrlcole-pl.xyz/
172.67.169.228200 OK 9.7 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/
IP 172.67.169.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2314)
Hash 3e9f0f511f60c8de2f02d793e22bb446
832820319920aa5b8df69d765237ce888e3133b8
1aea3457d5c7a787309cb206a26cf432fa4804cc7e48ec589cda861f2fa5b8a5
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET / HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 05 Dec 2022 14:12:02 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HFW9UP5%2B9b6zz%2Fl1nOpYusCKOpi79SXpbKqOwmrW8OEJTiNy58nuLeormKWV2L0dEOXw%2B7IZbX19hYLysEM0mHsjEB3shRHfbvVRVPSYbCFOobwSL2uEU%2BXFDs8qgfKMT07fA%2Bo0TvykeR0P1w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77594d96895eb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11681
Expires: Wed, 07 Dec 2022 04:11:24 GMT
Date: Wed, 07 Dec 2022 00:56:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5076
Cache-Control: max-age=125951
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 00:56:43 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 11:55:54 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18391
Expires: Wed, 07 Dec 2022 06:03:14 GMT
Date: Wed, 07 Dec 2022 00:56:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 00:20:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2177
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 80t7aO7Ra0DQoaLvBfHT+rCqdMC5Eh02S71XrefeGIXKx/ASw6TmFWo7lXTQF4koRg/PNoAdMPg=
x-amz-request-id: C7S86W6ACYWAX29D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 00:49:10 GMT
age: 453
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 00:56:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.credit-agrlcole-pl.xyz/assets/js/function.js
172.67.169.228200 OK 876 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/js/function.js
IP 172.67.169.228:0
Hash 35edfb698143b91bf62eb50e1094a4bc
ee715fa2749bade8eaa17b9cefac06fad347c844
ce428de40689be83fc27c8befe7e94d1d215dbf099b022d626645ff97ac1321c
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/js/function.js HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:43 GMT
ETag: W/"6b7-184c787e7c4"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BN1UCvfI5635rvSF0R6z38Sysx0kdRi45YKTGObId8h%2BqWbO0KbL89dlHVPel%2BuldncbDf%2BtXvdo%2FUOyAtXVI7HVUSX%2FVsRCpPNndC4T74IWcdSIG1mj8qU13TzBnQs%2FyYzN9YYbD8IJtE1jeg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d98bdb1b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/js/jquery.mask.min.js
172.67.169.228200 OK 3.5 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/js/jquery.mask.min.js
IP 172.67.169.228:0
File type ASCII text, with very long lines (542)
Hash 79da4f373f1f7585d58cbf93a1dc9863
8c955eef3af63e5d23f6e4a870937ec1a014da46
391009ed7dd177468df889af42e9f0cf921fbb353269074c6ba192922c8671f7
GET /assets/js/jquery.mask.min.js HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:43 GMT
ETag: W/"2087-184c787e8e8"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v0Sxv215DBzAEee3VKAtMWjMklZ2yMegnDaScw6OC%2BxYjq%2BsQguy4Dvs4Gjl%2Bc8urAuG1Qon7fqaRUkpp432TD1TnbQwaiCdEubJrjKWteqs1d9gtQOF3fbNPx4Ox1s8rCjtDOhYc950qVFzqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d98befc0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
172.67.169.228200 OK 6.3 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
IP 172.67.169.228:0
File type ASCII text, with very long lines (417)
Hash 1b5164cc4f220df31fc03447797be886
41b23848c252c59c94ad732add83d634636972e1
3b7ab3bb6700672d814581634b6ef12a8967609dd0abbd279157c701a4f95bd7
GET /assets/css/login.css?%3C?=time()?%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:39 GMT
ETag: W/"950a-184c787d758"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hNT9YJv9ufCheCwrAHkSmsR32iI8yaPpM9%2FAD6GPsyWVgUtMtD3l6zklcRqDiygik%2BifxkRug9uzwWrdQsmeA%2F7OMRa%2FTsdQCVBX85Ttl0iP%2B9pFvS%2BT2WvKiQ1vihqoVLQIXQ8X9yZu8mHyeA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d98ad83b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/js/jquery-3.4.1.min.js
172.67.169.228200 OK 31 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/js/jquery-3.4.1.min.js
IP 172.67.169.228:0
File type ASCII text, with very long lines (65451)
Hash 281e79c3468c820c3ed6b99e34a11ab6
844ce27bc796bdd5a4d8aa7615caa89abcf20ce4
1163e4002fb365ebb7e2d9302ab8a09501ce126646d50e2ae2d08a5c6aefc647
GET /assets/js/jquery-3.4.1.min.js HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:43 GMT
ETag: W/"15851-184c787e5f8"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4y8HxHfOdPh0dujCmP1A6CLnhY5nt%2FwadeNxfzpj4n%2FNoSlMWxQDpMFhRBCcWyKmudnRVrzzm07%2FccaTD0cW3ZDJ58X7gdqCSqst1TGNIpPOqU3EL84a5JjyO2h6uJhBDYx%2F5e29sZLiYGmZFA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d98aa9ab4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
172.67.169.228200 OK 101 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
IP 172.67.169.228:0
File type ASCII text, with very long lines (1582)
Size 101 kB (100574 bytes)
Hash 00363ad4300de9d5d2ce7936562086e9
4a0fd73fa34a5f9e1f6381dd066dc54784685bab
94968150c66bff21fe832afce17669cd9c892988ccd27a3e6efe6ef9ccf127a7
GET /assets/css/styles.css?%3C?=time()?%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:43 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:39 GMT
ETag: W/"caf9b-184c787d794"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Kr7C7zT41Dkp%2FoNIzqUKA5PnWhYBsJtRi7CrHb8V9iK0sFC3yr0vHUEqO96bXN%2BGaVkDBeRmpBzOCMOnK%2BsoejG%2FGKRgS0bzMf9TX%2F0l7dr%2FTykkNetb4HJXN8jMpOkE3UaCfIPZcaJBmf0ew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d98ad96b4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/alarm.png
172.67.169.228200 OK 6.2 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/alarm.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 44da074b7aef6f74b19c699344a48cd5
f063206479f45b442f124c7ddda39bdd9eb39656
35bd162b249dc9aa1562278df345c30abb81683fa03c6b3bfc6fa7fb833af046
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/alarm.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 6242
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:00 GMT
ETag: W/"1862-184c78915eb"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BrHF5D9xOrweeU04pDyFSxBVE7rXKVC3G03v7N4llFlj6GSIh8I6rO9v%2FhwxK2FkeWvdtGOcV85SCoqeOnV4zYGsdrq9z03YPWvAF5hKC%2B5I2JYhRE8tKmUqE7g31KakCI%2B1qHzgwpu8E%2BLXlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aafbd0b51-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/chair.png
172.67.169.228200 OK 5.2 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/chair.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 73ca2a9860ebd77bebb99788bf505a99
e58c708ca2311ce1a805b0fb6ca1ff12d00464f7
1f5a5c9e968d5c750b37224b235b0db6854bc4b0d57b48cfad5b7047a2740d13
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/chair.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 5165
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:01 GMT
ETag: W/"142d-184c78918ff"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vd%2FThvxgPCjWF%2FAoh9XMCcG%2BXIG%2BwTVhp5c5MPCr17NhxwGw4M0zgcT1YSjL9rVmO4vQD3dbRcvRtRBn45uQzRtQ1lL9hALaqiC1fSzyGOW2pW3EqA2TEhuOL98z0GwMopzfHIhhsQoJBf3zkg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aae9cb500-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/book.png
172.67.169.228200 OK 3.0 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/book.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash a7ad657e040088db222de18f80b311aa
f162599d02b78b9d002f002738f1e62e54b1a115
fb9a2463fdd8ad6aef56625b6d9b86ad425b1baa5cad6469787f48b2f649e497
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/book.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 3015
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:58 GMT
ETag: W/"bc7-184c7890ab3"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1WERmBV7l1hUfAd9cS8p0ijY4ZP0bVqcxxQSuhXm96%2BGXFiVl4nvcTuYHZIzbDr3Aw8fN3ly6aDwh6DnWUGqS5lHUDiVI0HjWFwDuS5p%2FnY7BkHMx084%2B7wQUxtYWV3THNhxc5Mw5PZp9LZIYA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aaf89b505-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/car.png
172.67.169.228200 OK 4.5 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/car.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 28318d53a065a9875ab4c82d139053d9
d55ce64721c239122703052e13e1686cdc316402
0c65e39d2fecfb889ae6d9259c8e11cd7b95f8df03f0b0ac18bf2cf0e8cf7a3d
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/car.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 4478
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:02 GMT
ETag: W/"117e-184c7891b73"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Sf%2F5zcUEejJgzPSwQE0p1l5gkUGl1T8ZqfejvJaoXasGQ5vz6Fv51mfusnJkvhMujIsxkjOLWKbed9w0Dos1dZCiJv%2BKBVN%2B1HqDob1RLbWla3PcW1K6gE3zqnb3MXrLGmTl5P6tke%2B%2F39Ujw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aabdfb4eb-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/ball.png
172.67.169.228200 OK 4.1 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/ball.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 0a9153354303a902d4514e9943766934
67807c4f5c98dae2cb211c0ae455ab2e76b81971
9f28845477b709f6438e7e7a25bc302e92415e791d401597174d60db81f4eac8
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/ball.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 4136
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:58 GMT
ETag: W/"1028-184c7890ac3"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4zWhHbh9jail%2FSxgFQi8QJMz2v9DQu2%2BzCa5ho0DMG54%2Bv09OHUfiRavHl0FxZsOWItoBd%2B3Wd8cHbjaneiIEaRe4yePAN92GnE8rkB0KC%2BKpvJ38sGZKX9P6sjgB1wgGU0dCEW5WO53u%2F%2BLg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aaac6fab8-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/banan.png
172.67.169.228200 OK 7.0 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/banan.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 7a258c22bd2f6f064707f22bfd9bcf28
21a72b358421e1bfbf3bbe431092550b88332ff4
254e5b781b6d9302bbf8158c8b97c0d19696fe2abef2e3b077fe76c08e0b6d53
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/banan.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 6995
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:03 GMT
ETag: W/"1b53-184c7891e3b"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsfeRSlRs3LWf70MJneqZPU5zW1XwHOKd6XpG1lf5szgZiQMLR1K5TsmHtXH%2BclFG6lkhnNTDLq500za1jl9fgKrtISuBbzGWxLu3K0K5CWjja4d%2BV0wkyxn6n8s7Tg5wfvorDCEqrf4amPq4A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9aae48b4ee-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/crown.png
172.67.169.228200 OK 5.5 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/crown.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 69449cab12d92a83e6e91c00abf4d888
1d029dbe1275deabbd1aa4dc3f2441f357c9c800
186b9b993e681682bdff86b4275240894621abb5d8499c59411986ce5cb65953
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/crown.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 5469
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:03 GMT
ETag: W/"155d-184c789210c"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M1XaR%2FTrXnFRXc4sKEBZ3mgMqSzJ6Spydf6SGqxgyrnV3uXC%2B5vukKr1xZWBlRnO59%2BTO8dBisPgM2FkqXUW4iPpSsPAEnzys3CS9cApN4QqVxjYH6BPQVJbNrlqMOtuUVZkcTLXMuKGRPP6ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b480c0b51-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/flower.png
172.67.169.228200 OK 7.3 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/flower.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 97b2004dd3033aafdfd049ede62d1040
64c67ba5435db234c369b8654b6d6574374d16c1
55a7effc93a5233c6302ec695170e981a304786af6a2ad0c896218a8a50b5ac0
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/flower.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 7322
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:02 GMT
ETag: W/"1c9a-184c7891bcb"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OQKCZlcOo0Zj1cQ53rEoqkth2GCp3hOxG6jVOgHr9kKqQEWKkUvlFs5FjmZqktbjIxTS%2FUbVyKnwRhMrZvdfQPlDylyNiqLdqfG5wCAE%2BJlifoY9PhFHrpBaurP9jNpJAh3XFiGijjuLOpUYOg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b5c38b4eb-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 00:08:58 GMT
cache-control: public,max-age=3600
age: 2866
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.credit-agrlcole-pl.xyz/assets/img/login/glob.png
172.67.169.228200 OK 7.8 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/glob.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 2dd8da5ede3377f3e06f028906996999
1618ff47301585268e7f1ec269dd6f37f8c44b6f
e37b33086192057eb57c637efa91b1902c747d6564b9a13ad5e520028f28727b
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/glob.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 7824
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:59 GMT
ETag: W/"1e90-184c7891083"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LhvBlQqM2fkyWMr7zIkSd3aZHIq9I%2F5iIeA3jeVt24wZ%2FjcBcKBhdWPwQzAvmJ1Xtx5YhRjMAM2a3QylyRWrmcdbPfF4Bq5kxhF1hyszE%2Bddled3EhD9f5toJtizOSmHFVrIXLQ%2FF1yselATlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b5ee6b500-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/lamp.png
172.67.169.228200 OK 3.4 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/lamp.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 0edd2081cf62e3c07fee861b5c8503ee
c35cf78896d873a19cb1b8bcc7facde51ece848b
7960f079199d561b453d892312214bde90520a1c1420573a18991bc8a76ebc3f
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/lamp.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 3393
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:03 GMT
ETag: W/"d41-184c7892150"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q40zqg9AUKpCe5iOnW2ARD0cSqcPNxdHNSFhuyLHuVWeFBMspgLtDCInfzzAOAZnb9PzTGgmpwdvghwbyYWbufwVUjPh3PMwxyPCXmiXjf96YQnMrG8FOB7fvzcdBcUQlNsN6YWGhvMR6ayGVg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b5febb505-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-light-webfont.woff2
172.67.169.228200 OK 35 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-light-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 35348, version 1.6619\012- data
Hash 86cc0705ad93ff1a9af2e29e79b2756b
93ea30fde176606bd2f48ecf693261b2acfe4a04
50bfd735668a45a4c6543031c04fae507311b41b5d63946e3c903ef19822e940
GET /assets/font/opensans-light-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 35348
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:04 GMT
ETag: W/"8a14-184c7883a22"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VLHx2bJd4FAljpbhQpKwuqwAQhGth6wbXe%2FulHRm45zdamSLYQtvhLlLlh8wWHlISIUbQerlFh%2BtF9kx9RiNvM7qq068qoYM9URPZWpX%2Bk22l9PQyy12Q4Q%2FZsS188eyA%2FF%2Fx4PjTlnyUmUlcw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b8e92b4ee-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-regular-webfont.woff2
172.67.169.228200 OK 34 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-regular-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 34004, version 1.0\012- data
Hash 24a172d8f4935ba8800705079712cb1f
976fed6965a017d67c8ca33a76ebc1ecbdab0f6d
a70e4d4041e8610a4a6f7cb57d1d4fa1504c40ebc5643f2ad5d592f312ac5ae6
GET /assets/font/opensans-regular-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 34004
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:05 GMT
ETag: W/"84d4-184c7883d2e"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fIq7gLJqzad0ApMnOuNOHbYSWRvs4aoq%2BcbFm%2FuoUSuFk16Fv8w9JL38Gi2NIA79qEm6%2B%2FgTLZI6PMePyx%2FQDE6uIguyuyZyqY0SAaF2%2BbHNmAYBm%2BblnFOhten2VaofwOqUxBQVhFe75tAYTA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9bbc6db4eb-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5065
Cache-Control: max-age=120871
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 00:56:44 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 10:31:15 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
subca.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash ec062ff4a0a72fb9b5ef6281c19b5b76
ac2c3c8236345dd38222b1c62f4f84b7183d210a
b82b21b1d14c284cf24f35f548e6f163effcd7dc6b693325af3ffb70bbeddc7c
POST / HTTP/1.1
Host: subca.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1579
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=890
Date: Wed, 07 Dec 2022 00:56:44 GMT
Connection: keep-alive
X-N: S
www.credit-agrlcole-pl.xyz/assets/font/opensans-semibold-webfont.woff
172.67.169.228200 OK 46 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-semibold-webfont.woff
IP 172.67.169.228:0
File type Web Open Font Format, TrueType, length 46296, version 1.0\012- data
Hash bf950e1d5da08d3068131a921aa017a6
bfce25cb452330b4c1fbc2d45e588938dcf980ce
204136a39477005828fd9b06796ef16ff03a78f0e37e7931f1cd69ba20ced957
GET /assets/font/opensans-semibold-webfont.woff HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff
Content-Length: 46296
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:12 GMT
ETag: W/"b4d8-184c788599b"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3sf4SZxL4LRxdE0cFlUbS3W7D0d8%2BtO0BELiXLaILrcex7lt3E11Cfks36X4faluTasAadFYyoVlasHrQkPuX2XC9Ik8tTX4gmRVvO8WtWjK2C9YgIeQJoHaVp6ajDdoXlCfziRGHcxwkvFbng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9ba83b0b51-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-lightitalic-webfont.woff2
172.67.169.228200 OK 33 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-lightitalic-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 32704, version 1.6619\012- data
Hash cd9e73a4bde77bd40ce780be3a8b79ae
953f5afce95f4836d9e590a0d9c03cd543ce3ab6
284b9a575b20865beb68ffbfd8d246ac7b33c6f2b54abafe2b649b1da573985b
GET /assets/font/opensans-lightitalic-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 32704
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:10 GMT
ETag: W/"7fc0-184c7884fab"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pGsuR1T1a7XZsPcCcXNf2mozUSSWnLw%2BSbpU2caNO%2FHp0ZyEVZ3MTC865vgRUjQDDA0DI7BoAokVsK46ctmEOrLiV%2FHXNiRYPuEJum1xjYKFkia7BhVRXiAGR%2FsGu8lBENr4givV%2BuM5zZdyFg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9bf857b505-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-extrabolditalic-webfont.woff2
172.67.169.228200 OK 32 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-extrabolditalic-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 32184, version 1.0\012- data
Hash 73998e4c1521345cacce413a5d520dd5
e17de457214f6fd41f0f85d4e0e5dd95883b2293
ad9cd7d72a8e0720920ba26087ba2a90a580552276782ffac13c7783d5cf4f4e
GET /assets/font/opensans-extrabolditalic-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 32184
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:06 GMT
ETag: W/"7db8-184c7884342"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIcSoH3j81QunvDcAhsydsP8D3Yc7xT4KQj9A6%2F3C1xNIaDGpaw8LnrlMFPRnDUc90joJVGNRJz0Gx158PN3%2FTS16qH5FEKbMWnX9d3rL0jjdJukdjbjppMX82xLCkKZPzmewgrtUy1DBDF%2Bqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9bff31b500-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/tatry01_1920.f28963ee1529aa8362c8.jpg
172.67.169.228200 OK 387 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/tatry01_1920.f28963ee1529aa8362c8.jpg
IP 172.67.169.228:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 387 kB (386670 bytes)
Hash f1feb841c26043f516f1d24f1d6e6850
bb8e182299111347f568d9777d13c9865569d95d
88a2e09afe60f4102ff2554430055172f6754e5545e03ace0710feedde55618d
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/tatry01_1920.f28963ee1529aa8362c8.jpg HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/jpeg
Content-Length: 386670
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:52 GMT
ETag: W/"5e66e-184c78809ad"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x6fkN3rIg6IJMFQA4slslj4B8dC0uTf6NyOWHIEJXj78srEBbLHV5v%2B5a93KUUZzBD8cc3jr%2B5oj9k%2FmBNRzNSqWz2t03rXIyOX8VXyxHTb5svD%2BBKLVKQpBxICRkSPHz%2FvkT12daajvy2AjCw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9b6ad7fab8-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-extrabold-webfont.woff2
172.67.169.228200 OK 35 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-extrabold-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 35188, version 1.6619\012- data
Hash f5fabb7de1d601e1dab7491ba2c2c396
7b05ff6f28be0e4a93b3f823fb2bb9988ad95f7f
7c58b33f645e88b01c201040cf01bab2f0eb9fb9359b099bfca6c323278155f7
GET /assets/font/opensans-extrabold-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 35188
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:07 GMT
ETag: W/"8974-184c788464e"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qv6VqGVCqmmMtuPqsvsIMfmu09ItMrvurIKEsDsbqEgMAGdg%2ByLHyiu%2B9RGfbk%2BVHR2LnkiHMLd0UaNHfktm9am5DFovEMAc1biE5PYxUF%2FrK76%2FRuIBdgG2XY10KG9CBCxtzw6jJxACN8Y2PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9c7ee1b4ee-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/opensans-bold-webfont.woff2
172.67.169.228200 OK 36 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/opensans-bold-webfont.woff2
IP 172.67.169.228:0
File type Web Open Font Format (Version 2), TrueType, length 35576, version 1.6619\012- data
Hash ba9042df41dc2df8230eb342420e7037
45a52e3cd8c6e811807dc598e4e887575d5aeae2
c55bff46a090c91cf87cc75b85db8567619410328fc7fe2d88690e1dfebb276f
GET /assets/font/opensans-bold-webfont.woff2 HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff2
Content-Length: 35576
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:09 GMT
ETag: W/"8af8-184c7884cbf"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=77YCZhIP2gazYOX%2BoY25Rjtk30tdT2%2BwAMli6Z8cNSTCiDuzT3%2B5vTMQxnLa%2BMY%2FVaiRQ2ZHfg6Xj6%2BOjGdubm12g3mYqUq7gXFCTpO1CjBsqLX33ycAYNGLi88rYEzGIY%2B5pMT%2B4CrzYY2LfA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9cd8a10b51-OSL
alt-svc: h2=":443"; ma=60
evcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 evcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 3f385b8c722b9e4c6d54246dec3af590
3fe391657e0766dee0e98300eef3d43ceea59cb9
5703d1aa97bc9885d06e173a4c6e610e233b24013038e328b4fd16b4a5dce905
POST / HTTP/1.1
Host: evcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1605
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=113
Date: Wed, 07 Dec 2022 00:56:44 GMT
Connection: keep-alive
X-N: S
www.credit-agrlcole-pl.xyz/assets/img/exclamation.4fe516ee1ff6000c6f2d.svg
172.67.169.228200 OK 664 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/exclamation.4fe516ee1ff6000c6f2d.svg
IP 172.67.169.228:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 81bd4b640afc05f1fdc2cfc50bb969db
a853ab04166929091c74713876d1098865c5deef
f8920b4811805519b58c3abc939b3a0659ea080c8d6c4620ec6864c17dadbc31
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/exclamation.4fe516ee1ff6000c6f2d.svg HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:48 GMT
ETag: W/"431-184c787f9ad"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7PlqF%2BF9jEhtnjCrbKRM3hiVPdThOPcqy3Jhe06nRdrvouDlsMjggRAkXcK5vXsQ4CIBrQLEOIwpNIFhK3MrpzpqFqng1%2BoYhfL12nu2dkGW80iLlb8TexszmnUZmBK7I%2B8lOFV4ahT%2BpqRteA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9cef96b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/ca-color-top.png
172.67.169.228200 OK 7.5 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/ca-color-top.png
IP 172.67.169.228:0
File type PNG image data, 330 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b2f141c0770ccaba1511ae0d65f76d4
a2f9e88198545a84187a64026585156bacccfcd7
5a6f9c5f1c09ebc5a2a98420e83e6fd10344ab339bab5dcfe3f2327f264e27a5
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/ca-color-top.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 7534
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:57 GMT
ETag: W/"1d6e-184c7881fb1"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=388S5vrm4AGMCOG4DIeNjM7%2B6ZCNv%2FoFa4TKDLM8Cux01vhAkLb%2Fu8xUZGTZT4oBplc%2BG%2FBrdk0O2eJSNjxS8Bn62xW4YCS7gJc%2FiHoJlujsr6YL8xXzX%2FjPhVFCNwPi5CLAqNhOa895RyX0Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9cd8e6b505-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/ca-bottom.png
172.67.169.228200 OK 2.6 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/ca-bottom.png
IP 172.67.169.228:0
File type PNG image data, 72 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f2728ab190d710ae4ea280e4088d6de
b6ad080c144ca479fcb2bb8bd3c6887d1ade627c
186cba3f3acdd82e4a5ece7a9c6d2b4a9508569e6fcea7bbd0fe13208574d233
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/ca-bottom.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 2594
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:52 GMT
ETag: W/"a22-184c7880c55"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WiS%2FRu0KMlUzp15i4KG2UL1MuLfQAVYCZcM1ILGuzFB8YnAPow98S3lITuYlJ%2B05lD12Te6pVJqYV9REV6acGJxfcmYXLaZ3yq%2BnDKLGkHejixZLx9PSwrVmWo8d%2BxIEhx0COy6WxK%2FmVDTgwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9d3b36fab8-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/classes.png
172.67.169.228200 OK 2.3 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/classes.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash ae112da84c959757851c886736087c34
d80659e6ab994072b3aaea1172fd6e130b7965f6
8bc44ce0e2f1942d9006eca4357eacb09805ceee2d1b7f8ef0440f175a8d5290
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/classes.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 2314
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:58 GMT
ETag: W/"90a-184c7890d9f"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRMvdpxCGSjrcSuheT3jEFcbXyu5itcdoVEzOHdfdxTeAgkXoaleVo0icBYLfpxjBszm%2FHdMoW6UHsocD2%2B97%2F5%2FghsidOU0wG5hWJcDrXX8UOV144mWfcJaBdCm3AVQD6%2Bm2AKEn3HXaH5drw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9d78d30b51-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/flag-pl.2115d36b89c9c6ae4c50.svg
172.67.169.228200 OK 526 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/flag-pl.2115d36b89c9c6ae4c50.svg
IP 172.67.169.228:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 4b86bc88469ec72fbd6ece6a5669de91
8e59ebfa40748055b1106b53978710467b1d5d35
35607a495387fd4090269d25ab9475c3a3e6dc27113a65a704b210157cf81a1d
GET /assets/img/flag-pl.2115d36b89c9c6ae4c50.svg HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/login.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:54:53 GMT
ETag: W/"32e-184c7880f51"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YhuSQsDLREdPXZ71FC48OKA7puHdAkPl3PBzGt6YUGqk058uUAbQM5PathDw%2BV1h1S%2FwFMeO%2F8rOBaryrduv%2F8NE0gPKrb7aTaXQVPSEPe%2FtquNkEhtmZpbcaxSExgZjWWIf6BwLzwgR%2BsuZFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9d6f2cb4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ca24.credit-agricole.pl/web-ca24/assets/img/ca-preload.gif
193.0.242.176200 OK 4.5 kB URL HTTP/1.1 ca24.credit-agricole.pl/web-ca24/assets/img/ca-preload.gif
IP 193.0.242.176:0
ASN #24756 Credit Agricole Bank Polska S.A.
File type GIF image data, version 89a, 32 x 32\012- data
Hash 69f1ee64496147dea4cd415f138b5c6c
b7284e4bd2c0385b4c9826856946e16fd1090b10
30a794b81da4caa00cbc67256d8bd6d4f412d2b47e9616f22d4cfc9a2c78e04a
GET /web-ca24/assets/img/ca-preload.gif HTTP/1.1
Host: ca24.credit-agricole.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public, max-age=18000, immutable
Date: Tue, 06 Dec 2022 22:58:58 GMT
Expires: Wed, 7 Dec 2022 03:58:58 GMT
X-Frame-Options: deny
Referrer-Policy: strict-origin
Content-Security-Policy: frame-ancestors 'none'
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Length: 4547
Content-Type: image/gif
Last-Modified: Thu, 10 Nov 2022 08:30:24 GMT
Age: 7066
X-Cache: HIT
Accept-Ranges: bytes
Connection: keep-alive
Strict-Transport-Security: max-age=15552000
www.credit-agrlcole-pl.xyz/assets/img/login/wood.png
172.67.169.228200 OK 7.8 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/wood.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 2fa39181524d568ef3e1533b7ff97f30
0ca6d5cadbdbc46a84dbf1ede7cab7706f7e38f9
a8acfb05ba8c94419ceae949ee90aeb67530c1a2010b1572741db1de9428736e
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/wood.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 7808
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:00 GMT
ETag: W/"1e80-184c789135f"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iXuVUdaEgXvyq%2BzVSH%2FZO5VelRuOyghEIvC7BakgzwyoX1NwFIl6CSXRSrGjvfeA5W9aiwciVHSRsFcFHd9EGS39Of4wAW01D859P7ys3xds8CgzVTHVbFRxDGALkOXn5K56gWwgK%2BWhaH5CYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9d897eb505-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/font/cawebfont.woff
172.67.169.228200 OK 256 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/font/cawebfont.woff
IP 172.67.169.228:0
File type Web Open Font Format, CFF, length 256080, version 1.0\012- data
Size 256 kB (256080 bytes)
Hash f052e468cd4e8dd9069845b02ff232c1
95026d90e31cc94ac0ea405bdad7822271557f97
52a9cab2cad3ff46243b9f54fc054191700fd30c9b09a8ed7b25fe8e3a0d36cb
GET /assets/font/cawebfont.woff HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/assets/css/styles.css?%3C?=time()?%3E
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: font/woff
Content-Length: 256080
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:11 GMT
ETag: W/"3e850-184c7885677"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bS973oh7J7UjeAxfPLRltnznECqVLBwP7sOHN0mmkbqtY4e%2FXUgNYWdThLfZLuU6fS3i2fBeg4Ws1tErKAD24zU0p8d0XamUi7iocQt%2BwVfF%2BvksvIFZ00WaUAu%2F4YA2TNziLHu2lE8RaePucQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9cad50b4eb-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/sneakers.png
172.67.169.228200 OK 5.1 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/sneakers.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash dcbec7a13b63eda31f32c72f3872afd0
b6ab4112ab7307eaa55d66f7fd0855bafab316af
109800d7965f85dcc86e081004d3cc82dbccb7d6ffee3e07072405264605d148
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/sneakers.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 5130
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:55:59 GMT
ETag: W/"140a-184c789106b"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g7R7eR9k2BtgabCM0OOhM%2Fo6lN%2BN7FaV%2BC%2FE9uQWNG5qiGniJJCOzFoZAH1ZVmiWYaWQJwz63csLP5C5hIHrsmE8itubRfYPUkwfuZJwndPLhwbEaiAmJ3PLr9RL0VfsM%2BDJpGYl%2FMInIOwp%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9d8fdeb500-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/sun.png
172.67.169.228200 OK 5.0 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/sun.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash b07db016614ac91f72b4781b087735e2
8c51f17c63a8c1a4056448afecfac0bf88bb5dfd
35a6e2f24c278f8518944acc7339932cfd94d960c36040c3c239bb0d31f26bb7
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/sun.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 4970
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:03 GMT
ETag: W/"136a-184c7891e97"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3aSjkCBipxkbjIj7G2M5h4sXZpybWPPjxIZzKyRqTa865iCTn7YEtSrd8DsTw2RZnmiKuL7qW0hmpngyfiKEa22S1cMLZsXvDW9gAp4dNdX7PiQJNNo3xipIjTS55JmT2pMvKxEsybK%2BRAOc1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9dc8f10b51-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/apple.png
172.67.169.228200 OK 8.3 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/apple.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 20f3c59b42b9ff16f6834f1c279e307c
51b6888e1c6a04e9b8708f7dcc4ad491b34b53ab
aaca45c6c0793ed6f5674ea388b60490347b6e3e4976374d49940aaccef599b0
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/apple.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 8310
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:00 GMT
ETag: W/"2076-184c7891623"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nFdI1b9W86rKAqsSpfgySwmJKPu%2FkErIX6jdZveXO%2BO7hN7v7xhevdnIqPGVKkTEWILAlNbmN0kLu7XINusMjosqO0RkNBrU1fz35n8maI8slRxBKn1hmQI2fiyOOz%2FW7VG50IHFiv0Ki8006g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9dab44fab8-OSL
alt-svc: h2=":443"; ma=60
www.credit-agrlcole-pl.xyz/assets/img/login/rocket.png
172.67.169.228200 OK 3.9 kB URL HTTP/1.1 www.credit-agrlcole-pl.xyz/assets/img/login/rocket.png
IP 172.67.169.228:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash e20e33d0803781f353cc552ede91f96c
78bd1baa98c8c1b122d197d64997786980471cea
e1d40ae827b74c1fc3a168e014832c4749d3d7411aa40c714e0bf008395f415f
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /assets/img/login/rocket.png HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/png
Content-Length: 3900
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 07:56:01 GMT
ETag: W/"f3c-184c78918ab"
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCouaGJdaAw9lMsqv12ZWyvuywzm0mq2PPk0QUToMLhdcs%2FIPNUFx0g6anVhbqtJzLYDs1ZGdg8xwStwxQ%2FhD6nikvVz%2FrcaFit53OeL33mCQoQDewdYxNPgcA5GnrcUpqEDn0nv0Sh4GhaFQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9dcf4bb4ee-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.148.53.106101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.53.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qbDrEk8i6kExLhy9HYzqFA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JYUQQiWC3o+dbyi+7d8gUKmQips=
www.credit-agrlcole-pl.xyz/favicon.ico
172.67.169.228200 OK 723 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/favicon.ico
IP 172.67.169.228:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash eae90e0dc6e593dc1c4b0783d92bfa15
51189178246c35fc03187d52a61a4ca8d33e483f
8549024641e120c78fe18cf9bd5422a78f980931e05be8184b0f3ec0469a44c9
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /favicon.ico HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 00:56:44 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Wed, 30 Nov 2022 10:02:45 GMT
ETag: W/"47e-184c7fd1f33"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zrhBd3B5BZDwQ73vRURvEwM7ENoS7kiFWMByCtA3isN03c%2FfnJSsKBNUAmvkjNf6ijUPUuB3P7GzIhEO%2BwVTJRcBSjEf8ziHvRkNlP3lDr52YFwTyl%2B8v%2B%2FN5Y2Eo1j8zjn8fWK7eQiQDYYiag%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77594d9eab68fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3282
Expires: Wed, 07 Dec 2022 01:51:27 GMT
Date: Wed, 07 Dec 2022 00:56:45 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3282
Expires: Wed, 07 Dec 2022 01:51:27 GMT
Date: Wed, 07 Dec 2022 00:56:45 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3282
Expires: Wed, 07 Dec 2022 01:51:27 GMT
Date: Wed, 07 Dec 2022 00:56:45 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3282
Expires: Wed, 07 Dec 2022 01:51:27 GMT
Date: Wed, 07 Dec 2022 00:56:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg
34.120.237.76200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cefc5a863db79a7a8acd7366322ea34d
ec084f21bd0bcf5c101366e5732421835b3230d3
ee5a022da888181060a9d4ac8ab18fb8e35143b5f046f905d38553b9552f0bbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3175
x-amzn-requestid: 3b5ffd5c-a8a5-40d8-b370-c13b0da5f543
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csXJEF0hIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6bd3-40d73fc5702a607c4ef71574;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 22:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gNK10oIddAZwVCL8NzMqRxFQcLA2VOGXu5y-Pk77re_DWmyeTugluQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:47:31 GMT
age: 72554
etag: "ec084f21bd0bcf5c101366e5732421835b3230d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffedaa717-23e2-407d-9833-52d537b9b6c5.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffedaa717-23e2-407d-9833-52d537b9b6c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2d237b386960b3fbbcfdde0d2f0179ca
46c6733ae3f0c01f1ec1f71790d71cac9797fcd2
4a86ff99f57d9dea3d7f2f22a02f54f3e9bfbdfca07722d1a7c3d25a1dc5160c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffedaa717-23e2-407d-9833-52d537b9b6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5704
x-amzn-requestid: 7b87f011-2d7b-41fc-9897-358e5d1a3e5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cc4a2FrvIAMF5tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63883aab-32ed5f3631606c622938642e;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 05:24:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yeauf5fYorNWQgdcsLswhkdLfT_cs5GJcl1dcNRs6zMpTLoN0UWEjA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:40:30 GMT
age: 72975
etag: "46c6733ae3f0c01f1ec1f71790d71cac9797fcd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd933687b-86e0-407a-9bff-2debb09d5167.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd933687b-86e0-407a-9bff-2debb09d5167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 550ee57c325ce8d4892400deb24141d3
acece1761a7d4d3926500726c19d528bb204ef4c
7cc68e966362916947e7d6e24d3c001c64298fec2438a97538765d801fa7c92c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd933687b-86e0-407a-9bff-2debb09d5167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10362
x-amzn-requestid: 7fdd2011-e283-467e-9f04-741946a834ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpl_1EsooAMFhvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5065-0cddad1919d984065bd0b03e;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 01:59:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uhgTdyHGPZ1Ocp6wLQNVgcZ0z2CPyV0a_51MXD6Q04tsJ3RhgMY2Fw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:58:02 GMT
age: 10723
etag: "acece1761a7d4d3926500726c19d528bb204ef4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ee62c5e846e8ad4808f4724f15146d
6d55b299f906908309f91eaf0a720ad65866db04
0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fo3lMa6shsclTxMwkqU7b-FdfADL1J2vHt8BNpEImo0gsmmI01BNTQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 10:08:58 GMT
age: 53267
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4ORpzqbzQyJz_i3wpxf_07mXK3ovj1JT8kn-M9fdrGRgDVig7hhN5w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 16:47:32 GMT
age: 29353
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4884ce2731d3033b12e4792c1bbf453e
63b6efc98cb04228d82ac28fceb97bb1cf8d82fb
8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tM0WOO_Ypgj2QxJSz9GHZZTsKjzsvyD6tjpp4G0ZpuGAIGmnEe4oqQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 08:11:23 GMT
age: 60322
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
172.67.169.228400 Bad Request 155 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
IP 172.67.169.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 38b4930f1180292d1f82d7e7f9bac8cd
cda1f69ec2d5c3ad7184074eeb051b3881bbb757
efca0895b4d88b27a94249f8e7ac0083eff0a4ff3ac37c2841b3f6d7e11c1905
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /forms/%3C%=token%%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 07 Dec 2022 00:56:46 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -
www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
172.67.169.228400 Bad Request 155 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
IP 172.67.169.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 38b4930f1180292d1f82d7e7f9bac8cd
cda1f69ec2d5c3ad7184074eeb051b3881bbb757
efca0895b4d88b27a94249f8e7ac0083eff0a4ff3ac37c2841b3f6d7e11c1905
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /forms/%3C%=token%%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 07 Dec 2022 00:56:48 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -
www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
172.67.169.228400 Bad Request 155 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
IP 172.67.169.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 38b4930f1180292d1f82d7e7f9bac8cd
cda1f69ec2d5c3ad7184074eeb051b3881bbb757
efca0895b4d88b27a94249f8e7ac0083eff0a4ff3ac37c2841b3f6d7e11c1905
GET /forms/%3C%=token%%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 07 Dec 2022 00:56:50 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -
www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
172.67.169.228400 Bad Request 155 B URL HTTP/1.1 www.credit-agrlcole-pl.xyz/forms/%3C%=token%%3E
IP 172.67.169.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 38b4930f1180292d1f82d7e7f9bac8cd
cda1f69ec2d5c3ad7184074eeb051b3881bbb757
efca0895b4d88b27a94249f8e7ac0083eff0a4ff3ac37c2841b3f6d7e11c1905
Analyzer Verdict Alert openphish Credit Agricole S.A.
GET /forms/%3C%=token%%3E HTTP/1.1
Host: www.credit-agrlcole-pl.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.credit-agrlcole-pl.xyz/
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 07 Dec 2022 00:56:52 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -