www.garanziaeuropa.com/login.php?lnk=Convenzionato
93.95.216.54301 Moved Permanently 266 B URL HTTP/1.1 www.garanziaeuropa.com/login.php?lnk=Convenzionato
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9fec5625be157efbd45ade2c18865f32
48813c5f83f3dea11935f27b007b8ff0cb02aef0
7485a453bf819247e7248409de599e7aa1d902a9530bed18fa55667022162df4
GET /login.php?lnk=Convenzionato HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 12 Nov 2022 12:48:39 GMT
Server: Apache
Location: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cache-Control: max-age=172800
Expires: Mon, 14 Nov 2022 12:48:39 GMT
Content-Length: 266
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5319
Expires: Sat, 12 Nov 2022 14:17:18 GMT
Date: Sat, 12 Nov 2022 12:48:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5499
Cache-Control: max-age=170055
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 12:02:54 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4489
Expires: Sat, 12 Nov 2022 14:03:28 GMT
Date: Sat, 12 Nov 2022 12:48:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0Q+862cAD6/nCcHO6YnO3W/Efkypwjn5t8C2GRWnkz0IxnVctrAukrviihut1PslC4+vhdej0oc=
x-amz-request-id: DC42XRGPSH3MZNW9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 12:12:59 GMT
age: 2140
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 12:44:02 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 277
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 12:48:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.garanziaeuropa.com/login.php?lnk=Convenzionato
93.95.216.54200 OK 5.3 kB URL HTTP/2 www.garanziaeuropa.com/login.php?lnk=Convenzionato
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash bd97541998686a1ddae1eba39abeadd3
6ddef804cac59fda12ee5f0710b1e5d3da7c4820
5482070ba95c6e4b4e08aceb9d035e7df533996dcc8a21b23ee1455dadd708a1
GET /login.php?lnk=Convenzionato HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5266
content-type: text/html; charset=utf-8
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/swiper4.5.0.min.css
93.95.216.54200 OK 3.1 kB URL HTTP/2 www.garanziaeuropa.com/css/swiper4.5.0.min.css
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (19512)
Hash 13e39936352c3379c771d16e9288f86d
d183eb111d265abaec9864f57849e8bca639d5d0
a865ba7ef959b7cde981c9651f1529110cb5c10cb30f44522e1dd5cc3ea7226f
GET /css/swiper4.5.0.min.css HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Feb 2019 19:30:58 GMT
etag: "27e0c17-4d42-58280a159e080-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3059
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/magnific-popup.css?v=1.8.78
93.95.216.54200 OK 1.8 kB URL HTTP/2 www.garanziaeuropa.com/css/magnific-popup.css?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e
Analyzer Verdict Alert fortinet Phishing
GET /css/magnific-popup.css?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:15 GMT
etag: "27e0c1a-1b27-561dde703b5c0-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1816
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/bootstrap-datepicker3.min.css?v=1.8.78
93.95.216.54200 OK 2.5 kB URL HTTP/2 www.garanziaeuropa.com/css/bootstrap-datepicker3.min.css?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (20847)
Hash c05b723a2585925f2288833723aed2d4
0f00d786fa1355b502164c31526538bd46198f1b
1875430d7c8c09b39d64980f29500e2340579a2fd83ef5f9aa79aa9906df888e
GET /css/bootstrap-datepicker3.min.css?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:15 GMT
etag: "27e0c19-52a2-561dde703b5c0-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2451
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/DataTables/datatables.css?v=1.8.78
93.95.216.54200 OK 4.0 kB URL HTTP/2 www.garanziaeuropa.com/js/libs/DataTables/datatables.css?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 9f229a0cecb35478e5a5eab9cdfc95bc
4361eb9c30c428f56e6cfa0cb44883230bc01fc6
b7f8584b86844d62b94266aea15bd733b783a24b6ee14dc9e399191b307970d5
GET /js/libs/DataTables/datatables.css?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Dec 2018 07:42:50 GMT
etag: "27a17da-5f09-57d6f47067280-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3982
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/spinner.css?v=1.8.78
93.95.216.54200 OK 528 B URL HTTP/2 www.garanziaeuropa.com/css/spinner.css?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 128af1f0f99bf2a417946434cdb79fe3
4b488268ab785fa326e9e6d76ad6aed3948c4a6d
9d0d294f0edb3f8a9db3ef13d05cc320b68e31be51de0bcc1a1b858e42b9815a
GET /css/spinner.css?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jul 2018 10:45:00 GMT
etag: "27e0c14-5b0-5712fa3428300-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 528
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7ba0b74b5e2d208bbe411761cdf957a4
cd59ccac8d3487d1e8ad29a72c00b6176188c456
ad6d2d4d75776cbf90c32846b132c1c7d936f0ee41c2f7ec284a5a34da01da7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2334
Cache-Control: max-age=132699
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Etag: "636ef064-117"
Expires: Mon, 14 Nov 2022 01:40:18 GMT
Last-Modified: Sat, 12 Nov 2022 01:01:24 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 86d1ab5f5a5b326dd100a4bfcda8ceed
ed17be3586e93321dd2ab1a340ae41d6f86e293d
db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e569acd833d180f3c2fba0919fbeb704
60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5
994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.garanziaeuropa.com/js/libs/jquery-3.5.1.min.js?v=1.8.78
93.95.216.54200 OK 31 kB URL HTTP/2 www.garanziaeuropa.com/js/libs/jquery-3.5.1.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (65451)
Hash 888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715
GET /js/libs/jquery-3.5.1.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 10:28:24 GMT
etag: "27a225d-15d84-5acaba5c3a200-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30910
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/modules/plugins.js?v=1.8.78
93.95.216.54200 OK 251 B URL HTTP/2 www.garanziaeuropa.com/js/modules/plugins.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash f45063ca6dbbb0ff52ddcecd9b2487b2
281c2761251b387f630f965063657dc934c92d44
768b70b7c17d7b7562cd869447c0acbab7b9e1f4e478672705d18b904d6f239d
GET /js/modules/plugins.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Jan 2020 08:04:32 GMT
etag: "27a2276-206-59b8839da0400-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 251
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/bootstrap.min.css?v=1.8.78
93.95.216.54200 OK 23 kB URL HTTP/2 www.garanziaeuropa.com/css/bootstrap.min.css?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (748)
Hash d8857640a33eab6b96dfac9ef0d76b79
42756b44f06de658006a8265e552e44544410abb
6a9e01f269c82edff2a8df61581985fdab9752ba7c40c0b1deb49d457bd84b5d
GET /css/bootstrap.min.css?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 May 2019 12:57:40 GMT
etag: "27e0c12-2d851-589290b4fd900-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23404
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 943813f35a1dbbd894b0d7374f237a45
c0792c161486e285df11f930aab2cea60f0ba0bc
980e6e154794480b95f8c394ef9f38cde239e4bcee366e3b12fb693318f3dd1e
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 12 Nov 2022 12:48:39 GMT
date: Sat, 12 Nov 2022 12:48:39 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.garanziaeuropa.com/img/logo.svg
93.95.216.54200 OK 16 kB URL HTTP/2 www.garanziaeuropa.com/img/logo.svg
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4c850b09512016f7c04660faff8a55da
12e8117ae132774c7e88c3e89a3f2cb6034e7f6f
15cce515d25aa67b9aa1a4100f58aec33871e4debd1ea858df3d84f1af5040fa
Analyzer Verdict Alert fortinet Phishing
GET /img/logo.svg HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Jan 2022 12:13:52 GMT
etag: "27a12b5-17a4e-5d539450ec000-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 15454
content-type: image/svg+xml
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?language=it&key=AIzaSyBEQsZ2dtNKZZ3gnQF4zWnwGM2FVs6gX54
216.58.211.14200 OK 54 kB URL HTTP/2 maps.google.com/maps/api/js?language=it&key=AIzaSyBEQsZ2dtNKZZ3gnQF4zWnwGM2FVs6gX54
IP 216.58.211.14:0
File type ASCII text, with very long lines (2366)
Hash 2b764130080d84fbd202fca0f04c6998
1c30f441a4ebf82a92b62729c3b7f66f74e875c7
0229eb9cfcfcb0178c8c6c7c57e2f880f76126e6d8f94677051a9d91f5abd856
GET /maps/api/js?language=it&key=AIzaSyBEQsZ2dtNKZZ3gnQF4zWnwGM2FVs6gX54 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sat, 12 Nov 2022 12:48:39 GMT
expires: Sat, 12 Nov 2022 13:18:39 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53595
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=26
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.garanziaeuropa.com/css/stile.css?v=1.8.78&v=1.8.78
93.95.216.54200 OK 52 kB URL HTTP/2 www.garanziaeuropa.com/css/stile.css?v=1.8.78&v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (55690)
Hash 6fb031b026f0707ece7930dd03ed3812
12543f80fd812487c68b6ff2fd0c55bdbfe5cc92
1f6b12312b6266099ad8ff592e3c8960af9ae02862dd5ddc5929de369d6b935d
GET /css/stile.css?v=1.8.78&v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Jul 2021 08:10:46 GMT
etag: "27e0c18-4a83e-5c7899746cd80-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Mon, 12 Dec 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 51750
content-type: text/css
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/bootstrap-datepicker.it.min.js?v=1.8.78
93.95.216.54200 OK 311 B URL HTTP/2 www.garanziaeuropa.com/js/bootstrap-datepicker.it.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (520), with no line terminators
Hash cf2719c92bcbe5228fb6aaa8d0e0c98e
696a699fab3675350ea6510e93d8b58e099f4ed6
47b684f67d32ef10f58b36f7673cf6c91a9c3da6a77fd8c200928a5fd9bb0ef9
GET /js/bootstrap-datepicker.it.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:41 GMT
etag: "27a16d2-20d-561dde8907040-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 311
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/checkBo.js?v=1.8.78
93.95.216.54200 OK 993 B URL HTTP/2 www.garanziaeuropa.com/js/checkBo.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 1367a9f3e5268ecb83dba28158fad039
6419083f49ba5fb21f8d52361552bbd6f3f3deef
e197f08707265b3193685da82709cce8a1ebce4db182cc2c9b651c19b67c2a61
Analyzer Verdict Alert fortinet Phishing
GET /js/checkBo.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:42 GMT
etag: "27a16c9-eea-561dde89fb280-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 993
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/iziToast.min.js?v=1.8.78
93.95.216.54200 OK 4.9 kB URL HTTP/2 www.garanziaeuropa.com/js/iziToast.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (17636)
Hash c9d64408b26d4c0f4797087b3b4c5957
be9f60779a8a1014f5d078c7f276f26d6d896382
63308ca763092e32a421e1767febd0b68a9a2ed0d56d2cb41c573751467e807b
GET /js/iziToast.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Jul 2018 14:32:21 GMT
etag: "27a16ca-4537-570f676cd8740-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4890
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/DataTables/plugins/datetime-moment.js?v=1.8.78
93.95.216.54200 OK 937 B URL HTTP/2 www.garanziaeuropa.com/js/libs/DataTables/plugins/datetime-moment.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash ed445c6185c0ec68414af6fd42ac7e27
ee7b1424a45c0d4a36478a54adbd729ad5a3ded5
7d57b777fea8568f6a22e1b2176849d673386402866368548baa520890cf6cb4
GET /js/libs/DataTables/plugins/datetime-moment.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Jan 2019 08:10:01 GMT
etag: "27a1735-828-57fb709a36840-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 937
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/additional-methods.min.js?v=1.8.78
93.95.216.54200 OK 5.2 kB URL HTTP/2 www.garanziaeuropa.com/js/additional-methods.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (17590)
Hash 4c0e8d136f8e41d83cb99f52be04f280
eecf9c91f361ac05dfaa6b7167aea6f0d4ddf7cd
81659fd2d8cc8d38327f4450954654b19dbb8a95a2b1e402e47869f0ca9dddc6
Analyzer Verdict Alert fortinet Phishing
GET /js/additional-methods.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:41 GMT
etag: "27a16da-4547-561dde8907040-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5199
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/bootstrap-datepicker.min.js?v=1.8.78
93.95.216.54200 OK 10 kB URL HTTP/2 www.garanziaeuropa.com/js/bootstrap-datepicker.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (32022)
Hash 01bacee9502f01fa065fa45211a19c9b
2a84f83063cc208a2a6efadc1140d7c277b8d973
5135a0aa02da761e591a6cfc3a918a8c06a0fa6028b1d5a38f6a3f03c1be3f7f
GET /js/bootstrap-datepicker.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:42 GMT
etag: "27a16c2-857c-561dde89fb280-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10028
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/modules/file-drop.js?v=1.8.78
93.95.216.54200 OK 404 B URL HTTP/2 www.garanziaeuropa.com/js/modules/file-drop.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 89007a9ee281312c740691472fb8aeaa
bc0815afe5e3c0041f101576ff8b65f9d9417555
ea1347f0438de82227ee0a0ed8414cc3bb8991160eb21cce8e009af468082484
Analyzer Verdict Alert fortinet Phishing
GET /js/modules/file-drop.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 24 Jan 2020 13:35:59 GMT
etag: "27a16d8-3f3-59ce2d682edc0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 404
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/popper.min.js?v=1.8.78
93.95.216.54200 OK 6.9 kB URL HTTP/2 www.garanziaeuropa.com/js/popper.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (18860)
Hash 31fc6f3a4f879c82ae3fc244916a5834
1cb11bb0ff1f4ed2ef260032e8df219cf3385999
36752da4788a0af640f774cf9c3257c536f8fb2994bf092d2f36e24d3a2f646d
Analyzer Verdict Alert fortinet Phishing
GET /js/popper.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:43 GMT
etag: "27a16d1-4a59-561dde8aef4c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6853
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/aos.js?v=1.8.78
93.95.216.54200 OK 4.6 kB URL HTTP/2 www.garanziaeuropa.com/js/aos.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (14212)
Hash 6a0eb26eb1534650383660ff64424c83
214d02b7c7fffae796715b73781c14247f062c0d
1b1f1964de8457c09b77202bcd6ebb2e3aeeaa848a29ca3788d09defd29fa1e4
GET /js/aos.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:41 GMT
etag: "27a16c8-37a4-561dde8907040-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4585
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/api.js?v=1.8.78
93.95.216.54200 OK 1.9 kB URL HTTP/2 www.garanziaeuropa.com/js/libs/api.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 80536c8a3905ac8c99ce5a90dd5ffaa3
cfb72f9d9592774e51e7b290a43633c9c6404984
f16ee7946da9cd024023d50e132673f14d39f7866e165415267c10660625d842
Analyzer Verdict Alert fortinet Phishing
GET /js/libs/api.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 27 Aug 2020 13:07:49 GMT
etag: "27a181e-15dd-5addb9f809340-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1882
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/signature_pad2.3.2.min.js?v=1.8.78
93.95.216.54200 OK 3.2 kB URL HTTP/2 www.garanziaeuropa.com/js/libs/signature_pad2.3.2.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (9378)
Hash 2aa2e2be9385d0821fa4cb27cb139f83
30d48235919af06fd468e355c2a497f644eb57c1
c7ab8cce19753569c85e8ea7429ae792770c5a72b99f2f8bc4a492dff7aa856d
GET /js/libs/signature_pad2.3.2.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 Dec 2019 16:48:37 GMT
etag: "27a2275-24a3-59998a2164340-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3208
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/social.js?v=1.8.78
93.95.216.54200 OK 545 B URL HTTP/2 www.garanziaeuropa.com/js/social.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash d53ab9967436833ee1589c8e74baa225
ee9cf1cb8e805347fca48a739d99fc2b49d56d15
f23c4e4554ba5bef2510e0332310d22135928d9629a8145bdacf5491edcc7892
GET /js/social.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:44 GMT
etag: "27a16c1-51c-561dde8be3700-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 545
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/jquery-eu-cookie-law-popup.js?v=1.8.78
93.95.216.54200 OK 2.4 kB URL HTTP/2 www.garanziaeuropa.com/js/jquery-eu-cookie-law-popup.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 7968a3478b5c05cbe6cb0cb1122ceeb9
d5c2594ef9a7beb4688a6a7d50c424544dd9eee6
5231c0750b65dc4c803a42409c3ce2edbf1ce67c4b93d8e4d8c366482a224027
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-eu-cookie-law-popup.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:43 GMT
etag: "27a1820-21b1-561dde8aef4c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2412
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/modules/signature.js?v=1.8.78
93.95.216.54200 OK 708 B URL HTTP/2 www.garanziaeuropa.com/js/modules/signature.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 98a57e295a86ffc94362b086c770b5d1
8ed65547aa70f636e53b565fdbe9ad6b2e81be61
f976a959fb9798707f0c8cc6832ae5cbc9d8b239c24b6e0f92c1fc36777a7648
Analyzer Verdict Alert fortinet Phishing
GET /js/modules/signature.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Jan 2020 09:15:48 GMT
etag: "27a2277-6a2-59b8938b89900-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 708
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/spinner.js?v=1.8.78
93.95.216.54200 OK 263 B URL HTTP/2 www.garanziaeuropa.com/js/spinner.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 449131087e421b34cdda6b30b4f157a7
925b2543e8c102402010794ba8b6202f85fd8607
c6a4492392754522dfd40d2bb448fd78550e717c7bde33d977e3b9ef82485100
Analyzer Verdict Alert fortinet Phishing
GET /js/spinner.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jul 2018 10:41:35 GMT
etag: "27a16c3-1cb-5712f970a75c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 263
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/parallax.min.js?v=1.8.78
93.95.216.54200 OK 2.3 kB URL HTTP/2 www.garanziaeuropa.com/js/parallax.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (6681)
Hash 1e1889c427a2ad103786df533f6cfdeb
96d116787fd225ad750470ae3fe8d850e9b1e53f
2b8fee7ad18db51b0a80bc5ac1a4bf49d28aaaa5646d86820d6d1c60d5b90d95
GET /js/parallax.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:43 GMT
etag: "27a16ba-1ad0-561dde8aef4c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2322
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/jquery.easy-autocomplete.min.js?v=1.8.78
93.95.216.54200 OK 4.9 kB URL HTTP/2 www.garanziaeuropa.com/js/jquery.easy-autocomplete.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (15653), with CRLF line terminators
Hash a55ac568c97bd6f0dc4c04315a53bb25
c830c34652fb7a1ae38eca079b3ffb54c4f98773
227c7e70aab8a07a47d196ee15a109c33aa5cb5eae874386277024fb59d5fe7d
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.easy-autocomplete.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 May 2016 19:55:32 GMT
etag: "27a16be-3dd9-531f57dddf500-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4897
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/map.js?v=1.8.78
93.95.216.54200 OK 425 B URL HTTP/2 www.garanziaeuropa.com/js/map.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 0f2c27186496d37788483ac483c07b20
0b4d1a9576555f95da7e9821b119e13666757e83
e583f1c503fd703ce633aaa850382e92b2bab217e3e0f9c33ebe00ac31a9196c
GET /js/map.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:43 GMT
etag: "27a16cf-41f-561dde8aef4c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 425
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/img/login.svg
93.95.216.54200 OK 1.1 kB URL HTTP/2 www.garanziaeuropa.com/img/login.svg
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash ac2742b83518b270ad1eb076be9890fa
00a8f5c1ea0abea20db37042f8da69f46a65e6db
ecaebe32745cb3f426a075ba23e75eef121394e9c7ea3f44c9656a15cac8a634
Analyzer Verdict Alert fortinet Phishing
GET /img/login.svg HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Jan 2018 12:33:31 GMT
etag: "27a1292-1143-5626b3d2dfcc0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1122
content-type: image/svg+xml
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e569acd833d180f3c2fba0919fbeb704
60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5
994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e569acd833d180f3c2fba0919fbeb704
60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5
994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.garanziaeuropa.com/js/script.js?v=1.8.78
93.95.216.54200 OK 5.8 kB URL HTTP/2 www.garanziaeuropa.com/js/script.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash 80d1f1e4b59dbf8a3c6db8dbb58d654a
6d41227a1e99f9b502b6a631d70b84d16ee56ebd
24da1a9112cebf47148a8a1e188ebcec44fc9bba9098eba9a4e0525c2bd73992
GET /js/script.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Jul 2021 08:11:00 GMT
etag: "27a16bf-5483-5c789981c6d00-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5828
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/functions.js?v=1.8.78
93.95.216.54200 OK 620 B URL HTTP/2 www.garanziaeuropa.com/js/functions.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash bfc9980099e3ff65aa37a6bda112ae6d
158f8d731c65e7e8f67027bdc28e2a5668f865ee
c718a148fe13ff86c0e30c158050590a995a7606ce92251c21f3766df4139e66
GET /js/functions.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:42 GMT
etag: "27a16d4-727-561dde89fb280-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 620
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/bootstrap.min.js?v=1.8.78
93.95.216.54200 OK 13 kB URL HTTP/2 www.garanziaeuropa.com/js/bootstrap.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (50904)
Hash 2397fd22c4f09352a4c4614c1e28b50e
68c1cf54eb8f7bbd0e4f761c15f3442d7c79c2ec
0e706dd5d11a409c89cd061b62deb06360bef74f5b0c678a2022a547be8a29e8
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:42 GMT
etag: "27a16c4-c7c7-561dde89fb280-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12980
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/CxRecaptcha.js?v=1.8.78
93.95.216.54200 OK 786 B URL HTTP/2 www.garanziaeuropa.com/js/libs/CxRecaptcha.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash fbcde7af7d430164d86e3545f68580f8
a7d519ff13888e6b69e85f79b4d33b11c3321c37
b54f98ba4557d6a8960c653a2f0076c8e8e4192f136f2c84208c964fe9323846
Analyzer Verdict Alert fortinet Phishing
GET /js/libs/CxRecaptcha.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Dec 2020 08:42:46 GMT
etag: "27a181d-825-5b6f571338d80-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 786
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/jquery.magnific-popup.min.js?v=1.8.78
93.95.216.54200 OK 7.3 kB URL HTTP/2 www.garanziaeuropa.com/js/jquery.magnific-popup.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.magnific-popup.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jan 2018 11:56:43 GMT
etag: "27a16d3-4ef8-561dde8aef4c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7346
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/adm/js/libs/jquery.sumoselect.js?v=1.8.78
93.95.216.54200 OK 7.1 kB URL HTTP/2 www.garanziaeuropa.com/adm/js/libs/jquery.sumoselect.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash 7fbb15410f62b805850df1cdba1f0670
884499baafc4659ce7535ac58be6c740096774d5
ffa2973e9630a73c0fd1bd6f4292451ecda4781a023b5221c80b83eac6273cdd
Analyzer Verdict Alert fortinet Phishing
GET /adm/js/libs/jquery.sumoselect.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Feb 2017 13:39:47 GMT
etag: "27e0ae3-7c8d-54891d0608ec0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7119
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/swiper4.5.0.min.js?v=1.8.78
93.95.216.54200 OK 33 kB URL HTTP/2 www.garanziaeuropa.com/js/swiper4.5.0.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (65270)
Hash 241124af67f8656bc9fcef8f664aa30b
53fe794dce467d865e63c78f0a5f374db8caa5a4
dd19c0e47ed39fc8d6d88421a0eb30a9e224705224f4068a185820aab66e836a
GET /js/swiper4.5.0.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Feb 2019 19:30:58 GMT
etag: "27a16bc-1f3be-58280a159e080-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33284
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 12:44:48 GMT
cache-control: public,max-age=3600
age: 232
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/moment.js?v=1.8.78
93.95.216.54200 OK 471 B URL HTTP/2 www.garanziaeuropa.com/js/moment.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
GET /js/moment.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 24 Sep 2018 12:27:03 GMT
etag: "27a16cb-23dad-5769d1b44f3c0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 32643
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XybG4IRvEfy7n3tIsuje3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QqvPY95joafnOnpXLMFSPf9oa58=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1bb279167832b97b5e80041e8975740c
48d5f288978ea6717b16e0f96974a23603361cc2
894d4dd927851fb6078c3bd527e3f424c4e3ad3f6ebdfa7c0fee089e0ce044cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6136
Cache-Control: max-age=145091
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:40 GMT
Etag: "636f11f3-1d7"
Expires: Mon, 14 Nov 2022 05:06:51 GMT
Last-Modified: Sat, 12 Nov 2022 03:24:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/it_IT/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/it_IT/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 82c8b9bbf651a625dbcd380871ac536e
23e764bca660272f4395572dd3112baad02e4968
71c6c7fd05359df73bba6951061a42f3fbf9fd9b4e956ce8d7246d37531c94a9
GET /it_IT/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: c241a9cd475c44f78f2adbb55e5042a5
etag: "2cad5cc70f855ecb9c3512dc0509c26f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 12 Nov 2022 13:04:39 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: gsi5u/ZRpiXbzTgIcaxTbg==
x-fb-debug: yeBuglI446vVHOwG94AKXh76V+C2mRrln0NLFi3yCcEa7BN5XwlQUNUSSzXEZON1F0+LlOC3Qtnkw+Z+g4GHIw==
content-length: 1686
x-fb-trip-id: 1904183273
date: Sat, 12 Nov 2022 12:48:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.garanziaeuropa.com/img/favicon/apple-touch-icon.png?v=1.8.78
93.95.216.54200 OK 4.2 kB URL HTTP/2 www.garanziaeuropa.com/img/favicon/apple-touch-icon.png?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 420724f980f5744a2f71ee006d895f91
9495fa09054fadd05a9f449d619ebd1dab6ce05b
9766f47b40e8694054548c28a28401ba91f6b3675752246a83c2afc3274a6d87
Analyzer Verdict Alert fortinet Phishing
GET /img/favicon/apple-touch-icon.png?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Aug 2017 14:15:02 GMT
etag: "27a12a7-1041-557e5097f0580"
accept-ranges: bytes
content-length: 4161
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 12:48:40 GMT
vary: User-Agent
content-type: image/png
date: Sat, 12 Nov 2022 12:48:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/img/favicon/favicon-16x16.png?v=1.8.78
93.95.216.54200 OK 1.1 kB URL HTTP/2 www.garanziaeuropa.com/img/favicon/favicon-16x16.png?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash be627f393091b254b65eebc1e242a34e
1e5ecb394c207b49816b21b69dafd14031b38d10
f73b61a165c43712f5bb3eb36431d198dc0e4f265fb21ed6f68afe20d2364a88
Analyzer Verdict Alert fortinet Phishing
GET /img/favicon/favicon-16x16.png?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Aug 2017 14:15:02 GMT
etag: "27a12a1-46c-557e5097f0580"
accept-ranges: bytes
content-length: 1132
cache-control: max-age=31536000
expires: Sun, 12 Nov 2023 12:48:40 GMT
vary: User-Agent
content-type: image/png
date: Sat, 12 Nov 2022 12:48:40 GMT
server: Apache
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
172.217.21.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 172.217.21.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.garanziaeuropa.com
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 12 Nov 2022 12:48:40 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.garanziaeuropa.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1bb279167832b97b5e80041e8975740c
48d5f288978ea6717b16e0f96974a23603361cc2
894d4dd927851fb6078c3bd527e3f424c4e3ad3f6ebdfa7c0fee089e0ce044cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6136
Cache-Control: max-age=145091
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 12:48:40 GMT
Etag: "636f11f3-1d7"
Expires: Mon, 14 Nov 2022 05:06:51 GMT
Last-Modified: Sat, 12 Nov 2022 03:24:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (668)
Size 163 kB (162590 bytes)
Hash 70dc760a0efad09d703883a39f7683b2
2bc70f2a100ff27d27a89d563dfe279590c8336b
2bc59eab94309c59fba62afa40dfd841fb83760714e9ec7248ce3e10ae05fd19
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.garanziaeuropa.com
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:25:44 GMT
expires: Sat, 11 Nov 2023 23:25:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 48176
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/it_IT/sdk.js?hash=ce022ea690117e932844c9815e6be71a
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/it_IT/sdk.js?hash=ce022ea690117e932844c9815e6be71a
IP 31.13.72.12:0
File type ASCII text, with very long lines (18530)
Hash 35108311ebb4a968d1e8ec0da4ad005c
644c697f16f805963354526d2a451ae1f23f842f
3f41c3fbd3a1f5413611c04e05a709c899e83065814e39bf87d69fa7c66aa738
GET /it_IT/sdk.js?hash=ce022ea690117e932844c9815e6be71a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.garanziaeuropa.com
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 94697cf34c93933e90e6592e397962b0
etag: "57e51051fd08909a33c4127625fd2b6c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 12 Nov 2023 12:28:42 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: NRCDEeu0qWjR6OwNpK0AXA==
x-fb-debug: TN7IfMx7aZeX9QxDR+xbEO1j52v2c6r5K0Iu9R5oZfWLzbXsnG2oeKx7wi014435Z+I39/VpUQTVhH6TKPochA==
content-length: 88381
x-fb-trip-id: 1904183273
date: Sat, 12 Nov 2022 12:48:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8823
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 12:48:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8823
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 12:48:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NeIY2s01XJFjeone0iZ62qWRqoDGoqdFqPsXP2IG6DD9Hub4eqR1pQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 03:49:13 GMT
age: 32368
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f09e254cd6f2e29b3bf198cc5d58a46f
fa34520e849bf746ff43aec3d28beb9e4be44f4d
2e29eace95fd8cb5b6d77df880d2044ecab4206cba47931c3a95e77c1b4e9d9a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8953
x-amzn-requestid: 2a2d20f4-3aa5-475e-8ec2-fc569766335e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQGAhIAMFrjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-26dc0259793ec94814f3d41a;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BcjpdZlgZPqBX1rk3Th_XlwHrDYoeAT8pWaH7I21WnkfFzvzJE8ekw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:42:55 GMT
age: 54346
etag: "fa34520e849bf746ff43aec3d28beb9e4be44f4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b650f84-0cd0-4921-bc04-f0ea0459e4d1.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b650f84-0cd0-4921-bc04-f0ea0459e4d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 084ca839d34b15916cd2f5034440a1ef
7764777ce9a862c1590712ef33032df72edefffd
b8893d7f327f88316cb909ded7fd8f4e1809190a7da807677785bf953f6e33fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b650f84-0cd0-4921-bc04-f0ea0459e4d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8482
x-amzn-requestid: 79e5e211-afc8-4531-b361-6f6f3386f16e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUGJsIAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-5a0ba4a93eba91c81ba3a9bc;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uZ6Nth8jaUp7GXRXknKB8k90AgzBj4Yv3YfduSF7yajyFESb9oOh3A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:51:45 GMT
age: 53816
etag: "7764777ce9a862c1590712ef33032df72edefffd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516f1bfefb1c1a737ea2441f85343b32
0cc22d7bf9092fb30f31e2ca8f242c197b891669
733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7wqdiuomEgaQlE1P5gopDGXbAkmh3ohPXYDcBWczuYFEcj8nczk9_w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:52:57 GMT
age: 53744
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash faa8e3cf2ab3c1d53a1735def5bb7476
ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f
e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6577
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMjIGHRoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2y97S3ITb7MLXuIIAQfCCKjgvOXisdCT5mod7OD588LOhPCy_OrUXQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:02:21 GMT
age: 53180
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94a390953f36bf9902cb9f04007c36c1
13535f16f207d4c19c1b6019757f6739a4531eeb
37d73300955a979e5b9d3dabc6e924c4e9734c6c63d92c42c709f8cb0d5aeabb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5902
x-amzn-requestid: 9c8be25c-9c96-4861-89c8-8b7bf06ffc16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNBrH2DoAMFqbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec20a-6c770a86581d1f7f4599684f;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: T6_3oJ8lEFeYF3wFDvIVfSRZbILHdbpDuAd50fwkzcYji2yVLUQkmQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:44:57 GMT
age: 54224
etag: "13535f16f207d4c19c1b6019757f6739a4531eeb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 33a5d58a3831cbcc4f1c48d78997b5de
0365830ac5a6262f8cb763d3709fe61bea37f671
00220e45b92b61c2f390e1cc716e437283838976f0ac45c24de96080b2d47601
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108829
Date: Sat, 12 Nov 2022 12:48:42 GMT
Etag: "636e83ea-1d7"
Expires: Sun, 13 Nov 2022 19:02:31 GMT
Last-Modified: Fri, 11 Nov 2022 17:18:34 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qRMUA6Hbcky7PURrGu8guU4pwL9OECFzNfYunGiDLx5AZZf8-BuV4g==
Age: 6237
widget-mediator.zopim.com/s/W/ws/68bjCcRkJDWVKrzE/c/1668257321287
18.157.172.66101 Switching Protocols 0 B URL HTTP/1.1 widget-mediator.zopim.com/s/W/ws/68bjCcRkJDWVKrzE/c/1668257321287
IP 18.157.172.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/W/ws/68bjCcRkJDWVKrzE/c/1668257321287 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.garanziaeuropa.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PW/YieGC3JDpMvDctNK4oQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 12 Nov 2022 12:48:42 GMT
Connection: upgrade
Set-Cookie: AWSALB=h/SC8lIT2YOCW5QN7TWPll4e6g3687BzecgmtJkKiejC8ovqmfFAcb+bxHuP54NO7e7DcV5G7pn6PymtnTyh/rGLu+bU3g2ISqpVHYLF+q7PLgZfrjE1dYhsnxTa; Expires=Sat, 19 Nov 2022 12:48:42 GMT; Path=/
AWSALBCORS=h/SC8lIT2YOCW5QN7TWPll4e6g3687BzecgmtJkKiejC8ovqmfFAcb+bxHuP54NO7e7DcV5G7pn6PymtnTyh/rGLu+bU3g2ISqpVHYLF+q7PLgZfrjE1dYhsnxTa; Expires=Sat, 19 Nov 2022 12:48:42 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: TB77pajLRHbsW+co0gQwYzn5/nA=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
104.18.72.113206 Partial Content 20 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
IP 104.18.72.113:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Hash f11ce9e8f40a392830217253fe75d6de
89ba57fcc360da34756c127acba15a8b23267fc6
05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee
GET /web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 12 Nov 2022 12:48:42 GMT
content-type: audio/mpeg; charset=utf-8
content-length: 19698
x-amz-id-2: PEJaXGqoBVafYWDOyXRKI4XIuCV6qiqY6dKaGnywshngyobWuVmQ7I7xY7kkNKS5kDX8tP3zeaI5ugKA9F8V7A==
x-amz-request-id: 9FECFXCTYMS1KWDP
x-amz-replication-status: COMPLETED
last-modified: Sat, 05 Mar 2022 21:30:07 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sun, 05 Mar 2023 21:30:06 GMT
x-amz-version-id: rEiIcwVoP6Gqhntax3yVPyGX.ebLEQ6h
cf-cache-status: HIT
age: 21433789
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9gbiy8b8PlDZIZqsUwNlxEEaSrhZ7%2Fiu1l65mYkzBlNjvqVi2WrxVz0%2FsWSuKjWDQ1f2rUwKUQajcwjN2ax8rd7FjXD7Q%2F9nXwAcvXL7213EqRDdrbDcniUJ7LxCiiYsHnfR4PM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f622a98fbb518-OSL
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=b7910000-6ab0-4dc9-be9f-d2ffca3fef03
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=b7910000-6ab0-4dc9-be9f-d2ffca3fef03
IP 104.18.72.113:0
GET /ekr/snippet.js?key=b7910000-6ab0-4dc9-be9f-d2ffca3fef03 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:39 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 13
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9HrnteTNJ5fkr6DfS6bXyCcAlDLMGVr81%2FhDfydJ0OlOt2a8N7SVik%2F04gL%2F2wxM4TxYXYpEzrBlFiPzB9FqwFHCcNovwlt9THQPqbwCvxhP8Xu8mqXl71C7zsvOm7iOWJsbUbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f6218bd61b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/libs/DataTables/datatables.js?v=1.8.78
93.95.216.54200 OK 0 B URL HTTP/2 www.garanziaeuropa.com/js/libs/DataTables/datatables.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Phishing
GET /js/libs/DataTables/datatables.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Dec 2018 07:42:50 GMT
etag: "27a17d9-3b0787-57d6f47067280-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.garanziaeuropa.com/fonts/icomoon/icomoon.ttf?bwxvul
93.95.216.54200 OK 0 B URL HTTP/2 www.garanziaeuropa.com/fonts/icomoon/icomoon.ttf?bwxvul
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Phishing
GET /fonts/icomoon/icomoon.ttf?bwxvul HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/css/stile.css?v=1.8.78&v=1.8.78
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Feb 2018 19:00:58 GMT
etag: "2780e5b-202b8-56530bb412e80-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:40 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: font/ttf
date: Sat, 12 Nov 2022 12:48:40 GMT
server: Apache
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js
IP 104.18.72.113:0
GET /web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: A/5/l5AvOUgCZB8FAUtH1q3feRFRHLnY2wLn7+zSS7y+Qm5SOHiwmJaNO3l6o2DDDn5jk+7RdqQ=
x-amz-request-id: B4XTBB1MSVSCCW3Y
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:30:25 GMT
etag: W/"4e0ec768e1b5323b0c06d0cc3a5c9c2a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:30:23 GMT
x-amz-version-id: DGABZmS_HLmr0OkIATNtJHXvAYbWspsE
cf-cache-status: HIT
age: 803227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fkPia1%2BAmjVlAnCYnK78JsoJhYBucIAiq9Eh5PMAtxGYwNlf6Qfw1mHIRzZ363PhiWRbrpDjWfdjzumu94MZgivwQLS9nm0V07s7DrC3VCdp%2FoV%2F%2BxQgv6V89blaV8PjVjbqdRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f62210f45b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
garanziaeuropa.zendesk.com/embeddable/config
104.16.53.111200 OK 0 B URL HTTP/2 garanziaeuropa.zendesk.com/embeddable/config
IP 104.16.53.111:0
GET /embeddable/config HTTP/1.1
Host: garanziaeuropa.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.garanziaeuropa.com/
Origin: https://www.garanziaeuropa.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:41 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: max-age=60, public, stale-while-revalidate=600, stale-if-error=3600
strict-transport-security: max-age=31536000;
etag: W/"a64f3ab7d77adbc15fda8106a519099f"
x-zendesk-origin-server: embeddable-app-server-8684cbf66b-nxmtn
x-request-id: 768f62218a1b1bfa-LHR
x-runtime: 0.020160
vary: Origin, Accept-Encoding
x-cached: MISS
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k%2FU6H66qg4D%2F4kD1Mlab1u9McJBymRXglgN%2BFQdeBAfnpaPI8mmKR%2BazcNgVEQJ6Ui2ELVaHdsYiasiFgi%2FxmrhaogKWfJ%2FkiFsIFoi1seknpgeFc%2BWguebYHmumxZQB8o1IpenbZHrr6Xg2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=601effeb22102b8a15c28ecd59482a54265c9dd2-1668257321; path=/; domain=.garanziaeuropa.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 768f62218a1b1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-5324-8262d85.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-5324-8262d85.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-5324-8262d85.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: EMnZ36w9m1y3Y6/0hfDqXtmKBIJSk8y5jNwfssYWd7mjRVu/ogeLsyCx8c17jB4htsHhod9tAQU=
x-amz-request-id: DAQKP2R3PEDD6EBP
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:33:08 GMT
etag: W/"04170b70b619ed47f6e24aa6c907159f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:33:07 GMT
x-amz-version-id: SmCuQ7cpSlPaLvzm_2eFEkDHi0Xn0HqF
cf-cache-status: HIT
age: 803226
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIirDvPrXHB%2FPhQbVnvaxaLUy4lWRnjqfDzt%2BKUyO0V2YjYafmrv4XdJliwQfcpShtqnmE1MJ18AzD5xWG24%2BjUJY6sMOw8o0jyR9yqP55L0jTbMfPUqDi0H4A5DCD0lt8%2BaiEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f62236980b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-8262d85.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-8262d85.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-locales/classic/en-us-json-8262d85.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Py2fKvh6ex3y360Qwy5CFqTwdID4GqdHAHIgK1gb8cR61OsrsgD0gh4gUC2YNzY15gH0KT3WM/k=
x-amz-request-id: DAQK3V8600J59CYV
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:33:10 GMT
etag: W/"10d9a30eac6ed106c66673278428cd9d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:33:09 GMT
x-amz-version-id: 8FQPvulK6DzUBNxir5aUMEE.5IR3EWZT
cf-cache-status: HIT
age: 803226
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0jDDsI%2Fh%2BzqSoyOb%2FtYDpfybzqodYYe2R84MwhYft6MGorgaiSaU58t4wAP3R3v2j6qrlDf3sRl2dZ3PNDNGd7B2dsJMUak3reDxvQYsZvAfkACkJGl%2FjTML4F9Tzs39Hk7Uzs4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f62254b8eb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/b7910000-6ab0-4dc9-be9f-d2ffca3fef03
104.18.70.113200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/b7910000-6ab0-4dc9-be9f-d2ffca3fef03
IP 104.18.70.113:0
GET /compose/b7910000-6ab0-4dc9-be9f-d2ffca3fef03 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.garanziaeuropa.com
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:40 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"37fce12a24822e05453b7de5ea222570"
x-request-id: 768f621dbada0b41-YVR, 768f621dbada0b41-YVR
x-runtime: 0.002353
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vjo9%2B0lrwDlk0xWr1RIgSKP1VOyQbydifY%2FHsVCbPadmhMTnzeAlujJyh%2FlbUR6H718JGFjHpN%2Fbrz1hq53FkIMSmeYjum4POVCeW3PiO%2FwhTwZT4YwmKbo1DJAz1V3yM2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f621dbada0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.garanziaeuropa.com/js/jquery.validate.min.js?v=1.8.78
93.95.216.54200 OK 0 B URL HTTP/2 www.garanziaeuropa.com/js/jquery.validate.min.js?v=1.8.78
IP 93.95.216.54:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.validate.min.js?v=1.8.78 HTTP/1.1
Host: www.garanziaeuropa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.garanziaeuropa.com/login.php?lnk=Convenzionato
Cookie: PHPSESSID=4e0d4b7c0726318afea4aa6fe69455b3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Nov 2018 11:50:43 GMT
etag: "27a16c7-5add-57b8ff1556ac0-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Mon, 14 Nov 2022 12:48:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7502
content-type: application/javascript
date: Sat, 12 Nov 2022 12:48:39 GMT
server: Apache
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-8262d85.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-8262d85.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-chat-sdk-8262d85.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: aHr7G5sjJuh+yxoHmAQjEZrN9mM/p+U/c5NJmOSD+nqjHWYWFrH94bUjm4+0gLgZB3RdRjJnsaE=
x-amz-request-id: DAQMBT4HSMZHAT1A
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:33:08 GMT
etag: W/"865d0cd066636165cf7f35fb97a1d90d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:33:07 GMT
x-amz-version-id: sayXs7zOVVM6rMl6ls8GCrOd3aQu0RSc
cf-cache-status: HIT
age: 803225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PgTrUQ%2FyILTNnZ0fcn5pPuaa1zJaVPISOLmTUioaRl%2FM4NFHo%2Fj%2FY%2F8ATwFAl%2BWiQlxYLWVnOmL6WznyG0o1a691xNiJsOSedqPiuD6ZOyoHaMOGk7fKBSXLB8NJ2Z1gHtgzFns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f62258bb8b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-8262d85.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-8262d85.js
IP 104.18.72.113:0
GET /web_widget/latest/classic/web-widget-chat-incoming-message-notification-8262d85.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 12:48:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ZKLTQsXfRN8Tbr6RL2b17thMuP6SLtbl/JELqXBlix7aL4LyCa0jeiHr2ts3u+hiYbBfWmBTW1k=
x-amz-request-id: 0AJCEGV66NTV2T2X
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:33:08 GMT
etag: W/"659635f5ad1b6653645380f46aa42236"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:33:07 GMT
x-amz-version-id: 2pATdbQ16Q3O93W4xTB1C7OKv3ovDZQj
cf-cache-status: HIT
age: 803226
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bmMDn4707vUb8EMWNsEZydepl1Xt7EHj7JOg4sV%2BeIQRaS7vsp1MKMYzi2VEfd%2BIhpYfa9btIIps1X7PtGxdA1DuNVSltIpqkrrRGoheWyFR858dcK0OV9%2Fam7B0FrDqf%2FAKgXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 768f622a1876b518-OSL
content-encoding: br
X-Firefox-Spdy: h2