Domain assurance-epargne-pension.fr
Germany
Akamai International B.V.
Software information

AkamaiGHost

tcp/80

nginx nginx

tcp/443

  • Open service 2a02:26f0:3500:14::1724:a249:443 · portail.preprod.assurance-epargne-pension.fr

    2026-02-05 07:44 

    HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
X-XSS-Protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';form-action 'self'
Content-Length: 2747
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Date: Thu, 05 Feb 2026 07:44:50 GMT
Connection: close
Set-Cookie: .sess=rgguibbohgcn5znlcakqxkox; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: .sess=rgguibbohgcn5znlcakqxkox; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: xsrf=tYiDB4SZXoeLber03_XVr-wAjOho64QZ58PnupViWIZq5E9gzLE3j2fo2YxbUhqasMmQ9Y67H_ZTVYUBFyGPfqww7_Rxca5ojApjAZU1j7w1; path=/; secure; HttpOnly; SameSite=Strict

Page title: AEP






<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>AEP</title>
    <link href="/Content/css?v=ORcmx4VdYBLFIcfAnx26uaVMpKC8Fs-CPJqzfnSOXjE1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=wBEWDufH_8Md-Pbioxomt90vm6tJN2Pyy9u9zHtWsPo1"></script>

    <link rel="stylesheet" type="text/css" href="/Content/migration.css">

</head>
<body class="ofi-body">
<h2></h2>
<div class="container">
    <div class="col-lg-4 col-lg-offset-4">
        <fieldset id="loginForm">
            <section>
                <img src="/Content/Images/aep_logo_menu.png" class="img-responsive" />
                <h1>
                    <small> </small>
                </h1>
<form action="/" class="form-horizontal" method="post" role="form"><input name="__RequestVerificationToken" type="hidden" value="UCJbArz2CxpdK3xY_uop_BKNgaGvrBLaitWurtECz7QfoQhqrdq9LKDxS0ZCt-e55rsg4OF2C8cfhKjSpeeTYBQkQcUi8kpMSKIaMzZtGhg1" />                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input class="form-control" data-val="true" data-val-required="Le champ Identifiant est requis." id="UserName" name="UserName" placeholder="Identifiant" type="text" value="" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="UserName" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input autocomplete="off" class="form-control" data-val="true" data-val-required="Le champ Mot de passe est requis." id="Password" name="Password" placeholder="Mot de passe" type="password" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="Password" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12">
                            <input type="submit" value="se connecter" class="m-auto btn btn-lg btn-default" />
                        </div>
                    </div>
                    <em>
                        <a href="/Account/ForgotPassword">Mot de passe oubli&#233; ?</a>
                    </em>
</form>            </section>
        </fieldset>
    </div>
    
</div>

<script src="/bundles/jquery?v=ywRv5tGf_C8UyV9Nh0RJf-e9u4Rh_SmIN-qx3i-kH8Y1"></script>

<script src="/bundles/bootstrap?v=6OD_qb2Q02nDAvpE-bzAEAb0ozyISCi_lTlDoC7r00Q1"></script>


</body>
</html>
    Found one day ago by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:2480:443 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://assurance-epargne-pension.fr/>; rel=shortlink
x-rq: cdg2 182 249 80
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:14 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.35:80 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:243a:443 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://assurance-epargne-pension.fr/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:14 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:2480:80 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:2480:443 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://assurance-epargne-pension.fr/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.46:443 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://assurance-epargne-pension.fr/
x-rq: cdg2 182 253 80
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.35:443 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://assurance-epargne-pension.fr/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:14 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:243a:443 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://assurance-epargne-pension.fr/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:13 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.35:443 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://assurance-epargne-pension.fr/
x-rq: cdg2 182 253 80
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.35:80 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:243a:80 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:243a:80 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:7100::687e:2480:80 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.46:80 · www.assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.46:443 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://assurance-epargne-pension.fr/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:14 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.62.15.46:80 · assurance-epargne-pension.fr

    2026-01-09 16:16 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 104.82.105.43:443 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
X-XSS-Protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';form-action 'self'
Content-Length: 2747
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Date: Fri, 09 Jan 2026 12:17:16 GMT
Connection: close
Set-Cookie: .sess=cpafsz1er2qpialz0fk0p1md; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: .sess=cpafsz1er2qpialz0fk0p1md; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: xsrf=-oCpKwhiAcVJkh--Shj7MGpllK1K_mQj7pRGRkQ8_TJHd2FHNhPNkagpYSLFJQBYiar0WoC0WHkVg3OEFTirz9A68Wj8loaE-_z2SftAuWw1; path=/; secure; HttpOnly; SameSite=Strict

Page title: AEP






<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>AEP</title>
    <link href="/Content/css?v=ORcmx4VdYBLFIcfAnx26uaVMpKC8Fs-CPJqzfnSOXjE1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=wBEWDufH_8Md-Pbioxomt90vm6tJN2Pyy9u9zHtWsPo1"></script>

    <link rel="stylesheet" type="text/css" href="/Content/migration.css">

</head>
<body class="ofi-body">
<h2></h2>
<div class="container">
    <div class="col-lg-4 col-lg-offset-4">
        <fieldset id="loginForm">
            <section>
                <img src="/Content/Images/aep_logo_menu.png" class="img-responsive" />
                <h1>
                    <small> </small>
                </h1>
<form action="/" class="form-horizontal" method="post" role="form"><input name="__RequestVerificationToken" type="hidden" value="0V_4M1M6Fk9odNFyTP1zlyzuw5_4vbheI6ZUSfAbwYw3mEqCID4gMfYe6bLdXPMJlHM92jmtVWRJpxzdALAee3pNb87iAmKIPDb4vSek0-k1" />                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input class="form-control" data-val="true" data-val-required="Le champ Identifiant est requis." id="UserName" name="UserName" placeholder="Identifiant" type="text" value="" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="UserName" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input autocomplete="off" class="form-control" data-val="true" data-val-required="Le champ Mot de passe est requis." id="Password" name="Password" placeholder="Mot de passe" type="password" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="Password" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12">
                            <input type="submit" value="se connecter" class="m-auto btn btn-lg btn-default" />
                        </div>
                    </div>
                    <em>
                        <a href="/Account/ForgotPassword">Mot de passe oubli&#233; ?</a>
                    </em>
</form>            </section>
        </fieldset>
    </div>
    
</div>

<script src="/bundles/jquery?v=ywRv5tGf_C8UyV9Nh0RJf-e9u4Rh_SmIN-qx3i-kH8Y1"></script>

<script src="/bundles/bootstrap?v=6OD_qb2Q02nDAvpE-bzAEAb0ozyISCi_lTlDoC7r00Q1"></script>


</body>
</html>
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:1700:19a::1920:443 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
X-XSS-Protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';form-action 'self'
Content-Length: 2747
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Date: Fri, 09 Jan 2026 12:17:16 GMT
Connection: close
Set-Cookie: .sess=sjmevvfm5pqlncsr1dopn0ex; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: .sess=sjmevvfm5pqlncsr1dopn0ex; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: xsrf=vhF1EVgzuKGRx5nP2VQ2abChc73AP2kRGRuxr5wpnkur9s6Sv2xd7a7GuwMooersWucH-5ThO27TDoNhCaRrGzV568Brbrt1ALWyjNCzodg1; path=/; secure; HttpOnly; SameSite=Strict

Page title: AEP






<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>AEP</title>
    <link href="/Content/css?v=ORcmx4VdYBLFIcfAnx26uaVMpKC8Fs-CPJqzfnSOXjE1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=wBEWDufH_8Md-Pbioxomt90vm6tJN2Pyy9u9zHtWsPo1"></script>

    <link rel="stylesheet" type="text/css" href="/Content/migration.css">

</head>
<body class="ofi-body">
<h2></h2>
<div class="container">
    <div class="col-lg-4 col-lg-offset-4">
        <fieldset id="loginForm">
            <section>
                <img src="/Content/Images/aep_logo_menu.png" class="img-responsive" />
                <h1>
                    <small> </small>
                </h1>
<form action="/" class="form-horizontal" method="post" role="form"><input name="__RequestVerificationToken" type="hidden" value="P77DoIOWc42HSoLZFkp6gELBsso7kI8dpJsAZtiH3cMFp5fXVQuvrqSlYyuzVbAZqPugmZ6tUsQxavNHTVL3cKyfTtCl6tpVuTIDFZZNtUo1" />                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input class="form-control" data-val="true" data-val-required="Le champ Identifiant est requis." id="UserName" name="UserName" placeholder="Identifiant" type="text" value="" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="UserName" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input autocomplete="off" class="form-control" data-val="true" data-val-required="Le champ Mot de passe est requis." id="Password" name="Password" placeholder="Mot de passe" type="password" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="Password" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12">
                            <input type="submit" value="se connecter" class="m-auto btn btn-lg btn-default" />
                        </div>
                    </div>
                    <em>
                        <a href="/Account/ForgotPassword">Mot de passe oubli&#233; ?</a>
                    </em>
</form>            </section>
        </fieldset>
    </div>
    
</div>

<script src="/bundles/jquery?v=ywRv5tGf_C8UyV9Nh0RJf-e9u4Rh_SmIN-qx3i-kH8Y1"></script>

<script src="/bundles/bootstrap?v=6OD_qb2Q02nDAvpE-bzAEAb0ozyISCi_lTlDoC7r00Q1"></script>


</body>
</html>
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:1700:19a::1920:80 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://portail.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 12:17:57 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 104.82.105.43:80 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://portail.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 12:17:59 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:1700:193::1920:443 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
X-XSS-Protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline';img-src 'self' data:;font-src 'self';form-action 'self'
Content-Length: 2747
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Date: Fri, 09 Jan 2026 12:17:16 GMT
Connection: close
Set-Cookie: .sess=vfakbdzcbyrh21kn1do1vici; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: .sess=vfakbdzcbyrh21kn1do1vici; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: xsrf=ppsy4nNE5X0cGjv-q8Y1NPj8uj1YL2_5RkTLtXnyWBZvcZcSkVA0qK1GLC6J2GbiX-FFNA7omgXc5dDel2fCX41HUrbe4k6fveMtBGBWAzk1; path=/; secure; HttpOnly; SameSite=Strict

Page title: AEP






<!DOCTYPE html>
<html>
<head>
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>AEP</title>
    <link href="/Content/css?v=ORcmx4VdYBLFIcfAnx26uaVMpKC8Fs-CPJqzfnSOXjE1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=wBEWDufH_8Md-Pbioxomt90vm6tJN2Pyy9u9zHtWsPo1"></script>

    <link rel="stylesheet" type="text/css" href="/Content/migration.css">

</head>
<body class="ofi-body">
<h2></h2>
<div class="container">
    <div class="col-lg-4 col-lg-offset-4">
        <fieldset id="loginForm">
            <section>
                <img src="/Content/Images/aep_logo_menu.png" class="img-responsive" />
                <h1>
                    <small> </small>
                </h1>
<form action="/" class="form-horizontal" method="post" role="form"><input name="__RequestVerificationToken" type="hidden" value="eGtYjVHGwH8S7-GhjEydcd01RWCwshbi8LHFavrjXliIXxzDNPOY6HhwTJZ-13H0x6VOnWjTscbiJm95-qC6LHmO-7JkoYeSaMxElVEOn1I1" />                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input class="form-control" data-val="true" data-val-required="Le champ Identifiant est requis." id="UserName" name="UserName" placeholder="Identifiant" type="text" value="" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="UserName" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12 p-0">
                            <input autocomplete="off" class="form-control" data-val="true" data-val-required="Le champ Mot de passe est requis." id="Password" name="Password" placeholder="Mot de passe" type="password" />
                            <span class="field-validation-valid text-danger" data-valmsg-for="Password" data-valmsg-replace="true"></span>
                        </div>
                    </div>
                    <div class="form-group">
                        <div class="col-md-12">
                            <input type="submit" value="se connecter" class="m-auto btn btn-lg btn-default" />
                        </div>
                    </div>
                    <em>
                        <a href="/Account/ForgotPassword">Mot de passe oubli&#233; ?</a>
                    </em>
</form>            </section>
        </fieldset>
    </div>
    
</div>

<script src="/bundles/jquery?v=ywRv5tGf_C8UyV9Nh0RJf-e9u4Rh_SmIN-qx3i-kH8Y1"></script>

<script src="/bundles/bootstrap?v=6OD_qb2Q02nDAvpE-bzAEAb0ozyISCi_lTlDoC7r00Q1"></script>


</body>
</html>
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 2a02:26f0:1700:193::1920:80 · portail.assurance-epargne-pension.fr

    2026-01-09 12:17 

    HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://portail.assurance-epargne-pension.fr/
Date: Fri, 09 Jan 2026 12:17:57 GMT
Connection: close
    Found 2026-01-09 by HttpPlugin
    Create report
bnp11s.bnpparibas.comagces.isf.bnpparibas-pf.comagcit.isf.bnpparibas-pf.comarvalreferrals.arval.comarvalreferrals.pre.arval.comarvalreferrals.uat.arval.comauthservices.smsps-coll.bnl.itautoselect.arval.beautoselect.arval.fiautoselect.arval.plautoselect.arval.ptbe.isf.bnpparibas-pf.comcct-wm-twn.bnpparibas.asiacct-wm-twn.staging.bnpparibas.asiacct-wm.bnpparibas.asiacct-wm.staging.bnpparibas.asiacms.bnpparibas.asiacofinoga.frcompliance.group.api.bnpparibasconnexistrade.bnpparibas.comconnexistrade.staging.bnpparibas.comcsost.bnpparibas-am.itcts-lra-rec.bnpparibas.comcxt6-uat.bnpparibas.comde.isf.bnpparibas-pf.comes.isf.bnpparibas-pf.cometranplus.bnpparibas.cometsservices-pp.bnpparibas.comhfsadmin-kpt.bnpparibas.comhm.agces.isf.staging.bnpparibas-pf.comhm.agcit.isf.staging.bnpparibas-pf.comhm.be.isf.staging.bnpparibas-pf.comhm.de.isf.staging.bnpparibas-pf.comhm.es.isf.staging.bnpparibas-pf.comhm.it.isf.staging.bnpparibas-pf.comhm.mx.isf.staging.bnpparibas-pf.comhm.nl.isf.staging.bnpparibas-pf.comhm.pl.isf.staging.bnpparibas-pf.comhm.pt.isf.staging.bnpparibas-pf.comhm.set.isf.staging.bnpparibas-pf.comhm.uk.isf.staging.bnpparibas-pf.comho.agces.isf.staging.bnpparibas-pf.comho.agcit.isf.staging.bnpparibas-pf.comho.be.isf.staging.bnpparibas-pf.comho.de.isf.staging.bnpparibas-pf.comho.es.isf.staging.bnpparibas-pf.comho.it.isf.staging.bnpparibas-pf.comho.mx.isf.staging.bnpparibas-pf.comho.pl.isf.staging.bnpparibas-pf.comho.pt.isf.staging.bnpparibas-pf.comho.set.isf.staging.bnpparibas-pf.comho.uk.isf.staging.bnpparibas-pf.comimpact-media.staging.bnpparibasit.isf.bnpparibas-pf.commoncontrat.renovpret.frnl.isf.bnpparibas-pf.comnoa-ctc.bnpparibas.comnoa-pls.bnpparibas.comnoa.bnpparibas.comobbligazioni.bnpparibas.comoneproctool-supplier.bnpparibas.compl.isf.bnpparibas-pf.comportail.preprod.assurance-epargne-pension.frpt.isf.bnpparibas-pf.comrecette.portail-aep.frsecuresharing.bnpparibas.comsecuresharing.staging.bnpparibas.comsecurities-crisisweb.bnpparibas.comselfticketing.smsps-coll.bnl.itstaging.my.bicis.snstaging.portail-aep.fruk.isf.bnpparibas-pf.comvoc-staging.bnpparibas.asiavoc-staging.bnpparibas.chwebdoc-dz.bnpparibas.comwebdoc-dz.bnpparibas.netwow.bnpparibas.comwww.autoselect.arval.bewww.autoselect.arval.ptwww.cct-wm-twn.bnpparibas.asiawww.cct-wm-twn.staging.bnpparibas.asiawww.cct-wm.bnpparibas.asiawww.cct-wm.staging.bnpparibas.asiawww.cofinoga.frwww.compliance.group.api.bnpparibaswww.connexistrade.bnpparibas.comwww.connexistrade.staging.bnpparibas.comwww.csost.bnpparibas-am.itwww.cts-lra-rec.bnpparibas.comwww.cxt6-uat.bnpparibas.comwww.staging.my.bicis.snwww.voc-staging.bnpparibas.asiawww.voc-staging.bnpparibas.chwww.webdoc-dz.bnpparibas.comwww.webdoc-dz.bnpparibas.net
Fingerprint:
99dcca6bd193988d4424ed5457d3d9cbaabed382b9d41a7c0f5285f5f1701e9c
CN:
bnp11s.bnpparibas.com
Key:
ECDSA-256
Issuer:
DigiCert Global G3 TLS ECC SHA384 2020 CA1
Not before:
2026-01-14 00:00
Not after:
2026-09-29 23:59
bnp18s.bnpparibas.comapi.vivaseuseguro.ptassistencias.bnpparibascardif.com.brassurance-epargne-pension.frauth-tmk.vivaseuseguro.ptauth.amelioration-habitat.bnpparibas-pf.frauth.amelioration-habitat.cetelem.frauth.amelioration-habitat.credit-moderne.comauth.demat.domofinance.combccvita.itbnpparibascardif.combnpparibascardif.com.brbnpparibascardif.com.cobnpparibascardif.com.mxbnpparibascardif.debnpparibascardif.dkbnpparibascardif.esbnpparibascardif.itbnpparibascardif.nobnpparibascardif.ptbnpparibascardif.roboite-outils-business.frcardif.comcardif.com.brcardif.com.cocardif.com.mxcardif.dkcardif.itcardif.plcardif.rocardifluxvie.comcommercialfinance.bnpparibas.co.ukcondicoesgerais.bnpparibascardif.com.brcsa.axepta.bnpparibascsa.axepta.staging.bnpparibasderivate.uat.bnpparibas.comfaktoring.bnpparibas.plicare-service.comicare-service.fricare-service.netjira.gambit-finance.comoi-auto-cla-qa.bnpparibascardif.cloi-auto-cla.bnpparibascardif.clouvidoria.bnpparibascardif.com.brportalmim.ptpre.vivaseuseguro.ptpreapi.vivaseuseguro.ptregulamentos.bnpparibascardif.com.brsig-services.cardif.com.costaging.boite-outils-business.frstaging.valuation.realestate.bnpparibastmk.vivaseuseguro.ptvivaseuseguro.ptwww.assistencias.bnpparibascardif.com.brwww.assurance-epargne-pension.frwww.bccvita.itwww.bnpparibascardif.comwww.bnpparibascardif.com.brwww.bnpparibascardif.com.cowww.bnpparibascardif.com.mxwww.bnpparibascardif.dewww.bnpparibascardif.dkwww.bnpparibascardif.eswww.bnpparibascardif.itwww.bnpparibascardif.nowww.bnpparibascardif.ptwww.bnpparibascardif.rowww.boite-outils-business.frwww.cardif.comwww.cardif.com.brwww.cardif.com.cowww.cardif.com.mxwww.cardif.dkwww.cardif.itwww.cardif.plwww.cardif.rowww.cardifluxvie.comwww.commercialfinance.bnpparibas.co.ukwww.condicoesgerais.bnpparibascardif.com.brwww.corporate.cardifluxvie.luwww.faktoring.bnpparibas.plwww.icare-service.comwww.icare-service.frwww.icare-service.netwww.jira.gambit-finance.comwww.ouvidoria.bnpparibascardif.com.brwww.portalmim.ptwww.regulamentos.bnpparibascardif.com.brwww.staging.valuation.realestate.bnpparibaswww.vivaseuseguro.pt
Fingerprint:
b962ad688756817f6d9ff63006b840c344e4cc7a887bea67f27d80e31d5005dd
CN:
bnp18s.bnpparibas.com
Key:
ECDSA-256
Issuer:
DigiCert Global G3 TLS ECC SHA384 2020 CA1
Not before:
2025-12-18 00:00
Not after:
2026-12-09 23:59
bnp05b.bnpparibas.comapi.assurance-epargne-pension.frapi.preprod.assurance-epargne-pension.frapi.rp.assurance-epargne-pension.frarval.inarvalpartners.uat.arval.esarvalpartners.uat.arval.itc.cetelem.frcetelem.com.mxcopiloteu.fineasy.commesavantages.bnpparibas.commyfactor.bnpparibas.comp.bnpparibas-pf.frp.coficabail.frpartners.uat.arval.frportail.assurance-epargne-pension.frwww.arval.inwww.arvalpartners.uat.arval.eswww.arvalpartners.uat.arval.itwww.cetelem.com.mxwww.mesavantages.bnpparibas.comwww.partners.uat.arval.fr
Fingerprint:
58ce24f2111d753d223b98f7e8f4f1ee1389aa89f7bc5ed9fc6adf4b10819258
CN:
bnp05b.bnpparibas.com
Key:
ECDSA-256
Issuer:
DigiCert Global G3 TLS ECC SHA384 2020 CA1
Not before:
2025-12-02 00:00
Not after:
2026-07-23 23:59
Domain summary

portail.preprod.assurance-epargne-pension.fr 0 assurance-epargne-pension.fr 7 www.assurance-epargne-pension.fr 7 portail.assurance-epargne-pension.fr 5

4 recorded
IP summary

2a02:26f0:7100::687e:2480 3 2a02:26f0:3500:14::1724:a249 1 23.62.15.35 1 2a02:26f0:7100::687e:243a 1 23.62.15.46 1 104.82.105.43 1 2a02:26f0:1700:19a::1920 1 2a02:26f0:1700:193::1920 1

8 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice