HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 389
Expires: Sun, 11 Jan 2026 12:28:00 GMT
Date: Sun, 11 Jan 2026 12:28:00 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;acc&#45;dept&#45;eshop&#46;dpgmedia&#46;net&#47;" on this server.<P>
Reference&#32;&#35;18&#46;45247e68&#46;1768134480&#46;437adac5
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;45247e68&#46;1768134480&#46;437adac5</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 389
Expires: Sun, 11 Jan 2026 12:28:42 GMT
Date: Sun, 11 Jan 2026 12:28:42 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;acc&#45;dept&#45;eshop&#46;dpgmedia&#46;net&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1768134522&#46;455eb5c3
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1768134522&#46;455eb5c3</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 380
Expires: Fri, 09 Jan 2026 20:08:01 GMT
Date: Fri, 09 Jan 2026 20:08:01 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;aicorporate&#46;com&#46;py&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767989281&#46;404731a6
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767989281&#46;404731a6</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 380
Expires: Fri, 09 Jan 2026 20:07:23 GMT
Date: Fri, 09 Jan 2026 20:07:23 GMT
Connection: close
Strict-Transport-Security: max-age=86400

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;aicorporate&#46;com&#46;py&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4e247e68&#46;1767989243&#46;301e8599
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4e247e68&#46;1767989243&#46;301e8599</P>
</BODY>
</HTML>

HTTP/1.1 301 Moved Permanently
Content-Encoding: gzip
Server: nginx
Content-Type: text/html
Location: https://vivaseuseguro.pt
Content-Length: 113
Vary: Accept-Encoding
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Content-Encoding: gzip
Server: nginx
Content-Type: text/html
Location: https://vivaseuseguro.pt
Content-Length: 113
Vary: Accept-Encoding
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cardif.it/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 403 Forbidden
Content-Type: text/html
ETag: "68fc7aa0-5e8"
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 802
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: INGRESSCOOKIE=1767975375.411.10716.889511|ab1f8939b796c9462d22232e7ada0929; Path=/; Secure; HttpOnly
Set-Cookie: TS013bb86a=01f24f44471d67d998240e72fa91e78304274d99bcbb20dcf36af4f70ddac533f87b6ba6196ec9ad2d8fcfee84b8f8c1bfbce26013; Path=/; Secure

Page title: BNP PARIBAS Real Estate

<!DOCTYPE html>
<html>
<head>
<title>BNP PARIBAS Real Estate</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="robots" content="noindex">
</head>
<body style="background-color: #f2f2f2;" link="#e11c8b">
 <center>

 <!-- HEADER -->
 <table width="960" border="0" cellpadding="0" cellspacing="0">
  <tr>
    <td style="font-family: tahoma, arial; color:#000000; font-size:12px; padding: 10px"><center><h1>ACCESS FORBIDDEN</h1></center></td>
  </tr>
 </table>
 <!-- FIN HEADER -->

 <!-- DEBUT DU CONTENU A MODIFIER -->
 <table width="960" id="Tableau_01" border="0" cellpadding="0" cellspacing="0">
  <tr>
   <td bgcolor="#FFFFFF" height="150" valign="top" align="left" style="font-family: tahoma, arial; color:#000000; font-size:12px; padding: 10px">
        <div

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://pre.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Content-Encoding: gzip
Server: nginx
Content-Type: text/html
Location: https://vivaseuseguro.pt
Content-Length: 113
Vary: Accept-Encoding
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center

HTTP/1.1 303 See Other
Content-Type: text/html; charset=UTF-8
Location: https://commercialfinance.bnpparibas.co.uk/
Content-Security-Policy: default-src 'none';upgrade-insecure-requests; block-all-mixed-content ;object-src 'none'; style-src 'self' fonts.googleapis.com kendo.cdn.telerik.com 'unsafe-inline'; img-src 'self' data: img.youtube.com www.facebook.com bat.bing.net www.linkedin.com px.ads.linkedin.com bnpbebnppffactorwebdev.112.2o7.net cdn.cookielaw.org www.google.com bnpparibasfortis.sc.omtrdc.net sstats.bnpparibasfortis.be; font-src 'self' kendo.cdn.telerik.com fonts.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' bat.bing.com www.googletagmanager.com snap.licdn.com cdn.cookielaw.org connect.facebook.net www.bnpparibas.com www.brightcove.net assets.adobedtm.com addevent.com www.bnpparibasfortis.com www.bnpparibasfortis.be ajax.googleapis.com t.contentsquare.net app.contentsquare.com; frame-src 'self' www.youtube.com www.googletagmanager.com www.google.com bcove.video www.bnpparibas.com www.twitter.com www.brightcove.net www.bnpparibasfortis.com www.bnpparibasfortis.be; connect-src 'self' kendo.cdn.telerik.com www.facebook.com bat.bing.net px.ads.linkedin.com www.google.com tools.api.bnpparibasfortis.be cdn.cookielaw.org geolocation.onetrust.com bnp-privacy.my.onetrust.com www.akamaihd.net www.kampyle.com www.prod.boltdns.net www.medallia.eu www.omtrdc.net www.brightcove.com www.clicktale.net www.demdex.net www.serving-sys.com www.bnpparibas.com www.googleapis.com www.bnpparibasfortis.com www.bnpparibasfortis.be www.contentsquare.net assets.adobedtm.com
Content-Security-Policy-Report-Only: 
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Length: 166
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close

Page title: Document Moved

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="https://commercialfinance.bnpparibas.co.uk/">here</a></body>

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: /en/
Content-Security-Policy: default-src 'none';upgrade-insecure-requests; block-all-mixed-content ;object-src 'none'; style-src 'self' fonts.googleapis.com kendo.cdn.telerik.com 'unsafe-inline'; img-src 'self' data: img.youtube.com www.facebook.com bat.bing.net www.linkedin.com px.ads.linkedin.com bnpbebnppffactorwebdev.112.2o7.net cdn.cookielaw.org www.google.com bnpparibasfortis.sc.omtrdc.net sstats.bnpparibasfortis.be; font-src 'self' kendo.cdn.telerik.com fonts.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' bat.bing.com www.googletagmanager.com snap.licdn.com cdn.cookielaw.org connect.facebook.net www.bnpparibas.com www.brightcove.net assets.adobedtm.com addevent.com www.bnpparibasfortis.com www.bnpparibasfortis.be ajax.googleapis.com t.contentsquare.net app.contentsquare.com; frame-src 'self' www.youtube.com www.googletagmanager.com www.google.com bcove.video www.bnpparibas.com www.twitter.com www.brightcove.net www.bnpparibasfortis.com www.bnpparibasfortis.be; connect-src 'self' kendo.cdn.telerik.com www.facebook.com bat.bing.net px.ads.linkedin.com www.google.com tools.api.bnpparibasfortis.be cdn.cookielaw.org geolocation.onetrust.com bnp-privacy.my.onetrust.com www.akamaihd.net www.kampyle.com www.prod.boltdns.net www.medallia.eu www.omtrdc.net www.brightcove.com www.clicktale.net www.demdex.net www.serving-sys.com www.bnpparibas.com www.googleapis.com www.bnpparibasfortis.com www.bnpparibasfortis.be www.contentsquare.net assets.adobedtm.com
Content-Security-Policy-Report-Only: 
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Length: 121
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: ASP.NET_SessionId=b0jqxatmpbqbls4p51veufb2; path=/; secure; HttpOnly; SameSite=Lax

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/en/">here</a>.</h2>
</body></html>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://bnpparibascardif.it/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.bnpparibascardif.com.mx/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://portalmim.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://bnpparibascardif.it/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 382
Expires: Fri, 09 Jan 2026 16:16:14 GMT
X-Reference-Error: 18.4d247e68.1767975374.3f666b45
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975374&#46;3f666b45
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975374&#46;3f666b45</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 390
Expires: Fri, 09 Jan 2026 16:16:13 GMT
X-Reference-Error: 18.4d247e68.1767975373.3f666818
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975373&#46;3f666818
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975373&#46;3f666818</P>
</BODY>
</HTML>

HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: connect-src 'self' https: blob: *.grupomok.com.co *.grupomok.com *.google-analytics.com *.cookiebot.com wss://sip.sipxentral.com:4443 https://sip.sipxentral.com https://sip.teleone.com.co 'nonce-FpaXpvjLS10plyosXChH4w=='; script-src 'self' https: 'unsafe-eval' *.googletagmanager.com *.google-analytics.com *.gstatic.com *.googleapis.com *.hs-scripts.com *.google.com *.hotjar.com *.cookiebot.com *.grupomok.com.co *.grupomok.com https://cdn.grupomok.com/mokui/mokui.esm.js 'nonce-FpaXpvjLS10plyosXChH4w=='; img-src 'self' data: blob: https: https://www.googletagmanager.com https://www.google-analytics.com; frame-src 'self' blob: data: *.grupomok.com; worker-src 'self' blob: data: *.grupomok.com
Content-Type: text/html; charset=utf-8
ETag: W/"13af0151814035a9ad8cb5932c99cc13"
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Permissions-Policy: camera=(*), microphone=(*), geolocation=(*), interest-cohort=()
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=XJjz6OIRt9yZq92Gd1YZ1csMAh2BV8cycoNac%2FQYH7k%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767975373"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=XJjz6OIRt9yZq92Gd1YZ1csMAh2BV8cycoNac%2FQYH7k%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767975373"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: a1de3a6e-c419-2a77-af04-e4ad9ede1251
X-Runtime: 0.005506
X-Xss-Protection: 1; mode=block
Content-Length: 606
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: _mok_services_web_apps_session=cR9QE%2BcgXdWHgmzZAH%2F0NW9NMSIMDtsqOgwaEG4zUTDzw9GV1D6r31WI%2FmTQlBDcFjK9acYZ5o6wEswBQaW4sHNjJXGosRj79Ji23TKeesCo6CwAqU54BNr40KUENcoJnDgyTF7%2BB8iCzJLc%2BpqENwUx7PRpwiIoU18zcflSfvILmBCiW6a2E6ERpVPPBQsM4cyaGskWl1Wl2eIOXI8Af63L%2B2aqFMbm37qJf0Vs97wimCQajmTtwjotA%2BoNGjtflsAPP9i8zA%2Fo2KFAOnCuAnthzzmRjNdYwvqezAZVu28Fy2h4xMA%3D--gdYKEo3%2Ftoa1yjIb--hUcZKqz1VIcbuLC5o9IqWA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax


<form id="repost-1767975373" action="/users/auth/openid_connect" method="post" accept-charset="UTF-8"><input name="authenticity_token" value="F4bHrH1GWEoFTrmoj_1QTI1dSrO07wei9le-vq7upmy7-zG1vfV2DhlyjgluDMEc20taxlpCmMifwRy3yHvdTw" type="hidden"><input type="hidden" name="prompt" value="none"><input type="hidden" name="bypass_token" value=""><script nonce="FpaXpvjLS10plyosXChH4w==">
        document.getElementById("repost-1767975373").submit();
      </script><noscript>
        <div class="">
        
        <input class="" type="submit" value="Continue"></input>
      </div>
      </noscript></form>

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Last-Modified: Tue, 24 Jun 2025 11:14:41 GMT
ETag: "685a88a1-f4a"
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval' wss: ; frame-ancestors 'self'
Access-Control-Expose-Headers: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Pragma: no-cache
Date: Fri, 09 Jan 2026 16:16:14 GMT
Content-Length: 3914
Connection: close

Page title: Cetelem

<!DOCTYPE html>
<html lang="pt">
  <head>
    <meta charset="UTF-8" />
    <link rel="icon" type="image/x-icon" href="/favicon.ico" media="screen" />
    <meta
      name="description"
      content="Sua plataforma de aprendizado on-line. Descubra uma variedade de cursos em marketing digital, orientação financeira e muito mais, no estilo Coursera. Amplie seus conhecimentos e habilidades com conteúdo de qualidade ministrado por especialistas do setor. Desenvolva estratégias eficazes de marketing digital, obtenha uma sólida compreensão de finanças e aproveite novas oportunidades. Junte-se ao Neon e desbloqueie um mundo de aprendizado e crescimento pessoal."
    />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <meta http-equiv="Cache-Control" content="max-age=31536000" filetype="font/woff2,image/webp, text/css, application/javascript,image/svg+xml">
    <title>Cetelem</title>

    <link
      rel="preload"
      href="/assets/BNPP_Square_Bold_v3-BWpwhZVs.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <link
      rel="preload"
      href="/assets/BNPP_Square_Regular_v3-DkmwWCuW.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <!-- <link
      rel="preload"
      href="../assets/fonts/HelveticaNeue_Bold.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    /> -->
    <!-- <link
      rel="preload"
      href="../assets/fonts/Epilogue-VariableFont_wght.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <link
      rel="preload"
      href="../assets/fonts/BNPP_Square_Light_v3.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    /> -->

    <link as="image" rel="preload" href="../assets/images/home_in/nuevasImagenes/Banner_Home.webp" media="(min-width: 601px)" />
    
    <!-- <link as="image" rel="preload" href="../assets/images/Banner_Home_Mobile.webp" media="(max-width: 600px)" /> -->

    <!-- <link as="image" rel="preload" href="../assets/images/LogoCetelem_v2.webp" media="(max-width: 300px)" /> -->

    <script src="https://www.google.com/recaptcha/api.js?render=6LcBSqQmAAAAALEiPBSfBycx-rwRsz_IgkBO49py"></script>

    <!-- Google Tag Manager -->
    <script>
      (function (w, d, s, l, i) {
        w[l] = w[l] || [];
        w[l].push({ "gtm.start": new Date().getTime(), event: "gtm.js" });
        var f = d.getElementsByTagName(s)[0],
          j = d.createElement(s),
          dl = l != "dataLayer" ? "&l=" + l : "";
        j.setAttributeNode(d.createAttribute('data-ot-ignore'));
        j.async = true;
        j.src = "https://www.googletagmanager.com/gtm.js?id=" + i + dl;
        f.parentNode.insertBefore(j, f);
      })(window, document, "script", "dataLayer", "GTM-N45BHNSJ");
    </script>
    <!-- End Google Tag Manager -->

    <!-- Clarity activation -->
    <script>
      window.addEventListener("consent.onetrust", (e) => {
        if(window.clarity) {
          window.clarity('consent');
          console.log('Clarity consent events enabled');
        } 
      });

      window.addEventListener("consent.revoke", () => {
        if(window.clarity) {
          window.clarity('consent', false)
        }
      });
    </script>
    <!-- End of Clarity activation -->
  
  <script type="module" crossorigin src="/assets/index-D03bDprj.js"></script>
  <link rel="stylesheet" crossorigin href="/assets/index-B8Ny5sM4.css">
</head>

  <body>
    <!-- Google Tag Manager (noscript) -->
    <noscript
      ><iframe
        src="https://www.googletagmanager.com/ns.html?id=GTM-N45BHNSJ"
        height="0"
        width="0"
        style="display: none; visibility: hidden;"
        sandbox
      ></iframe
    ></noscript>
    <!-- End Google Tag Manager (noscript) -->
    <div id="root"></div>

  </body>
</html>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://cardifluxvie.com/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:15 GMT
Connection: close
Set-Cookie: pll_language=fr; expires=Sat, 09 Jan 2027 16:16:15 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://commercialfinance.bnpparibas.co.uk/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.cardif.it/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 394
Expires: Fri, 09 Jan 2026 16:16:13 GMT
X-Reference-Error: 18.2e247e68.1767975373.31033170
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;staging&#46;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;2e247e68&#46;1767975373&#46;31033170
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;2e247e68&#46;1767975373&#46;31033170</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 397
Expires: Fri, 09 Jan 2026 16:16:54 GMT
X-Reference-Error: 18.4d247e68.1767975414.3f66fea2
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;staging&#46;valuation&#46;realestate&#46;bnpparibas&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975414&#46;3f66fea2
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975414&#46;3f66fea2</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 397
Expires: Fri, 09 Jan 2026 16:16:13 GMT
X-Reference-Error: 18.2e247e68.1767975373.3103316b
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;staging&#46;valuation&#46;realestate&#46;bnpparibas&#47;" on this server.<P>
Reference&#32;&#35;18&#46;2e247e68&#46;1767975373&#46;3103316b
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;2e247e68&#46;1767975373&#46;3103316b</P>
</BODY>
</HTML>

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://cardif.com.mx/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:14 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=es; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.portalmim.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://api.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://preapi.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://bnpparibascardif.it/
Date: Fri, 09 Jan 2026 16:16:53 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://oi-auto-cla.bnpparibascardif.cl/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 382
Expires: Fri, 09 Jan 2026 16:16:55 GMT
X-Reference-Error: 18.4d247e68.1767975415.3f6701b2
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975415&#46;3f6701b2
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975415&#46;3f6701b2</P>
</BODY>
</HTML>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://cardif.com.mx/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache
Content-Security-Policy: connect-src 'self' https: https://www.google-analytics.com; script-src 'self' https: 'unsafe-eval' *.googletagmanager.com *.google-analytics.com *.gstatic.com *.googleapis.com *.google.com *.hotjar.com *.cookiebot.com 'nonce-pn/hjDiBeyJTRMEFPrq3VQ=='
Content-Type: text/html; charset=utf-8
Feature-Policy: camera 'none'; gyroscope 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self'
Location: https://auth-tmk.vivaseuseguro.pt/users/sign_in
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=GHaKwZ6kjYcA9j6fgy6vsn3Kxj4bWv7IUEROAp8DKX8%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767975375"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=GHaKwZ6kjYcA9j6fgy6vsn3Kxj4bWv7IUEROAp8DKX8%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767975375"
Server: Heroku
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Request-Id: b344d2ad-94b7-4b1d-8108-ea8f2608e5b4
X-Runtime: 0.592303
Content-Length: 113
Date: Fri, 09 Jan 2026 16:16:15 GMT
Connection: close
Set-Cookie: _mok_sponsor_apps_session=nVDVqNOUU03r5HmIyyVPaohicxWukSp5L2YdUtY0MAQeUjUIge13Mf5Llc2sTKNtvG5C0JWcCgBgUkTpWOesxF3XySazdtajzQl5Z6hv4D50aSdr2z7eAR17zYej54bjB8AKnICeYLAZNF1debqkakKpNIyza33rE90mJRsDX2m6Kwfclcy023ISMhXeSN1P8pwLmtlW4Dt%2Bku0NjF59LdZzy8Yx7Xfm3jmfDjyOPFdR%2FuIA9KqzKkMG4z79yqVqmViS%2BSWKImGwegjNiG63qUqbyrI7yB8qGPWZQHoyB5LW3ooTZqoL861nN20XORSHUdYY9xx19re6fxOJmIzUZFsSSw5E%2FW9b5%2B7GoYTd4qciLkeZjAPp55DHRR2I1iQA%2FvZFFS91%2FmIlnJ8H1tB3jVPGKSxvHHcpt45ttb4%3D--7mNaRHUDvqQW8ZmH--7KykWJ4ue%2BOb7qeyi084XQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax


<html><body>You are being <a href="https://auth-tmk.vivaseuseguro.pt/users/sign_in">redirected</a>.</body></html>

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 394
Expires: Fri, 09 Jan 2026 16:16:55 GMT
X-Reference-Error: 18.4d247e68.1767975415.3f670371
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;staging&#46;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975415&#46;3f670371
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975415&#46;3f670371</P>
</BODY>
</HTML>

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://csa.axepta.staging.bnpparibas/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://bnpparibascardif.it/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:15 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=it; expires=Sat, 09 Jan 2027 16:16:15 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
Cache-Control: private
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: frame-ancestors 'self'
Permissions-Policy: geolocation=(*)
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Date: Fri, 09 Jan 2026 16:16:13 GMT
Content-Length: 1167
Connection: close

Page title: Home Page

<!DOCTYPE html>
<html>
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width" />
    <link href="/Styles/styles.css" rel="stylesheet" />
    <title>Home Page</title>
    <link href="/Content/css?v=-6wE7wc09W_2U6qppsCZLweiTOGWdNWRV3izWBTcEzc1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=inCVuEFe6J4Q07A0AcRsbJic_UE5MwpRMNGcOtk94TE1"></script>

</head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<body class="imagen3" style="        background-image: url("../../Styles/bdo-hero-001-mobile.jpg") !important">
    
        

<div class="contenedor3">
    <div class="contenedor">

    </div>
    <div class="contenedor2 ajusteMovil">
        <h1>BIENVENIDO</h1>
        <p>Tu API se encuentra funcionando correctamente en FRA</p>
        <p>
            Tu seguro además de protegerte cuenta con servicios que puedes usar cuando quieras y como quieras.<br><a href="https://vivaseuseguro.pt/">Ingresa aquí</a>
        </p>
    </div>
</div>



        

    
    
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://bnpparibascardif.it/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: pll_language=it; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://faktoring.bnpparibas.pl/
Date: Fri, 09 Jan 2026 16:16:53 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.bnpparibascardif.it/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 303 See Other
Content-Type: text/html; charset=UTF-8
Location: https://faktoring.bnpparibas.pl/
Content-Security-Policy: default-src 'none';upgrade-insecure-requests; block-all-mixed-content ;object-src 'none'; style-src 'self' fonts.googleapis.com kendo.cdn.telerik.com 'unsafe-inline'; img-src 'self' data: img.youtube.com www.facebook.com bat.bing.net www.linkedin.com px.ads.linkedin.com bnpbebnppffactorwebdev.112.2o7.net cdn.cookielaw.org www.google.com bnpparibasfortis.sc.omtrdc.net sstats.bnpparibasfortis.be; font-src 'self' kendo.cdn.telerik.com fonts.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' bat.bing.com www.googletagmanager.com snap.licdn.com cdn.cookielaw.org connect.facebook.net www.bnpparibas.com www.brightcove.net assets.adobedtm.com addevent.com www.bnpparibasfortis.com www.bnpparibasfortis.be ajax.googleapis.com t.contentsquare.net app.contentsquare.com; frame-src 'self' www.youtube.com www.googletagmanager.com www.google.com bcove.video www.bnpparibas.com www.twitter.com www.brightcove.net www.bnpparibasfortis.com www.bnpparibasfortis.be; connect-src 'self' kendo.cdn.telerik.com www.facebook.com bat.bing.net px.ads.linkedin.com www.google.com tools.api.bnpparibasfortis.be cdn.cookielaw.org geolocation.onetrust.com bnp-privacy.my.onetrust.com www.akamaihd.net www.kampyle.com www.prod.boltdns.net www.medallia.eu www.omtrdc.net www.brightcove.com www.clicktale.net www.demdex.net www.serving-sys.com www.bnpparibas.com www.googleapis.com www.bnpparibasfortis.com www.bnpparibasfortis.be www.contentsquare.net assets.adobedtm.com
Content-Security-Policy-Report-Only: 
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Length: 155
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close

Page title: Document Moved

<head><title>Document Moved</title></head>
<body><h1>Object Moved</h1>This document may be found <a HREF="https://faktoring.bnpparibas.pl/">here</a></body>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://cardif.com.mx/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:15 GMT
Connection: close
Set-Cookie: pll_language=es; expires=Sat, 09 Jan 2027 16:16:15 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.bnpparibascardif.ro/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
Cache-Control: private
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Content-Security-Policy: frame-ancestors 'self'
Permissions-Policy: geolocation=(*)
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Date: Fri, 09 Jan 2026 16:16:16 GMT
Content-Length: 1161
Connection: close

Page title: Home Page

<!DOCTYPE html>
<html>
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <meta charset="utf-8" />
    <meta name="viewport" content="width=device-width" />
    <link href="/Styles/styles.css" rel="stylesheet" />
    <title>Home Page</title>
    <link href="/Content/css?v=-6wE7wc09W_2U6qppsCZLweiTOGWdNWRV3izWBTcEzc1" rel="stylesheet"/>

    <script src="/bundles/modernizr?v=inCVuEFe6J4Q07A0AcRsbJic_UE5MwpRMNGcOtk94TE1"></script>

</head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<body class="imagen3" style="        background-image: url("../../Styles/bdo-hero-001-mobile.jpg") !important">
    
        

<div class="contenedor3">
    <div class="contenedor">

    </div>
    <div class="contenedor2 ajusteMovil">
        <h1>BIENVENIDO</h1>
        <p>Tu API se encuentra funcionando correctamente</p>
        <p>
            Tu seguro además de protegerte cuenta con servicios que puedes usar cuando quieras y como quieras.<br><a href="https://seguroestastu.com/">Ingresa aquí</a>
        </p>
    </div>
</div>



        

    
    
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://auth-tmk.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://bnpparibascardif.ro/>; rel=shortlink
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:15 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding
Set-Cookie: pll_language=ro; expires=Sat, 09 Jan 2027 16:16:14 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://bnpparibascardif.com.mx/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 302 Moved Temporarily
Location: https://oi-auto-cla.latam.cloud.cardifnet.com
Server: BigIP
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:15 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: /pl/
Content-Security-Policy: default-src 'none';upgrade-insecure-requests; block-all-mixed-content ;object-src 'none'; style-src 'self' fonts.googleapis.com kendo.cdn.telerik.com 'unsafe-inline'; img-src 'self' data: img.youtube.com www.facebook.com bat.bing.net www.linkedin.com px.ads.linkedin.com bnpbebnppffactorwebdev.112.2o7.net cdn.cookielaw.org www.google.com bnpparibasfortis.sc.omtrdc.net sstats.bnpparibasfortis.be; font-src 'self' kendo.cdn.telerik.com fonts.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' bat.bing.com www.googletagmanager.com snap.licdn.com cdn.cookielaw.org connect.facebook.net www.bnpparibas.com www.brightcove.net assets.adobedtm.com addevent.com www.bnpparibasfortis.com www.bnpparibasfortis.be ajax.googleapis.com t.contentsquare.net app.contentsquare.com; frame-src 'self' www.youtube.com www.googletagmanager.com www.google.com bcove.video www.bnpparibas.com www.twitter.com www.brightcove.net www.bnpparibasfortis.com www.bnpparibasfortis.be; connect-src 'self' kendo.cdn.telerik.com www.facebook.com bat.bing.net px.ads.linkedin.com www.google.com tools.api.bnpparibasfortis.be cdn.cookielaw.org geolocation.onetrust.com bnp-privacy.my.onetrust.com www.akamaihd.net www.kampyle.com www.prod.boltdns.net www.medallia.eu www.omtrdc.net www.brightcove.com www.clicktale.net www.demdex.net www.serving-sys.com www.bnpparibas.com www.googleapis.com www.bnpparibasfortis.com www.bnpparibasfortis.be www.contentsquare.net assets.adobedtm.com
Content-Security-Policy-Report-Only: 
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Length: 121
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: ASP.NET_SessionId=vfyk4osrasj453jjhtu4dsnq; path=/; secure; HttpOnly; SameSite=Lax

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/pl/">here</a>.</h2>
</body></html>

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cardifluxvie.com/
Date: Fri, 09 Jan 2026 16:16:55 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://tmk.vivaseuseguro.pt/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 390
Expires: Fri, 09 Jan 2026 16:16:54 GMT
X-Reference-Error: 18.4d247e68.1767975414.3f6700c1
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;boite&#45;outils&#45;business&#46;fr&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767975414&#46;3f6700c1
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767975414&#46;3f6700c1</P>
</BODY>
</HTML>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://bnpparibascardif.ro/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://bnpparibascardif.ro/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.cardif.com.mx/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cardif.com.mx/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.faktoring.bnpparibas.pl/
Date: Fri, 09 Jan 2026 16:16:51 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.corporate.cardifluxvie.lu/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.cardifluxvie.com/
Date: Fri, 09 Jan 2026 16:16:51 GMT
Connection: close

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Last-Modified: Tue, 01 Jul 2025 17:11:41 GMT
ETag: "686416cd-ede"
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval' wss: ; frame-ancestors 'self'
Access-Control-Expose-Headers: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Pragma: no-cache
Date: Fri, 09 Jan 2026 16:16:13 GMT
Content-Length: 3806
Connection: close

Page title: Cetelem

<!DOCTYPE html>
<html lang="pt">
  <head>
    <meta charset="UTF-8" />
    <link rel="icon" type="image/x-icon" href="/favicon.ico" media="screen" />
    <meta
      name="description"
      content="Sua plataforma de aprendizado on-line. Descubra uma variedade de cursos em marketing digital, orientação financeira e muito mais, no estilo Coursera. Amplie seus conhecimentos e habilidades com conteúdo de qualidade ministrado por especialistas do setor. Desenvolva estratégias eficazes de marketing digital, obtenha uma sólida compreensão de finanças e aproveite novas oportunidades. Junte-se ao Neon e desbloqueie um mundo de aprendizado e crescimento pessoal."
    />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <meta http-equiv="Cache-Control" content="max-age=31536000" filetype="font/woff2,image/webp, text/css, application/javascript,image/svg+xml">
    <title>Cetelem</title>

    <link
      rel="preload"
      href="/assets/BNPP_Square_Bold_v3-BWpwhZVs.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <link
      rel="preload"
      href="/assets/BNPP_Square_Regular_v3-DkmwWCuW.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <!-- <link
      rel="preload"
      href="../assets/fonts/HelveticaNeue_Bold.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    /> -->
    <!-- <link
      rel="preload"
      href="../assets/fonts/Epilogue-VariableFont_wght.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    />
    <link
      rel="preload"
      href="../assets/fonts/BNPP_Square_Light_v3.ttf"
      as="font"
      type="font/ttf"
      crossorigin
    /> -->

    <link as="image" rel="preload" href="../assets/images/home_in/nuevasImagenes/Banner_Home.webp" media="(min-width: 601px)" />
    
    <!-- <link as="image" rel="preload" href="../assets/images/Banner_Home_Mobile.webp" media="(max-width: 600px)" /> -->

    <!-- <link as="image" rel="preload" href="../assets/images/LogoCetelem_v2.webp" media="(max-width: 300px)" /> -->

    <script src="https://www.google.com/recaptcha/api.js?render=6LcBSqQmAAAAALEiPBSfBycx-rwRsz_IgkBO49py"></script>

    <!-- Google Tag Manager -->
    <script>
      (function (w, d, s, l, i) {
        w[l] = w[l] || [];
        w[l].push({ "gtm.start": new Date().getTime(), event: "gtm.js" });
        var f = d.getElementsByTagName(s)[0],
          j = d.createElement(s),
          dl = l != "dataLayer" ? "&l=" + l : "";
        j.setAttributeNode(d.createAttribute('data-ot-ignore'));
        j.async = true;
        j.src = "https://www.googletagmanager.com/gtm.js?id=" + i + dl;
        f.parentNode.insertBefore(j, f);
      })(window, document, "script", "dataLayer", "GTM-N45BHNSJ");
    </script>
    <!-- End Google Tag Manager -->

    <!-- Clarity activation -->
    <script>
      window.addEventListener("consent.onetrust", (e) => {
        if(window.clarity) {
          window.clarity('consent');
          console.log('Clarity consent events enabled');
        } 
      });

      window.addEventListener("consent.revoke", () => {
        if(window.clarity) {
          window.clarity('consent', false)
        }
      });
    </script>
    <!-- End of Clarity activation -->
  
  <script type="module" crossorigin src="/assets/index-CXe4decu.js"></script>
  <link rel="stylesheet" crossorigin href="/assets/index-B8Ny5sM4.css">
</head>

  <body>
    <!-- Google Tag Manager (noscript) -->
    <noscript
      ><iframe
        src="https://www.googletagmanager.com/ns.html?id=GTM-N45BHNSJ"
        height="0"
        width="0"
        style="display: none; visibility: hidden;"
        sandbox
      ></iframe
    ></noscript>
    <!-- End Google Tag Manager (noscript) -->
    <div id="root"></div>
  </body>
</html>

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=utf-8
Location: https://cardif.com.mx/
X-REDIRECT-BY: Mercator: Redirect to primary
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com https://www.google.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
X-Redirect-By: WordPress
Location: https://bnpparibascardif.ro/
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
x-rq: cdg2 182 253 80
Strict-Transport-Security: max-age=31536000
Content-Length: 0
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: pll_language=ro; expires=Sat, 09 Jan 2027 16:16:13 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
ETag: "17fd7389d769debe4350d2299d6f13a5:1655718214.487026"
Last-Modified: Mon, 20 Jun 2022 09:43:34 GMT
Server: AkamaiNetStorage
Strict-Transport-Security: max-age=15768000
Expires: Fri, 09 Jan 2026 16:16:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: AK-Ref-Id=30.6a79cc17.1767975373.318c8a5
Content-Security-Policy: frame-ancestors 'self'

Page title: Bank BNP Paribas | The bank for a changing world

<!doctype html>
<html class="no-js" lang="en">
    <head>
        <meta charset="utf-8">
        <meta http-equiv="x-ua-compatible" content="ie=edge">
        <title>Bank BNP Paribas | The bank for a changing world</title>
        <meta name="description" content="All information about BNP Paribas, international bank: Job offers, Leaders, CSR, Innovation, News, Commitments, Corporate culture...">
        <meta name="viewport" content="width=device-width, initial-scale=1">

        <link rel="apple-touch-icon" href="apple-touch-icon.png">
        <!-- Place favicon.ico in the root directory -->

        <link href='https://fonts.googleapis.com/css?family=Open+Sans:400italic,400,600,700' rel='stylesheet' type='text/css'>
        <link rel="stylesheet" href="/failover/bnpparibas/css/bootstrap.min.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/font-awesome.min.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/main.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/responsive.css">
    </head>
    <body>
	<script>
		function getCookie(cname) {
			var name = cname + "=";
			var decodedCookie = decodeURIComponent(document.cookie);
			var ca = decodedCookie.split(';');
			for(var i = 0; i <ca.length; i++) {
				var c = ca[i];
				while (c.charAt(0) == ' ') {
				c = c.substring(1);
				}
				if (c.indexOf(name) == 0) {
				  return c.substring(name.length, c.length);
				}
			}
			return "";
		} 
	</script>
	
	        <script src="/failover/bnpparibas/js/jquery-3.5.1.min.js"></script>
           <script>window.jQuery || document.write('<script src="js/jquery-3.5.1.min.js"><\/script>')</script>
  <script>
  $(document).ready(function() {
		var known = {
			en: true,
			fr: true,
			ja: true
		};

		var lang = ((navigator.languages && navigator.languages[0]) && navigator.language || navigator.userLanguage || 'en').substr(0, 2);
		if(!known[lang])
			lang = 'en';

      $('div.content[lang!=' + lang + ']').hide(); 
		$('div.content[lang=' + lang + ']').show();
	});
   </script>
      <header>
           <!-- GREEN BAR -->
           <div class="brand-bar">
              <div class="container">
                 <div class="row">
                    <div class="brand-social col-md-5 col-sm-3">
                       <ul>
                          <li class="facebook">
                             <a href="https://www.facebook.com/bnpparibas.net" target="_blank">
                             <i class="fa fa-facebook">Facebook</i>
                             </a>
                          </li>
                          <li class="instagram">
                             <a href="https://instagram.com/bnpparibas/" target="_blank">
                             <i class="fa fa-instagram">Instagram</i>
                             </a>
                          </li>
                          <li class="pinterest">
                             <a href="https://pinterest.com/bnpparibas/" target="_blank">
                             <i class="fa fa-pinterest-p">Pinterest</i>
                             </a>
                          </li>
                          <li class="twitter">
                             <a href="https://twitter.com/BNPParibas" target="_blank">
                             <i class="fa fa-twitter">Twitter</i>
                             </a>
                          </li>
                          <li class="linkedin">
                             <a href="https://www.linkedin.com/company/bnp-paribas" target="_blank">
                             <i class="fa fa-linkedin">LinkedIn</i>
                             </a>
                          </li>
                          <li class="youtube">
                             <a href="https://www.youtube.com/user/BNPParibas" target="_blank">
                             <i class="fa fa-youtube">Youtube</i>
                             </a>
                          </li>
                       </ul>
                    </div>
                    <nav class="brand-nav nav col-md-7 col-sm-9">
             

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.staging.valuation.realestate.bnpparibas/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://derivate.uat.bnpparibas.com/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.cardif.ro/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header.
X-Powered-By: WordPress VIP <https://wpvip.com>
Host-Header: a9130478a60e5f9135f765b23f26593b
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://acsbapp.com https://analytics.google.com https://assets.adobedtm.com https://calc-api.cardif.ysprod.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://cdn.parsely.com https://cdnjs.cloudflare.com https://connect.facebook.net https://engagent.h-care.eu https://grwapi.net https://s0.wp.com https://s3.eu-central-1.amazonaws.com https://script.hotjar.com https://snap.licdn.com https://snippet.capybara.lmc.cz https://static.elfsight.com https://static.hotjar.com https://stats.wp.com https://www.clarity.ms https://www.google-analytics.com https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' https://cdn.acsbapp.com https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://s0.wp.com https://snippet.capybara.lmc.cz https://www.googletagmanager.com; img-src data: 'self' https://*.112.2o7.net https://analytics.google.com https://api.holeest.com https://bo-corp.bnpparibascardif.com https://cardif.cz https://cdn.cookielaw.org https://engagent.h-care.eu https://fonts.gstatic.com https://i.ytimg.com https://pixel.wp.com https://px.ads.linkedin.com https://secure.gravatar.com https://storage.googleapis.com/media.landbot.io/ https://www.google-analytics.com https://www.google.com.pe https://www.google.fr https://www.google.ro https://www.googletagmanager.com; frame-src 'self' https://engagent.h-care.eu https://forms.cloud.microsoft https://forms.office.com https://mycardif.cardif.de https://ncp-dev.cardif.co.jp https://ncp-uat.cardif.co.jp https://player.vimeo.com https://widgets.wp.com https://wordpress.com https://www.googletagmanager.com https://www.kokuchi.cardif.co.jp https://www.welcometothejungle.com https://www.youtube-nocookie.com https://www.youtube.com; connect-src 'self' https://*.ads.linkedin.com https://accesswidget-log-receiver.acsbapp.com https://acsbapp.com https://analytics.google.com https://api.capybara.lmc.cz https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.jsdelivr.net https://cdn.landbot.io https://content.hotjar.io https://engagent.h-care.eu https://firestore.googleapis.com https://geolocation.onetrust.com https://identitytoolkit.googleapis.com https://messages.landbot.io https://metrics.hotjar.io https://overbridgenet.com https://privacyportal-de.onetrust.com https://privacyportal-eu.onetrust.com https://privacyportal-fr.onetrust.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://storage.googleapis.com https://vc.hotjar.io https://welcome.landbot.io https://www.google-analytics.com securetoken.googleapis.com wss://engagent.h-care.eu wss://ws.hotjar.com; default-src 'self'; font-src data: 'self' https://cdn.landbot.io https://cdnjs.cloudflare.com https://engagent.h-care.eu https://fonts.gstatic.com https://s0.wp.com https://snippet.capybara.lmc.cz https://use.typekit.net; object-src 'self' https://engagent.h-care.eu; frame-ancestors 'self' https://frontend-dot-partner-cockpit.ew.r.appspot.com https://partner-cockpit.cardiflab.com; media-src 'self' https://asset.mediahub.bnpparibas https://broadcast.mediahub.bnpparibas https://dam.bnpparibas.com https://my.mediahub.bnpparibas; worker-src 'self'; manifest-src 'self'; base-uri 'self'
Link: <https://cardifluxvie.com/>; rel=shortlink
Cache-Control: max-age=300, must-revalidate
x-rq: cdg2 182 249 80
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Jan 2026 16:16:13 GMT
Transfer-Encoding:  chunked
Connection: close
Connection: Transfer-Encoding

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://bnpparibascardif.ro/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
ETag: "17fd7389d769debe4350d2299d6f13a5:1655718214.487026"
Last-Modified: Mon, 20 Jun 2022 09:43:34 GMT
Server: AkamaiNetStorage
Strict-Transport-Security: max-age=15768000
Expires: Fri, 09 Jan 2026 16:16:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 16:16:14 GMT
Connection: close
Set-Cookie: AK-Ref-Id=3.5979cc17.1767975374.95f59a4
Content-Security-Policy: frame-ancestors 'self'

Page title: Bank BNP Paribas | The bank for a changing world

<!doctype html>
<html class="no-js" lang="en">
    <head>
        <meta charset="utf-8">
        <meta http-equiv="x-ua-compatible" content="ie=edge">
        <title>Bank BNP Paribas | The bank for a changing world</title>
        <meta name="description" content="All information about BNP Paribas, international bank: Job offers, Leaders, CSR, Innovation, News, Commitments, Corporate culture...">
        <meta name="viewport" content="width=device-width, initial-scale=1">

        <link rel="apple-touch-icon" href="apple-touch-icon.png">
        <!-- Place favicon.ico in the root directory -->

        <link href='https://fonts.googleapis.com/css?family=Open+Sans:400italic,400,600,700' rel='stylesheet' type='text/css'>
        <link rel="stylesheet" href="/failover/bnpparibas/css/bootstrap.min.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/font-awesome.min.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/main.css">
        <link rel="stylesheet" href="/failover/bnpparibas/css/responsive.css">
    </head>
    <body>
	<script>
		function getCookie(cname) {
			var name = cname + "=";
			var decodedCookie = decodeURIComponent(document.cookie);
			var ca = decodedCookie.split(';');
			for(var i = 0; i <ca.length; i++) {
				var c = ca[i];
				while (c.charAt(0) == ' ') {
				c = c.substring(1);
				}
				if (c.indexOf(name) == 0) {
				  return c.substring(name.length, c.length);
				}
			}
			return "";
		} 
	</script>
	
	        <script src="/failover/bnpparibas/js/jquery-3.5.1.min.js"></script>
           <script>window.jQuery || document.write('<script src="js/jquery-3.5.1.min.js"><\/script>')</script>
  <script>
  $(document).ready(function() {
		var known = {
			en: true,
			fr: true,
			ja: true
		};

		var lang = ((navigator.languages && navigator.languages[0]) && navigator.language || navigator.userLanguage || 'en').substr(0, 2);
		if(!known[lang])
			lang = 'en';

      $('div.content[lang!=' + lang + ']').hide(); 
		$('div.content[lang=' + lang + ']').show();
	});
   </script>
      <header>
           <!-- GREEN BAR -->
           <div class="brand-bar">
              <div class="container">
                 <div class="row">
                    <div class="brand-social col-md-5 col-sm-3">
                       <ul>
                          <li class="facebook">
                             <a href="https://www.facebook.com/bnpparibas.net" target="_blank">
                             <i class="fa fa-facebook">Facebook</i>
                             </a>
                          </li>
                          <li class="instagram">
                             <a href="https://instagram.com/bnpparibas/" target="_blank">
                             <i class="fa fa-instagram">Instagram</i>
                             </a>
                          </li>
                          <li class="pinterest">
                             <a href="https://pinterest.com/bnpparibas/" target="_blank">
                             <i class="fa fa-pinterest-p">Pinterest</i>
                             </a>
                          </li>
                          <li class="twitter">
                             <a href="https://twitter.com/BNPParibas" target="_blank">
                             <i class="fa fa-twitter">Twitter</i>
                             </a>
                          </li>
                          <li class="linkedin">
                             <a href="https://www.linkedin.com/company/bnp-paribas" target="_blank">
                             <i class="fa fa-linkedin">LinkedIn</i>
                             </a>
                          </li>
                          <li class="youtube">
                             <a href="https://www.youtube.com/user/BNPParibas" target="_blank">
                             <i class="fa fa-youtube">Youtube</i>
                             </a>
                          </li>
                       </ul>
                    </div>
                    <nav class="brand-nav nav col-md-7 col-sm-9">
             

HTTP/1.1 302 Moved Temporarily
Server: snow_adc
Content-Length: 0
Server-Timing: t;desc="9eea605ec312", sem_wait;dur=0, sesh_wait;dur=0
X-Frame-Options: SAMEORIGIN
X-Is-Logged-In: false
X-Transaction-ID: 9eea605ec312
Location: https://csa.axepta.staging.bnpparibas/axepta
Strict-Transport-Security: max-age=63072000; includeSubDomains
Date: Fri, 09 Jan 2026 16:16:13 GMT
Connection: close
Set-Cookie: BIGipServerpool_bnppbusinessuat=146b097d1bbfd50a4f6c34b30af0c59a; httponly; secure; samesite=None; path=/
Set-Cookie: JSESSIONID=7735B8711905D6DE95B602CA3F5475EF; Path=/; Secure; HttpOnly; SameSite=None
Set-Cookie: glide_user=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; HttpOnly; Secure; SameSite=None
Set-Cookie: glide_user_session=; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; HttpOnly; Secure; SameSite=None
Set-Cookie: glide_user_route=glide.e1ae425847726c84a96f5ce6e42787b8; Max-Age=2147483647; Expires=Wed, 27-Jan-2094 19:30:20 GMT; Path=/; HttpOnly; Secure; SameSite=None
Set-Cookie: glide_node_id_for_js=443c34235d444da89a0f67d0b3cd238a0da229a1b9a395cdb8fc5c7842300fc1; Path=/; Secure; SameSite=None

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.commercialfinance.bnpparibas.co.uk/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cardif.ro/
Date: Fri, 09 Jan 2026 16:16:54 GMT
Connection: close

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://oi-auto-cla-qa.bnpparibascardif.cl/
Date: Fri, 09 Jan 2026 16:16:15 GMT
Connection: close

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 369
Expires: Tue, 06 Jan 2026 22:01:35 GMT
Date: Tue, 06 Jan 2026 22:01:35 GMT
Connection: close
Strict-Transport-Security: max-age=86400

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;martechcorporate&#46;au&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767736895&#46;36f7fda5
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767736895&#46;36f7fda5</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 369
Expires: Tue, 06 Jan 2026 22:02:17 GMT
Date: Tue, 06 Jan 2026 22:02:17 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;martechcorporate&#46;au&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767736937&#46;36f968a5
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767736937&#46;36f968a5</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 369
Expires: Tue, 06 Jan 2026 21:48:46 GMT
Date: Tue, 06 Jan 2026 21:48:46 GMT
Connection: close
Strict-Transport-Security: max-age=86400

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;martechcorporate&#46;ae&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767736125&#46;36e1c9d4
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767736125&#46;36e1c9d4</P>
</BODY>
</HTML>

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 369
Expires: Tue, 06 Jan 2026 21:49:25 GMT
Date: Tue, 06 Jan 2026 21:49:25 GMT
Connection: close

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;martechcorporate&#46;ae&#47;" on this server.<P>
Reference&#32;&#35;18&#46;4d247e68&#46;1767736165&#46;36e28469
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;4d247e68&#46;1767736165&#46;36e28469</P>
</BODY>
</HTML>

HTTP/1.1 200 OK
Content-Type: text/html
ETag: "25975234"
Last-Modified: Mon, 29 Apr 2024 07:03:59 GMT
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Referrer-Policy: same-origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-DNS-Prefetch-Control: off
Expires: Tue, 06 Jan 2026 13:19:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 13:19:06 GMT
Content-Length: 739
Connection: close
Alt-Svc: h3=":443"; ma=93600

Page title: SMART

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <link rel="icon" href="/favicon.ico" />
    <!-- <link rel="preconnect" href="https://fonts.googleapis.com" />
    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin />
    <link
      href="https://fonts.googleapis.com/css2?family=Noto+Sans+TC:wght@400;500&family=Rubik:wght@400;500;600&display=swap"
      rel="stylesheet"
    /> -->
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <title>SMART</title>
    <script type="module" crossorigin src="/assets/index-8d279696.js"></script>
    <link rel="stylesheet" href="/assets/index-960e7a6b.css">
  </head>
  <body>
    <div id="app"></div>
    
  </body>
</html>

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://search.yflife.app/
Expires: Tue, 06 Jan 2026 13:19:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 13:19:46 GMT
Connection: close