app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
217.160.0.102302 Moved Temporarily 138 B URL HTTP/1.1 app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer Verdict Alert openphish Intesa Sanpaolo
quad9 Sinkholed
GET /s/account/service/login.php?&second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 29 Nov 2022 12:34:38 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Expires: Tue, 29 Nov 2022 12:54:38 GMT
Cache-Control: max-age=1200
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10085
Expires: Tue, 29 Nov 2022 15:22:44 GMT
Date: Tue, 29 Nov 2022 12:34:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1983
Cache-Control: max-age=167375
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 12:34:39 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:04:14 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Tue, 29 Nov 2022 16:02:26 GMT
Date: Tue, 29 Nov 2022 12:34:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 12:17:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1005
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FSXWheJH7/HmTY44TSTJhbJ06uCa6Vuws1Z0Qr8oYEOFu6SrkNd8fh05AG79WoAw3EIlcjkffcc=
x-amz-request-id: VETZ9G8PFKTTRTRQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 11:45:26 GMT
age: 2953
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 12:34:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 12:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 12:34:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 8faaefba808cdc7ca77a8b94c69d217f
9c7f6a87f6701de8fcac6857e9ea337ff056876a
31ac02d576d4420390f034aac49e153b904379a2ee00afd1b0d20e0b62fcac9a
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:05:35 GMT
ETag: "9c7f6a87f6701de8fcac6857e9ea337ff056876a"
Last-Modified: Tue, 29 Nov 2022 09:05:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f638feb4f4-OSL
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 8faaefba808cdc7ca77a8b94c69d217f
9c7f6a87f6701de8fcac6857e9ea337ff056876a
31ac02d576d4420390f034aac49e153b904379a2ee00afd1b0d20e0b62fcac9a
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:05:35 GMT
ETag: "9c7f6a87f6701de8fcac6857e9ea337ff056876a"
Last-Modified: Tue, 29 Nov 2022 09:05:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f6490cb4f4-OSL
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 8faaefba808cdc7ca77a8b94c69d217f
9c7f6a87f6701de8fcac6857e9ea337ff056876a
31ac02d576d4420390f034aac49e153b904379a2ee00afd1b0d20e0b62fcac9a
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:05:35 GMT
ETag: "9c7f6a87f6701de8fcac6857e9ea337ff056876a"
Last-Modified: Tue, 29 Nov 2022 09:05:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f64f9eb4ff-OSL
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 8faaefba808cdc7ca77a8b94c69d217f
9c7f6a87f6701de8fcac6857e9ea337ff056876a
31ac02d576d4420390f034aac49e153b904379a2ee00afd1b0d20e0b62fcac9a
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:05:35 GMT
ETag: "9c7f6a87f6701de8fcac6857e9ea337ff056876a"
Last-Modified: Tue, 29 Nov 2022 09:05:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f6591fb4f4-OSL
app-intes-asaopaolo-it.com/s/account/service/1
217.160.0.102301 Moved Permanently 262 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/1
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash abc841525bb5ebd2144adfe1e01126d7
5142d28a0dc6fe3ee97ab5be3107298340c0da0a
60647365b418febd5c6e2a92e46aa605ec5a99bd07ad099a0ab1d3921872ec0c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
content-length: 262
location: https://app-intes-asaopaolo-it.com/s/account/service/.
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 8faaefba808cdc7ca77a8b94c69d217f
9c7f6a87f6701de8fcac6857e9ea337ff056876a
31ac02d576d4420390f034aac49e153b904379a2ee00afd1b0d20e0b62fcac9a
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:05:35 GMT
ETag: "9c7f6a87f6701de8fcac6857e9ea337ff056876a"
Last-Modified: Tue, 29 Nov 2022 09:05:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f68fdfb4ff-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash 57c5f2536367652f76be6f1d8fe82541
4621d141af5127123b1e01952646d7a31318c2ff
8a3f0931896701e48a1ac2ca6168e6276303ea9aa0e01c1059099b3208429329
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:15:02 GMT
ETag: "4621d141af5127123b1e01952646d7a31318c2ff"
Last-Modified: Tue, 29 Nov 2022 09:15:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f69eabb509-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash 57c5f2536367652f76be6f1d8fe82541
4621d141af5127123b1e01952646d7a31318c2ff
8a3f0931896701e48a1ac2ca6168e6276303ea9aa0e01c1059099b3208429329
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:15:02 GMT
ETag: "4621d141af5127123b1e01952646d7a31318c2ff"
Last-Modified: Tue, 29 Nov 2022 09:15:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f68978b4f4-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash 57c5f2536367652f76be6f1d8fe82541
4621d141af5127123b1e01952646d7a31318c2ff
8a3f0931896701e48a1ac2ca6168e6276303ea9aa0e01c1059099b3208429329
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:15:02 GMT
ETag: "4621d141af5127123b1e01952646d7a31318c2ff"
Last-Modified: Tue, 29 Nov 2022 09:15:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f69ff5b4ff-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash 57c5f2536367652f76be6f1d8fe82541
4621d141af5127123b1e01952646d7a31318c2ff
8a3f0931896701e48a1ac2ca6168e6276303ea9aa0e01c1059099b3208429329
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:15:02 GMT
ETag: "4621d141af5127123b1e01952646d7a31318c2ff"
Last-Modified: Tue, 29 Nov 2022 09:15:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f68a1b1c06-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash 57c5f2536367652f76be6f1d8fe82541
4621d141af5127123b1e01952646d7a31318c2ff
8a3f0931896701e48a1ac2ca6168e6276303ea9aa0e01c1059099b3208429329
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 03 Dec 2022 09:15:02 GMT
ETag: "4621d141af5127123b1e01952646d7a31318c2ff"
Last-Modified: Tue, 29 Nov 2022 09:15:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771b60f69b96b521-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 12:08:56 GMT
cache-control: public,max-age=3600
age: 1544
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 643 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Hash 21008c1fd485ff113e1428919235bd45
7287f577b35208f77bd2b27094c44864dcf55beb
6d368059040c9302951e4a317fe01e32eb87919fca4bb160aade13bd470f1808
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/res/arr.js
217.160.0.102200 OK 228 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/arr.js
IP 217.160.0.102:0
Hash a01612e293c21d0f11a3a6573423d3c8
b4aa9b544b15e65f1c4978e257e39ae1daa5b59f
688b08514eb55988aee0853a1899240705df42c06e5542532bf2da5bf72a3ec0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/res/arr.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 228
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "e4-5ee394412e6e9"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
193.203.234.216200 OK 17 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (27465)
Hash 813c287cb552d3893880f19f6f1385e3
1d8069a147ca13ca331a949b3b3f3b377ff70106
a36e83b0a321dc743c3e84a8fc60083d1da58690c21e3718cc443b1b3bb17140
GET /ib/public/login/css/ArchIbPublicStyle.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Content-Length: 16997
Keep-Alive: timeout=17, max=93
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b1c5e4923596f3e9edfbf47389abee05229fca0d8f732d3ddb80c417dde463059c3015a6ee9c926bbd6c9bfa2c5111834; Path=/
app-intes-asaopaolo-it.com/s/account/service/res/jq.js
217.160.0.102200 OK 90 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/jq.js
IP 217.160.0.102:0
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 3e4bb227fb55271bfe9c9d4a09147bd8
156837f75f6600ccb602b4efcbd393636c33f35e
ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/res/jq.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 89501
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "15d9d-5ee394412f689"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
193.203.234.216200 OK 21 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 8053bbd821b737d18e8c686b9084819c
60d314e36de8101a9006e898e23a187bc0389d0f
58ad4a977ac9403bc08ba6bd2c0df7160f76240285f0a8f5e07053b6b83acdb0
GET /ib/public/guestarea/styles/app.css?v= HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: max-age=84600, no-store
Content-Length: 21036
Keep-Alive: timeout=17, max=84
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b907ca50be6d36b4b62c76182d6397aaa5547aeb995a05bacc0e3dc5a56bc4e52c795322f34b1b508d1bed8ae7f603399; Path=/
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
193.203.234.216200 OK 103 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65011)
Size 103 kB (102923 bytes)
Hash 13d142175a1b8ed0fd27b6119843d35b
ee0f47c77adc19366ccb13a4a69d1ffcc904928b
7e2d410906d9cf76d5d8e8b89bf24fbd9a1563d2603259fb17657afe55d5cd20
GET /etc/designs/vetrina/clientlib-all.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c2ba2-gzip"
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bdb5e16b1b6341e473eaf45ba6f3688ce1a47f7293157aec38ab8e15b7782c719a38f71d500234c0b4f03543128d98640; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GJluLaIBJw27XQ+G4WpWjg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WmQKSqF6t4MLMc2JH7q4McZlaYE=
www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
193.203.234.216200 OK 485 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65371)
Size 485 kB (485343 bytes)
Hash f4c6107b15cea93853e5386a56c8466c
f18dc3a59d19cefc48f5971c81bba983be10cc8d
11bf3978a97737456ea1ea2ca2bfa58c2be1ccf633c9f6e56ef7b0271670c850
GET /ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Keep-Alive: timeout=17, max=71
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b562f0e5f7cca404d481fc0408cfd7becfe75b8e604e08163102e3cfd08214297fbc52c4c18d18df549352235fd2d1790; Path=/
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
217.160.0.102404 Not Found 2.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
IP 217.160.0.102:0
Hash eced50deccb6698eb108c1dec258d5ec
1ed0008228fc06b1ced56a8c4b8d0bf3b2916471
67e0e1e00539fc0ad334e39ea2860f53d8200a81ed7fca342caa3895f25b125e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/container-controllers.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
193.203.234.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 19 x 10, 8-bit/color RGB, non-interlaced\012- data
Hash 3aadce088b74fd250abcdb82d51ba273
1e9f10dbc5fcd6c98a94659c0344907e0b7b59d6
b9cf5ac56dd524668e1156759674215a9224dcaec961914e0e36c2c0efcb9bc0
GET /content/dam/vetrina/design/ico/flag_eng.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5de"
Accept-Ranges: bytes
Content-Length: 1502
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757baae0b89170cd6ebc94d0971167eca9e48743b820898c3661b52c21523b545dbbb617e5374262dcc3e8e15fde49c590ed; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
217.160.0.102404 Not Found 985 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
IP 217.160.0.102:0
Hash 1bb11e009205c6605edddd0480a728be
77bc45f05acba4da774d91a2a76c85753e5531fe
1242a6cfc3accf5e9440d202b039aeb9f6646a8bf12310b5f0ef84d562f487b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/NdceSDK.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
193.203.234.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 85c0ca4e83854737af7e875072e09f1c
6c52099d9dcf9c3932ac11b82d085c26566b4a99
7d048f17267aaad7b97463042fe50808124861e587e43ba6d59a09520d37adf8
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "43e"
Accept-Ranges: bytes
Content-Length: 1086
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b07ef6ca2f96d5ec5b636d56b3b6988fdf86f609f6758c4c47079d7738dfb4a3c76b9ed531eccdef7638cdf3a4231634c; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png
193.203.234.216200 OK 923 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 6021613a00888e4ad1cd2eea74ea68d2
326bc3f06f52cbfee058f206ed4c78dac14c1062
5b4b9331f3b3b037dcc472d92c6be93679161ff51167369cdf18b434e66df421
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "39b"
Accept-Ranges: bytes
Content-Length: 923
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be97389e0c50edeac1fba118d639449e6af9f1349e165c59343d9eb0161d8cf88785ecf5b6f65edc323c6be145e05ea89; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png
193.203.234.216200 OK 2.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash ad3949451b7add6c7c6d66aef5577f32
a6fb3bd79e229928b25001a8467cc4e588739a03
b060ed54d87f269da89cd4feaaae9cce19742f05d1e1632a1524dc8ec941c961
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "96e"
Accept-Ranges: bytes
Content-Length: 2414
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba3396a74f0915671573caa2d87db63dfa2804d572f72c3ae46214067f8bc00731bafc23036b3f6db8d5b033a68ebf846; Path=/
app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
217.160.0.102404 Not Found 2.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
IP 217.160.0.102:0
Hash 3927a3bff092ee34a1eaea2a54748bf1
350309b3aa0ab83db25d86757f85ce6cc711febe
2eeaf205738519565999b27a4b32927685f6211a9b3311bd318342634a15708b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/main_app.js(3).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
217.160.0.102404 Not Found 1.9 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
IP 217.160.0.102:0
Hash c40f62279cb1ffc122a7aac22060485a
fec62284ede479d52ee1c332d54eb9c869368008
2b81c160a6f5f093ea14b399c05e695975e9a3e81983c8bb204a8ed6ef2ff7bf
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/app.js(1).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png
193.203.234.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash af036ec44e0d281a9d58be37b109fe8f
cae4073c1bced105a328b2b87fd02beeeb4c05c1
236de5c9852465458a81d5b8222c55813453de939affe0eaf15670a736a918e7
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "476"
Accept-Ranges: bytes
Content-Length: 1142
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc3273cb1a4e8cecc5e70efe1b939a596dd72e192c374770ec3757421bcb82a32b572ae5453ecb7654cd2fcb7eefb7a77; Path=/
app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
217.160.0.102404 Not Found 1.9 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
IP 217.160.0.102:0
Hash a6dce09bf0cc1babc4d1b91c7a191cfc
3c2896869e89852f4dd90e15bf6fb8681c2cc20f
c86d3b059c44233a9447165b406722de9df6804edfea145f75165ebba0a1046d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/ArchSecurityManager.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
193.203.234.216200 OK 44 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ab760a63af97f61f5b186eea04ac0853
b9fc917cb2b5a9f8b6bf90fcd8ed30c3df1491ab
47e722567b6ffbe6bbd8a758b0e981de956b093ad71c2730c6e7acd3da23e48e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "ac90"
Accept-Ranges: bytes
Content-Length: 44176
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b9bec8e9dfb404b33306dc0f5b453af3cd45fc39a33a53c8d0339b4f0179d7eae9ee7dd45fd193b54616dcb4dc2186670; Path=/
app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
217.160.0.102404 Not Found 10 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
IP 217.160.0.102:0
Hash e6a41bb487bba500699fe6f4147290f1
2795ac8a2ee5d9734d34e3524701693bd375f518
33c0d76b47874479a0f3f247221f8aabd3f2f7d76d3578a0a19e29bf5edd1884
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/main_app.js(3).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/logo-intesasanpaolo.png
193.203.234.216200 OK 5.2 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/logo-intesasanpaolo.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 279 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fa2e7d279a9e8509db5ab5f300091c9
8fa4d667ca1df6df6fe9b7fac0d6a9f4c14daf55
559bde803d8dedb905509859f3c1d14c9837788f2d5cf6ee26f1518f528d0cf8
GET /etc/designs/vetrina/images/logo-intesasanpaolo.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "146d"
Accept-Ranges: bytes
Content-Length: 5229
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757befa967be70039852e2c501b0f06d3864c0e0f1b18728f6a2bf3edf54d03f5c6f89ed883d037d5e5f80948bded2913138; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/ico-parla-con-noi.png
193.203.234.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/ico-parla-con-noi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 43 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash bed2ce651195bd358c9e92df2984b52e
8b135fc67e0639a317b4fef7517858064edb81ed
9e5f7acbc049c135bfae2d725aa23aeced8e05320aadf2629ca8fa11f5dafb14
GET /etc/designs/vetrina/images/ico-parla-con-noi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "785"
Accept-Ranges: bytes
Content-Length: 1925
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b46670023ca7e8f12710794c2ce5594832c09cbfd0aa24a161920997c845aa4e376ba55954d7178da51ebfe45b565fc01; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
193.203.234.216200 OK 755 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f7970f6b1e84bd08f8ee30808b8f872
6887f512ac33bf4c97274c50f0ba091e86fce92c
9c63089b53ad83c220734210fff43104620cbca67e8b94d906173603cf7a359b
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2f3"
Accept-Ranges: bytes
Content-Length: 755
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bde345253831e73117d3783464354017ad0837433a99bc491f730eff4032e1454e0c252558272997243921961be84aeca; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
193.203.234.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ba6b5d4f1a091512dfe9b682b939ac6
a212027b8c3d7db7a97baf4f7ff6ee53d9113a79
7ad8682c17cb55cf3bed7a6fe487dc2d6f52af35fe5ed92955065dd99a5fac34
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5ca"
Accept-Ranges: bytes
Content-Length: 1482
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba4730728d2d276d7d891e91c2e3bf01304aa9b6343273329af017f2496f87815121a8a32a128919b97c36093118af2b2; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
193.203.234.216200 OK 1.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 85239f84c97a2057670b9174e9cb6864
45f5447da4aa98e10cfb8e8a176ca51a98752a60
2255e18e78b3b6642bde1026a1bf2973a7cc340068b841de2f55e56f4113db9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4e8"
Accept-Ranges: bytes
Content-Length: 1256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be3eda6e4052e0252907667cda1848ec8d41daace594267567a5ea7e3033e68050e536fbbd7aed64116f5235af2e4631c; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 44464729720604e1072d5e7acc4c822c
fd96540e38540ca00a78eaa883d591015682ec47
84fa5701367eade39300241ea5510a22b1be8597a9389245581af99f82e1d5c4
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "682"
Accept-Ranges: bytes
Content-Length: 1666
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b924237666dbc496d16304ad5e5e0daae972553a9b27d9f50cf0b632688e21cd04011fc25767678d6e091988959f28139; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 24dc06b1321d6b083ec7c5fc13983e07
d233856fae8dc8fd2c10650ab3e25def6af860e8
b9e4567d5965eafa16de795405ef30938099d4772b81afccc6ed25e1e8ad1fa6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "66b"
Accept-Ranges: bytes
Content-Length: 1643
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bf862bfce55488673681f2c4c3f502bcaafda49dc57e27effa9b1ee5e1be708bddc5d675607e2250e64f359f4afdf4ffe; Path=/; Secure; HTTPOnly
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 12:34:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 1.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Hash d80db79770f26d764b1434f5d0c69f42
ec79a91653d49be2c31e153e6a549ca422ece3d1
600b33e77cab5612a31987531f3f9e886dbea44e63231fce68e6839d37584342
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 456709
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
193.203.234.216200 OK 819 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 28098b88dc2ed890f92dbccce3093653
306e46ebf4eb580e95a3254e1ed99e1b8a54e092
2ee5235a5008535da5044a323c747c83df4f1d42a12fab62175ed86a89652f53
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "333"
Accept-Ranges: bytes
Content-Length: 819
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b3d1c0d39d6e18f62be708b61957eccd9276385e3e4b86974ef76ec22262e68b0d7a7f719fffdc886753d4ee725b32de8; Path=/
app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
217.160.0.102404 Not Found 15 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
IP 217.160.0.102:0
Hash 22479723b720be5900ef10334953ad87
420e13ffff1d53210b412f6d922c3f9bcd73f80c
842cf925d06c34ae3eb36d0a7cf377543aecd92cc06db5798246553693ab02bf
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/ArchSecurityManager.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9729a9e9baaeb8704a41234706f1f758
64b517cda34ec2b38a11e91b45e1615a23f19802
45978963ae9033d33224ed5677e4b77223fdeef3a5003e0670e762c534f88446
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ed"
Accept-Ranges: bytes
Content-Length: 1005
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b51243bf096227c202e1a0387445fc1874b97d90a35a8b34c5b3f226e63735450315e4c302309dfc3c4fc4c1c576762ed; Path=/
app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
217.160.0.102404 Not Found 1.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
IP 217.160.0.102:0
Hash f48f3c555b693377f5a25ad2dd63aaef
381b713acefb9023f7ed6f3d4a5761e7e3bb91c9
e648c1dd4f7f492650577109198c19c864ad4b892a7f3317c67914f7eae3c827
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/app.js(1).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
193.203.234.216200 OK 994 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0204ce28b7c0e666cc95b486bd827074
5054f3d2c5a70efb65eb9422f3ab2919d433e4a8
01de4f9d83c625f7ba08dfc12cfd6ecc9a999c767c948c38b1307d8669e69ce8
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3e2"
Accept-Ranges: bytes
Content-Length: 994
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b47452fbbd5923446efbc93ec271748c6e317290e7573959e2c270afa86bece92008ee9456774f37a15f87aab33df1126; Path=/
app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
217.160.0.102404 Not Found 1.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
IP 217.160.0.102:0
Hash 6350a692088888d195b60adf9e2978c1
e01e3669f82b549fbf3346b1b45f07d1b3a2d52d
c2c68abb565e06b5abbe0ba1774fb8a433b6202e760b63274354b684369b0fea
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/cryptoJSforISP.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 32 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Hash 06da68b9d64434bb03011959385ef6ce
b8931fd61b9b96b09560a5a830789502968b9cc9
3ee45d3ef62db71f317766f82baf55d414c90921d5b1e24940054dcd0dbe2b62
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 700 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Hash be2ce6ef43a7c172f20b859f2e218ed0
87a682d993eb37d59b3b90edf8daf15d40a7809d
cf3b758b6cb21294b2c12ef7be2147bb9fe3acddeed5765a3320e2eb5ca4ba85
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 37 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash c53b2488e746a5a423d1024ca318e41e
32b36f817c530d595d53142257e25897bf6a73ea
7621b7efdd066ad06e4ab99786b72c02f9d126e63bfa911cee193b1071fa1ccd
GET /etc/designs/vetrina/images/acc-show.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "402"
Accept-Ranges: bytes
Content-Length: 1026
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b1a4cb69c8735f413022a5e076168bf87e70ab76f6e8ec82e35e09835200116c1d650307e5a510d805fd65e66afd42560; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Semibold.woff2
193.203.234.216200 OK 14 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Semibold.woff2
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Web Open Font Format (Version 2), TrueType, length 14544, version 1.0\012- data
Hash 223a277bd88d8a90c8cdf24cda0ad5f5
24234c1c81b3948758c1a0be8e5a65386ca94c52
d61b45b8b3cded238a65ee0aac4043b989f11cee56acfe5c889777f961f241a2
GET /ib/public/login/fonts/OpenSans-Semibold.woff2 HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "38d0"
Accept-Ranges: bytes
Content-Length: 14544
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=17, max=92
Connection: Keep-Alive
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b84369ef058254fd825f8eec4c8d1b3cec4f55e4c44d370b16f239989163b8cf7bc3a7f838117f23ea6bcf84a58632efa; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
193.203.234.216200 OK 1.2 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 770e2371beff574acd7d05d11fc4b796
2e9ffc43ed0d0127207fc26184d75775371b3c69
a6056763e4056b9e6848ac140c4aae062cbb4a7325bc09e7cb5ed3d48f76550b
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4ca"
Accept-Ranges: bytes
Content-Length: 1226
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6e46a966bce1ccd4984f5fb129f70840c6f625756f2c451b848af0e89c3b4a14fec404377d33155ee1e09bbba239b28d; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 487d8aca55607687e0acd496212af3ce
60c80f858d63027ae29a33539899c7f25aade8e1
7693cdc4c77cac73213ef7e99eec0bdf6d80c4c7173f57a40402d90c4a8ccbe2
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6eb"
Accept-Ranges: bytes
Content-Length: 1771
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5fba9f3eb7c1939e820cab29e733662409a0aa307be01a3b6bf07976f214f273d741088900767a98f8021576324209f7; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrow_right_black.png
193.203.234.216200 OK 412 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrow_right_black.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 15 x 18, 8-bit colormap, non-interlaced\012- data
Hash d8f8f4c1055faf967aec67208046cd38
bb1edaf2793f34e1bdd00c525917c25359c3912d
400e83f5f5c6235fe8a676b41c27e27cb11a15f05b1fc78384d07bff0bea7841
GET /content/dam/vetrina/design/ico/arrow_right_black.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "19c"
Accept-Ranges: bytes
Content-Length: 412
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2764a45d472f902ea92669604efbb89ed2f1c455c8e8f972365c78c02cf5b0710e08ae985e470730761b1f2ef817e85b; Path=/
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.woff2
193.203.234.216200 OK 14 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.woff2
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Web Open Font Format (Version 2), TrueType, length 14048, version 1.0\012- data
Hash cffb686d7d2f4682df8342bd4d276e09
2c07a9656f1e38da408f20f1cf11581a15cbd7a2
3b98b0dc3bed9d40f43e64adba5de47c76895338a96f0a5a314676cd6287eca9
GET /ib/public/login/fonts/OpenSans-Regular.woff2 HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "36e0"
Accept-Ranges: bytes
Content-Length: 14048
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=17, max=20
Connection: Keep-Alive
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b050eba3268521795fcece673b505b56deb7776977dd64ffd09a8167a278dfc8d249ed983be867d0636ecd6b484d2649e; Path=/
app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
217.160.0.102404 Not Found 19 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
IP 217.160.0.102:0
Hash 12decae322d10c91696c3d4f47ba2277
f0fbded649f5467f3ddf0d9800eaf3bc01e8bf3b
9aa22227a3a5299b4805976cd1367954e856fc670cefd54ce2a38049bb7942d4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/archConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
193.203.234.216200 OK 581 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 4eccc5d2b149b12cbb8f36dae371b95d
ab6125429786ae86249cb357e60944e1330b02f1
e69cc6876dd59840448b8327049bd33ad0b7ecfee3e3ae2f13646a821a91a331
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "245"
Accept-Ranges: bytes
Content-Length: 581
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2d75f5ea792e152ebc78d4524c89cd1e5e4fce36df93c8413bef44d1d5bbca2ea7f76a624f3dc1e0f5e3d9717c66203c; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
193.203.234.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash d12b8e3c731d4b3683a083e2d806efbe
f1000991e5877719788fbd2a21e7e3c588383b8f
dee169bd1537e0f50a2b62e5413559506f0b24a8959e261b9347c545c6d6dac6
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "749"
Accept-Ranges: bytes
Content-Length: 1865
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bcd8cf5f48307e1109e53039cf0d18421903b57f81c5c08ebabfb98499fc96d6556eeea6fec1a4e1a11d4ca64901bf257; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2248a12a6cc384fa88034706b81867ab
62c7769e2265dfc8713670a76445df3f2f29c64a
3e2ae7a3987fdbf96e531f1f84dcee710e293f1139b46afd544030296012a136
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "674"
Accept-Ranges: bytes
Content-Length: 1652
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba1bb09609b50a87af65c1fdd9cba0291962759fc1ff136cf2c285c476ddfc89400805848ddd47d1dc448b5a11a5e7834; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/trasparenza.png
193.203.234.216200 OK 4.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/trasparenza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 107 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash eecd73363f285a2669afb7d9809e8853
d25dce286104c621e3e3f41953a3b67b3abf51fd
09c850d89f41e9c808d6bd12871bcfc7e6f7d76cd1f7f959a5d79ffb800f8de2
GET /content/dam/vetrina/design/loghi/trasparenza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "133f"
Accept-Ranges: bytes
Content-Length: 4927
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b928b02f4cab8cbced582e33860f745404156bd73d55d7d6a791dbe1813300dce95d6b0b2a85bbaea2b4d035361a15c5c; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png
193.203.234.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e927dfec8c612e541a672c978fb259a
c00149a83f1b0ad2ad0a935ef50552fe6255977a
27cfc61f59f680b812faeff5e79339ac8855226a6f120799b9df567e9f0e81b0
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5d5"
Accept-Ranges: bytes
Content-Length: 1493
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4a5707294b92e8179001187d0bf93fb049c18173797af99d35224eb13f03547bb6f44b047f89331608fb0837f6ecac55; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
193.203.234.216200 OK 11 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 344 x 42, 8-bit/color RGB, interlaced\012- data
Hash 1bdff8a43af86e37593537e037e36c26
067557b4785a26539cbea69d8aca86dd8f0f8efd
10ca81e1589cc3b4b1d18a25ee6acf121970effa02449deb4beb17a880af41fd
GET /content/dam/vetrina/design/loghi/logo-footer.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c84"
Accept-Ranges: bytes
Content-Length: 11396
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be4143b5a7a900957e96acad43ce8b2e095ab8c68f9d8eae44555ceca2030400dfaa46763e5f094271b9bacf733447388; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-isp-footer.png
193.203.234.216200 OK 6.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-isp-footer.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 232 x 29, 8-bit/color RGB, non-interlaced\012- data
Hash ef01da585f296c6d8e232268cc000390
74bff78003ad10f9d52a089f6bcad4069dda8047
d9561fa4d3be12499d6736cc0781352340f9a9b209c977ccc233ac737d2c9e4d
GET /content/dam/vetrina/design/loghi/logo-isp-footer.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1786"
Accept-Ranges: bytes
Content-Length: 6022
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba73498487923d419cc568998dad88cad25235c3d15c6905695271905a5ec705aff7983fc3ab9fb28205f391b21e768b8; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f8b1df6f62bc6ef7983f994b39650e5e
b47e2869ad706b489b950e12b29ac585f0a6ffeb
3fe4f6784d9d9dbe5213e7cbfe3dd7c2112a287aa8b60e4ad7371d7dd9caaa9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "68c"
Accept-Ranges: bytes
Content-Length: 1676
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b93199849ac2cc92f1d9ef0e1bf1c3c41e75670d1affcfac77a8e94ab387bacfd67f99c245d768073ba42c1618808de17; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
193.203.234.216200 OK 2.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 39f9ae177d2f0ec52dc3f84563a3516e
060444b971e82655e3004d2a2143294d3d7b9fd2
cf41f546ab4e7d8421dee66ccdeb8025c4c43ac91eca416f6bcd99d9ae476df3
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "951"
Accept-Ranges: bytes
Content-Length: 2385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b407039b8de64de9ef3f556e6b3a109a228a7aa82410a7c937619617297a8a50e0a997d37e65be656dbe7ddac67f22a60; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 1.8 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Hash da3ae703ede717ca95c99ddf7ff736b1
edd4d660216f19fa95b52ccc3b8032c2fa2acef4
df5a427d3b24478c5a13399fa910ea48a9830c5fedfb65558ab716e304b75015
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
193.203.234.216200 OK 2.5 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8bfcfb986c4de70ce6ec602168d856fa
cc7bc984c5506dd079a5c6358cb36cd73f0e0167
1aec5219cdcd75f87dfe65e36a8d4b860ac03b5573e6c9a2739b119e5defe63e
GET /etc/designs/vetrina/images/acc-show-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "9e9"
Accept-Ranges: bytes
Content-Length: 2537
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b273752216e8846fb39e3ef3344f8794223f48a6687ac7aac76fb568dd7cf20d99a1543bccc63430a260662656e0ba955; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
193.203.234.216200 OK 711 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 13fb65bbf6b71f371734ffcb77eee65c
86c35972ce92ad5e9d2672600e953df51bf6b923
a5e253bb0c4b8566cb8ef1cb425b4b24e00853927a468e8a626ca4da1be73312
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c7"
Accept-Ranges: bytes
Content-Length: 711
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5d1700d2100f6c60800c1d3116f095dad3d5a104e83236070a576f8265920ada88f664869fe32242f717f79855d41e99; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
193.203.234.216200 OK 2.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 39 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 765895c7c36d25b3e9fab1fbbd0e9141
eb18fc417926909986d91ce68d601dc3ce93669d
928b0b6e08c035315069aa10d57aa64a61ef893dae42e33fee7c8d40dc2c1d04
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "828"
Accept-Ranges: bytes
Content-Length: 2088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b02e5177191ae0d8c15ecb4ab98ed4ae7aa03ca44bfdc057089e1d647ab2b4d8976e15ca6e75836cd1360b31d93172f7d; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
193.203.234.216200 OK 898 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fe49c46bd70c432b1cc5fa16b2eeda0
d136d4aeba48d32fc1e83110bd7d4b0d73813785
d4e7da2a85fd1a67b9aa5a335b2593cd726856733129fc770edd43ad69bfb822
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "382"
Accept-Ranges: bytes
Content-Length: 898
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5f67e4da3309eab8aaab2ab833cae0ec2e00bb1db7738cdde6d5f43a5db3fa0bb6034d11b4b07e20baa4b24f65995a90; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
193.203.234.216200 OK 930 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8786b476163b5626790111201de7a105
f432a249eac59b4a057f0ab2a34cfa99adc898c6
7a2b1b4bff76a3cb518c06ef6abbd483c60e5b2d6377020a6bf1198134ebb8ab
GET /content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3a2"
Accept-Ranges: bytes
Content-Length: 930
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6939d3830962d2583510279f2c54c9990fa3d36df2341dd6d9f2f50fcd6a32122d8fccbffeb99d4f7513c4d50abd937e; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, interlaced\012- data
Hash 96162c4dab3c7028437f8290c93e0fd9
9ea2a567a95ecce36a6760e5ae77138ef86d922e
dce4673512de52fd393e1eacc72ff22313515d00603a353f3df4383d13959a68
GET /content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6d6"
Accept-Ranges: bytes
Content-Length: 1750
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757babe8010eb0a04248bea1b7712a8c129353f6ef020feee369d430391217488b0fc369f8b260cf9f74b75d26b188f0cc77; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 36 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 472728754be887d0048b6481486a9b9e
b06067365beb2540cc75486681cd8dd8296c4943
900bf203d7c5c73d516b7b2c9a48c2dbe126ee6afc7658e6b6f1ea1cc25b3035
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69f"
Accept-Ranges: bytes
Content-Length: 1695
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bfd213af0b698154ec807b7189a693f80949af37e05f3979db92afb2a19423cb7fe3f1aded75a909f8539ffcdc2d83106; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash e386b810ca1b33a6e67d98b0e42324e7
e11d099289ef780c5770b532dd709c52fe64d11a
3b579671f0f852fb817840c791e1375fce7d12fe48589c41539e0811365020ba
GET /content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ff"
Accept-Ranges: bytes
Content-Length: 1023
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba94a1799e9fce8d27e0c271bd4678d73cf730c8c79ec14dfa2226950c44a20381947857cec66621bba519e85f8a5c56e; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
193.203.234.216200 OK 702 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ecbc8cec38438e1f4883c26b97eb7e2
0c6d07f1cff42c4546455ec766259e85339bf3b8
d324d101d0340ef2a01fabab8d52815a08a51c0cfab63daf120b3db017b7b0e7
GET /content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2be"
Accept-Ranges: bytes
Content-Length: 702
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b776c30330c3333a23249a701ac52e41e63521874d283fb00b5562f86ea4139f602e6324024e0ecbebec71ada9adb3bdd; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
193.203.234.216200 OK 780 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 25fc69e5b31244dd631227402ffd0f0a
f3ed167cbcaea621681f96214c5aab84c3cf6e9e
319ac41473da7a19b6f87692f3cdc4822a9b5283df3638fe88a38aa75b018f0b
GET /content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30c"
Accept-Ranges: bytes
Content-Length: 780
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6633f3412c66e92777f0e81d29f72db73e99bdd3b6881882ab1666c0e75aeb4ccaf84648386e576c2ae88c3c0cdd8174; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
193.203.234.216200 OK 596 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c7d2c21bd468f05bfdabb2e0b2238b3c
46e8967dc3ee2cd90e0e4b627b7b9fc96e8b2288
718107e6d810e9b67562f6a863033f4d10a36a4f64593dd01312aff95bc7ea16
GET /content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "254"
Accept-Ranges: bytes
Content-Length: 596
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b06e967af83af7ce4f67e3eb37f466cd0c065ad9ff936ae05eb780b8ea883f5a9c1337a04d7c244de2a74e35befdbb9a7; Path=/
www.intesasanpaolo.com/etc/designs/vetrina/images/tool-gal-ico.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/tool-gal-ico.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 315 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bbda1a73109123e492134a89b3524fd
981797657e4e03a4cb0a5855fa1de97a94faf77c
af13859e6c4fa7910d13f78d99dfb525908d4f21b4341895e9da0232619184e6
GET /etc/designs/vetrina/images/tool-gal-ico.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "649"
Accept-Ranges: bytes
Content-Length: 1609
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bfe29710aa3965a7e602bb2c95de590d10e6c6d9f356131c90ceabc9457d8bc644ec0c3cb39ca052359c2cd09183d2b5f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
193.203.234.216200 OK 385 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash b0728c9ff3887010e1e0418b0481528c
a55efdf86f54838927b4a33e0f27cecade2e1240
b60ec7c2b42ee03cbcf0f85a83a85c8e1ad5eccb900c13dabd2ef9e197e95217
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "181"
Accept-Ranges: bytes
Content-Length: 385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bf18bda4131fe34118495df13e479cc9c69dd17397f5f59301bc3e9e3f3842f84242fa95ebb56d48e25da7f48f6d104c7; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
193.203.234.216200 OK 769 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e46bd471bd30126c3da601d9d94b9655
81bfcc60c7ac3f6324d676ca948c25b9b7d8730d
de06f4ebd0f89a97e88aaf43f277bfe3fd14727e9d57370c0b65faaf7940f656
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "301"
Accept-Ranges: bytes
Content-Length: 769
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4d86cd7546d9726d3ab5b2392434ed8ea830aab0e2918a87d435471d2e593b3c1918831634656146e5bd483eeedf8e02; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
193.203.234.216200 OK 403 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash d2cde8858cd32b0dc6c51330f8d70a0b
876f950299f7a0e760dbf8940fab54c095424427
70a69e8967b498671cce7e6422fb2bbbaa83a35451a63e958a7e63f157db9e56
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "193"
Accept-Ranges: bytes
Content-Length: 403
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b1ef67a286b39781a45b7257a41862564ffed85cb4f44dee500fcd5afab8647a49bba82cf357dbe0f192a8b15df33f7eb; Path=/
fonts.googleapis.com/css?family=Open+Sans:400,600,300
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,600,300
IP 142.250.74.10:0
Hash 915ab07a6be91dafee99f2e8faa830b4
b5dc513b84f35bbfc4ba2e446d5a0c09bacd0016
1d10c360042e02d546e78e3da43329cb3e342113cd4a2fb03f0bc1799c9fd9fd
GET /css?family=Open+Sans:400,600,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 12:34:39 GMT
date: Tue, 29 Nov 2022 12:34:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
193.203.234.216200 OK 511 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash f244d24a063a46f86edac372b073b1e8
edb5dbea8d380e9b3f4f53c59afc072b19ac9dbb
2eb1d09976e9f10b9dc5c3dfe828a17e5b1d444e43441a1aeca185d287dd6abe
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ff"
Accept-Ranges: bytes
Content-Length: 511
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bebb4046b0e0da5ce3aef567091855b472b58e5f33ca0fab4101919ffc5865c546783ed5d442b63a277f559a2cb2af2eb; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
193.203.234.216200 OK 256 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 201953b73ed38c675e4250642c1711cb
1c7095ba00420e53b8860a049e0086124143bfcb
53ada21076c9e67920d7bac98dbd0289439178d32fae68ac3e166dfb24c202ee
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "100"
Accept-Ranges: bytes
Content-Length: 256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bf77719128cb47b817e10d2481b1ddd564f0f8ef0bc0e79951909f9c1def79f92db008ea7c50a2285116c973ec98f9569; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a05d6251cb7b66ecbede227a1e59b12
2dc09f21115b7c4f1053f46e8346bcbf5b609f48
e8be3c5c3b09a632c4d35d1cd337bd69933d54ac6add4e309de16dfb1339fb8c
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "670"
Accept-Ranges: bytes
Content-Length: 1648
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0a1ddce7223e84789048869ee55e7dc1cee4c0a275a25719063288826e00320610d0186753d9c4365652cdcf822b66b0; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e717863b7c31ba33f14c2ee53111095
2e9aa87909ffba3c2f4733edd5c811d08c307d37
7eb9aabfb251336728d1db8891b0c04b8317679348d7fe66a019fb2451eb191e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "617"
Accept-Ranges: bytes
Content-Length: 1559
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4e05b1764b1623e96339602eac7169e9686e42c78a3a257f3287e18407808049a322eba1e2e64746527b7940e1e09864; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png
193.203.234.216200 OK 531 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 1fe64c45415a28884fe29aba300f5a16
9dad3e5309a3a3104ab3e7f48276f34c9aab16ed
9c76d15c14cc6a258af1bc61376f6a7dd2677926b5e18b01842f4b46825739ee
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "213"
Accept-Ranges: bytes
Content-Length: 531
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bcfc0a2aa1d0e6cd77f14b2cc102dbc2ef73b96e2dde536218c4a48356fba86de31a55711bbed820a928aa3d9f90bdfa7; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png
193.203.234.216200 OK 994 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d52a209de7f08d79c4337a0048b9360d
889a0efcf545d2d3ba407125aad0b8c2dbe79c08
a72eeef66e3a5d1723d4cd47303eca5d99e54e9498f0fede9b46eb9e8b531d85
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3e2"
Accept-Ranges: bytes
Content-Length: 994
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b23e09c20c3b788f986d14afdfbe059f55448917f82570303208b42b9de715ce541f8164b5f4c28ed9e006ce71a83d144; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png
193.203.234.216200 OK 848 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 0591fdc5209f59cce93bbe874db32d84
ab37c00282ab029c08695d2e17c637f45edc7dde
5eb234e588261dcb624c60fc69cd7b3e75473ab10d4a36284fb513b01baa37c9
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "350"
Accept-Ranges: bytes
Content-Length: 848
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b40967738eb9b6b195788bc150e5e04591cac747229d67a2c67f32e4cc0e9bb517db8cf628d7d9b088ea5c74fdf39c85d; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
193.203.234.216200 OK 636 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data
Hash 1f733d902641ab7de0bb6842aa03fa5f
5766dbb756fe3f98fb2250a521b420e4cbde4b64
6e1a339145211944cb299dd747c7928050f0d3da2e6e9fa19d95eda395d2842e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "27c"
Accept-Ranges: bytes
Content-Length: 636
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bbb1fd1b04fe8af6956d50a7dc69d0559ce03cc93c1124b7cbe0c3f5d9bc05b9c5952da6ada2be1663cfb4774061a46bd; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png
193.203.234.216200 OK 920 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash a8bccfda961ecd3be43a441527d31579
71d34a029705df5b71be5dd5f766ef8dd64dc317
0c626ee956da0905e4db04091d5d9ce31f7be197bbe06b61cf075d3d5d1a22b1
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "398"
Accept-Ranges: bytes
Content-Length: 920
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc01dab25b4ab131a8ede78aae5691b7102b5b449d3fbfd9aa3e0176c9e87d4fb9ebb3f10bc61d41c43d3f1b705affa88; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Studio-e-Lavoro.png
193.203.234.216200 OK 1.2 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Studio-e-Lavoro.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash ee003730c201c662eb4009f4b0bf933f
3bdb8a7fc966295834db87cb23573adc209ac191
25128ae9b2d7b222022c6742c95f5b34f72d781578ff38e3a0507d5b93042f24
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Studio-e-Lavoro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "492"
Accept-Ranges: bytes
Content-Length: 1170
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8b161a39efabbf186852a21d81b7f4f5b9af7f25c1a6ed582021b21154057550a07b636b5cc9460909633f1966a4ce1d; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png
193.203.234.216200 OK 885 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash af728d2cc97152f3c8dd5c41ed4c211f
cafbb0ab1c2951358239d67dfc2a29f545c5ecf7
c73fbc1f0cd73c288b2aa8acd207220d03662c05995cc24c042232d6e478c140
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "375"
Accept-Ranges: bytes
Content-Length: 885
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b97a6e97a9b983f95c77f1542e73c42b251e9bb77c9421279c9f2988b1315a738e29dabb04207aceace78e45943153bd5; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png
193.203.234.216200 OK 287 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ab3808552bc16abc55d567419107656f
56eaeaddf34ca22e138a1508d69627bb40e66183
91a6750fa71fbea8f89e59574bac4dc7cd6e876bcfbd1c7b686d9b0b0fdbc8f1
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "11f"
Accept-Ranges: bytes
Content-Length: 287
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b00824b62fec059f2e3d11a688fa1ec56170e00b5b132f8f70ce6787185e6f633a149063695bc64f172d91d8a829759c4; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png
193.203.234.216200 OK 167 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 776289406505334eab6ebc26b187c164
87f9b31a036d253d608b93d8a201354ccf837889
9a53840587d6136185d7cb060cd712d59ddc559798f777aa3efd82ca3dc3cd39
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "a7"
Accept-Ranges: bytes
Content-Length: 167
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc62b3ef0bc93082c22473defff738d01776b6db57b52e9196cc6dfbaf2cb2032cc81611f1223e583d0ae1caf7bbb2537; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-incassi.png
193.203.234.216200 OK 852 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-incassi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 2eefa43955879461429710f51ef005c2
d68e783477f50bf7c86aba5146ed76cb733ada1d
3b0651a6a2166e7e67c0eea2af1d3ca898b23d20ba336064934c3bf5e48347ce
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-incassi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "354"
Accept-Ranges: bytes
Content-Length: 852
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b107123bb1dfa2041be63b1eb84329a75a9d50325b328bac381514de0267923f4a13eee7ca98fee6a71cd0689f5e7b2ca; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png
193.203.234.216200 OK 389 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 34c0bd611938d57ad5f54c770e5baea8
c159b129658b88217eae93bc1bafb8b058953e41
e9a9af06d3d336672d0826bfa5a4364f5784ff3e50f9a8723a8d53bb5c836831
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "185"
Accept-Ranges: bytes
Content-Length: 389
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be348575cefaf48a019daa9f817a82cd549ebc65321fe49c7419ba4a1804a2b15ed59f36b35b9bf95bb73e06942c42495; Path=/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8734
Expires: Tue, 29 Nov 2022 15:00:15 GMT
Date: Tue, 29 Nov 2022 12:34:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8734
Expires: Tue, 29 Nov 2022 15:00:15 GMT
Date: Tue, 29 Nov 2022 12:34:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8734
Expires: Tue, 29 Nov 2022 15:00:15 GMT
Date: Tue, 29 Nov 2022 12:34:41 GMT
Connection: keep-alive
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
193.203.234.216200 OK 428 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 11e91593a166f018a4aa0916c7b73350
4ba63965fdd76a02b4d036f47c255f09e85ff39a
3e0f818be2f1c0bd47c08c179a0b3197877531fd05fdeeb347dd2d57688a3c78
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ac"
Accept-Ranges: bytes
Content-Length: 428
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bb9990eb5b293863975d23c341a433e3e8274d68858607f8c1803fec1d7f7db85e35578726a27d4e024dceb48b1dae69a; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 10 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Hash 55bd4de71c2cae04264353304563d397
9e740db18d7817b7a582af3d91247a8b5be0e6aa
de9df3f297f5e975144379beb47b8688b083880512651a1ae9cc63efcf4d13ec
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:41 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 53267
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff33742-bcf4-48a8-b6fb-80eca56e49e2.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff33742-bcf4-48a8-b6fb-80eca56e49e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 71251bd4e19aa0d2be6336e7366f15ff
5c8be4aa5190dc7ae89674a26945bfc9ff240175
fb15afbdd12ab04b3bb2785fb3ebf1f2d82f243b47f1b8c2c8788f7653f8059b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff33742-bcf4-48a8-b6fb-80eca56e49e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6003
x-amzn-requestid: 55485f7d-70d3-4f00-90fa-6384e53c990a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR79tEt8oAMF8vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9f1-7b8a266209a1648724c5ca9d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dzjFBi_PYGc8vj5zsg8k9SIL6US5eDm1DoETsgtiPzB3pM-qBc-Q0g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:22:09 GMT
age: 51152
etag: "5c8be4aa5190dc7ae89674a26945bfc9ff240175"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
217.160.0.102404 Not Found 5.0 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
IP 217.160.0.102:0
Hash 6b13f1c7532b64cc34683e56aade40c9
46884f1bb1114c80563faaf4dae342474e9c9189
da86dee1d0010f8336601d29a157a65cfc9f5977a123e4aef7d2a21152956fc9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/container-controllers.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 33390
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 6.7 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Hash 687a7f94032a9018305286df18e198f6
2b3f59b81484e6dda6103d957aa50940be31faf9
a639392a73e8db2f0aecd775bf29e803e98b3e958d4326e4d5d49992b39822d9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:41 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
193.203.234.216200 OK 846 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 0dabfbc85676aa4244df981d66442787
f5577da5fe1db920fb9297b04141910dba7c71db
c4ad41bff6a989eccf6c69b2ffd07e99db9a3e630abd9767c0127dcda8d48e56
GET /content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "34e"
Accept-Ranges: bytes
Content-Length: 846
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b56039b19171cc1f15f7f992e4e8abc8de859b029317320adb09ea86b23aeb5e10745f1e7e044a9575ab339dcee0fefde; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
193.203.234.216200 OK 779 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash afd9f85fac6546c607d1eebc7ef52962
12d55078f098628fbf14e9690da2c29c151230d4
5cd4a1094a5f93e25f2201e50aa13be6656bd407c9fd7c097cfc205481d59259
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30b"
Accept-Ranges: bytes
Content-Length: 779
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be96238f61a9867559689ddb2b42e5eb46b343346e9a944a2113f268e3f1726bcbb5758801926c0ae3d1c4f0da1b4406f; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
193.203.234.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 9cd78420707a87125d12f9c4975d6b25
bb5d43b22e504212ea6c01514059ec74ca3d9308
1ccffa6b14288bc5eeff3f77d41bf025b20ca1a993242bc2c628b40f4b659027
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "440"
Accept-Ranges: bytes
Content-Length: 1088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b553def400e2aa1944c83807b51f6f2274d2ed726023b95cd3562eba08a116b828795c15f7b2877c22482a46a8139b3b2; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
193.203.234.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 953d466998bb50eb89e7f2891a23a4fd
8dd86c56406bb47c39a78b13fae6d880da78af41
da88efb3be79917d7253ce96aa4ab5d0ebd8c6950aa6fe8cab94e9940a16825e
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7e9"
Accept-Ranges: bytes
Content-Length: 2025
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bed146e8975def47c575709b97d51603fb9c92126cf737dda5116a4654f3cee33ed8fbfe8b54a0a5c7c19e8f9192ef4b6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c9e877b081e0ad2ab15a3517c5634da5
527844b9b8e18ec995f86c3314bb4c28347dac3a
1c68215f3398f077c98bd6d873c62e7bb1000748297b15a38da9b83b1072c398
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "671"
Accept-Ranges: bytes
Content-Length: 1649
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bbadca9e2d204216c3933d4a9406c9f84fcb6d99894d09f7a4f7dff43a6bb290e860ad613d412aa5acd3f989ebcacaeea; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
193.203.234.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 7588c2126bb6eac4d6923a5a8feaabe5
26922770c1d055037902465c39adb0e1f3c31ce6
17d1098dccadf020fc350ad169a1f81593180d5c325101f4dafb0b888850eb6b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7a0"
Accept-Ranges: bytes
Content-Length: 1952
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2bdea0033b2b570d9c43ab75efb32a1fe5c16bcc18e32811ee9ba0e5e4b11c24fb3494cd5b6360d34f1a0673b90502c5; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 53 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash a9892e9544a65b92f046e6a0ab78ecb1
6238d501ffecf19c4610fd106f31b3fb25623e52
07e3793af3a0da6e0d963018c0d650f406cd17ab51e80d7524b90439b1532a08
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "669"
Accept-Ranges: bytes
Content-Length: 1641
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b3d0e7807351efad965523810aa3a324b7ca50995be063b7ad748ea0d76454721e1e40e63ae85c820bf1ecae5f5a8f502; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 0174afcfbc58e183cfac4fa96ab4da06
edd34fa51681d95b7310ff012d9df09b0d3f69fd
10bcfa7fe0d272656031c8f0f5c3b0d4f99e6f01108efe0dbb0d203d8bd6df95
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "737"
Accept-Ranges: bytes
Content-Length: 1847
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b9fe9b79064329934774cdabd19042d72ee9bb5d136028e68885369ba448f65f47b20107f938785e0fe1c20450165b05f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 78d2c46ff3dbed457d744a59aa80eb30
3bc15b183660a9d87604127163c24d5a637c4f80
38539e3cf9b3f454c141febf43ede597b2fd9bae495ad4d416dfa09ac53cc201
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6dd"
Accept-Ranges: bytes
Content-Length: 1757
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5e4d42cc8a440116b0c1e6479d58fed9b8175d6db9fb3d50201039a64726398464f4cc45a0691b58d9a6036ebe5c9026; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f93282ad9dad88323dd9a5ce3ed16938
10214afe74e2828343fd5fe9705b3c633eb860e2
ce862c0e134141bbbb38445196f43432d2b0440dcbb1d544d09f10b73d83a1f6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6bc"
Accept-Ranges: bytes
Content-Length: 1724
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4a9a43e106e2d9e94b7786887d9c0a98257e5f12836b02824be6c33cd98cf9e3745cc1f6b650496ac16a7e572fbec835; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d8bcb2ee2f36ac0d27115b9abe5f5506
56fbe74451e52685a81f9c9fc9bfcef1e9a0761f
cec35acf6c690be6a9be0a3e2cfc177cda979be9cd8282837e96357a8d1b7c9a
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6ec"
Accept-Ranges: bytes
Content-Length: 1772
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba3d927ddcf534dce50754012e56b93c8fb572145b71713ebd174d471fec3eff195c8e9fa4199cb539da9b8f291f9a051; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 30, 8-bit/color RGBA, interlaced\012- data
Hash e14f7c0b186112c42a144cf0114614d1
b721bbca276dd3a028ac9ecf84122233de7640ae
cf9b112e70bcd1e0df433fccd8947546350ed57e1ac5d53bab5df0b7507ed133
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "728"
Accept-Ranges: bytes
Content-Length: 1832
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0f2e7c3999eb0a7038b8aff51d725629841c2f174262dad2a633c259db94a665a2378239bd8d7f8a3ce08c3bca895332; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png
193.203.234.216200 OK 2.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 22fbc6725f81475dab49204fad983fc0
a1ed3bb9f9b5249997a0af48e7df234a4124c71b
ac75be845e69801e3cec54782754ca177a4bc14dfdd062ff7251e744e533274e
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "a81"
Accept-Ranges: bytes
Content-Length: 2689
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b47780c72a4e53b5f5fac85e9da83e46bce36cf9c4d641a9af03dfe31d32835329fe8e0646bc78fc0fd5e0a6eff9f12ae; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
193.203.234.216200 OK 2.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 180 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 01f230e9d9d29134e314b32575a0264b
235956a5f7390c5064577ebb30e6469ef5f547bc
331a40833344afe8c42726440e3fd617946212fe0b2e830a6aa32f3b1a596d46
GET /content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "b33"
Accept-Ranges: bytes
Content-Length: 2867
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757beb2375d369e85d0794c265a4f081ddb1de4048db9a928f79c173164e4f4cadaf9f44d831152a1c115c0c2600c2eec3a3; Path=/
app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
217.160.0.102404 Not Found 7.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
IP 217.160.0.102:0
Hash b35fe6f9fbfe2f0a5d11e9817e5719c8
c274d78a77a3c7599a4fe3339ed325c764fdc29d
3721181aa1e35a83754dd5809c48aa720ee3f50d3195aa9af33786c78f799396
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/riskminder-client.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
193.203.234.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash af146dd6d182c64128186c8d713e1583
6163d0369057326387125886b07bc0f1be3d97e9
d86ee6fb558c2c457946b4ddde8c8a49e964023b9b7685553e76c6ef29363793
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "562"
Accept-Ranges: bytes
Content-Length: 1378
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b66e7c383fe1cf7f5f84375b3dddd181c63700600d958290264f7875f9f97a38dbbcba6921748101c695caecb6637cac1; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 9164db3e9c91ba3ff788fd2105bf4d28
fdd88bded2ec9d992282ec01b66cc16ff64421cc
81eeffdb453f881561865e7c42baba2f578f3b0f7af0d81b681671f917f81277
GET /content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6ea"
Accept-Ranges: bytes
Content-Length: 1770
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b64a8fa04944888b73d6a2bac88db47c05af5b5f662359965372b53c7a13e0a41c1a4b06c9679f82fd67bab2aa6a4ee32; Path=/
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 2.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Hash e86888f2735b33c202a50de92b32aacb
20432a877d273c74abe892980b3f0383220f6d2e
0ab109029e9b1df59697c210c438012811d97fa72d8ef0623ededa4ee87f7721
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
193.203.234.216200 OK 3.2 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 6396d65afc34a7989461099bb0072e99
d76fbd4a1d70a6fe1e7d6f34ee5ba61ed8e3baa0
173f71531eaa3fefa888c0c92cfac551e7b27007029ab36a127e5f3232510b8a
GET /etc/designs/vetrina/images/acc-hide-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c8e"
Accept-Ranges: bytes
Content-Length: 3214
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bafba6122abbf9469517ff15044b71bb38bf0b33ba1cb2d446bb943777a8e6c6a7c62574c042d4290ece375a83e3748bc; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash fe2e33b806798c4940ec29050769d7be
7f84f4a5f3f90f36bcbe8037cb41bded19309286
17b4afca46166fc395e83752554c9e737206f172f9ea7c155cb936d7af9ef9fc
GET /content/dam/vetrina/design/ico/Social/footer/ico-facebook.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "638"
Accept-Ranges: bytes
Content-Length: 1592
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b70785ad525dacc62216d64f03148a0b16b892e7f9b39d8e934ebf3002f3949b6d265880f0780439c70ebaa684b35c63a; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 5eb1f62866c9c443dbf14812499f54cd
ec00a0c80f301e5dd2a86c5c7543aa0b7143ca9e
04f0e091c3221e44e7c509914c108ff7a376bca1bddfb0ff6e906fe9a6b883fb
GET /content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "656"
Accept-Ranges: bytes
Content-Length: 1622
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b3a81a19c08d9c53c9bf8b7691db13365bb69782350af88797139e6d0cb9f7dee91f7c010965ad1dd433effc870fdf4ec; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
193.203.234.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 08ccd1cb56e41a7435056ed7c373578f
728f0cd5a5351a2cf82a8d54795fc6af9f44f68b
73c183f088781fc33e3c0e0586b10722ad09cd10c706ea28cbe7284eeb1e6e42
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "590"
Accept-Ranges: bytes
Content-Length: 1424
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7a378737e112162b2ed29a13e2222014779a089164d3b28c6bd463778d1d7eafd6ebd0a7c8099713071b4a789a4e79db; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
193.203.234.216200 OK 595 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c5a80521672d1d8362557812443d6252
56d0d34b06d98fadd8e8cb7a67fa6df0c29b55b9
a9923e07e656afe78af4f2d835ece2b10b63f578b8f010d2a7e7194b997a1d2b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "253"
Accept-Ranges: bytes
Content-Length: 595
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8b7ffb1477a2a3982cc6500ca7de962459f379f10f419cd985dc210a261187b46ba2ab18ce69e6e16a18573b7b987803; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
193.203.234.216200 OK 681 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash cb988be4f45959a69e3546743355a8cc
802ff7cde193725a5195cb240f63f81cb77979b5
52e66c1b321087253378e5b6dfa5d525a614cdbb3c9973d5cf159ac0d32ecb3f
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2a9"
Accept-Ranges: bytes
Content-Length: 681
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b812e5249f9567358c0e98f64244b12017e76a8607442747420ad57a1e9596e1baba33302731304f8735fe464d9fb4e2b; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
193.203.234.216200 OK 900 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash be00ed5d688cc89e1ed88c5d19b6112a
5584f034996cf2f921fedff53d0378212d52eb01
c14456513f21407b2fb73f0a5e44ba8b93d868c084dcf27bc7b2cb08d750494d
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "384"
Accept-Ranges: bytes
Content-Length: 900
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5f26e8ce9f7b81b9eb12d8d39cf06d674623ad00837e2967cafa4b9732152d1bc87708001894a39aae18778fd0189ca1; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
193.203.234.216200 OK 2.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash 51c277d3dc61b5e328ce22b0788f239c
616527e6ac2cfde61d21e58d2eefb5edff44407c
19642c4f1cd0daa88e25d98a184cffee87c5f4011d08c34e51bb59074cf831fc
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "928"
Accept-Ranges: bytes
Content-Length: 2344
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b1743affb4be286961bfeb075f1953707132dd59a7bd2bec443f0503a1d7310b30522ea1d606db9518cbd4c83d3f62f9c; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
193.203.234.216200 OK 798 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cd798ec622a5777f4ff2d6ab69ed5fb4
d2a5eb4ad8511ad8be2840a10d2fa589f53fbd39
478c49aa9a07383978500bc901b5650a76489d4077385bbb0fe2bda16ee69519
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "31e"
Accept-Ranges: bytes
Content-Length: 798
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b9a37dd071013c56cb18e410591ac315181034b04bd72d895a4ea41c3c93da3c7f1d13f57a79200f0a062e61951908e71; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
193.203.234.216200 OK 417 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash fcb17cf1047ba4170838c3b99395a848
244c2c2f21d879c4e944e66180100d951c177f92
8a3b5c38fe7253539f893b989c0973c8f8e9fffd11d470e258773e389919c5e6
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1a1"
Accept-Ranges: bytes
Content-Length: 417
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b102786b42e1829cee6e9d02b3d8b4ba39647fafc27195ebc400b7b508721c3f8a8d26ff32caa008dfefa34566836188c; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
193.203.234.216200 OK 661 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 1925984e52c6f2ec12ea89c78a0f89fa
30d2e4965e0560ae82182806d780bacd5d243743
5de37a1fe078804b30beff475e96731b604de1d4487b207f12821acb1fb7e75a
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:42 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "295"
Accept-Ranges: bytes
Content-Length: 661
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b98adaf2817d426a265020c2ecbdfc83edac16ffe23fb8b6fd53acf229aef1826d3bb9841e8c981e9cd2b36eb3c361502; Path=/
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:45 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/LoginController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.ttf
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6e30"
Accept-Ranges: bytes
Content-Length: 28208
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b354d33868be2ab0961d1df9c3c1c6957d61ddb88a97bf8e1a4a5cc36255eab0a11cc3ff51761cbd4f304f72819b37ec6; Path=/
app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/sha1.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/require.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/require.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/require.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b43cbcd4c39869ae794bb2d26f75491419fbb74e6e7890b438131d7d1d24b059fddb08a123d0dbbb5446162189d9b9ce5; Path=/
Transfer-Encoding: chunked
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69d0"
Accept-Ranges: bytes
Content-Length: 27088
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2fbe8181877e79e024966fa1eb3460a14b65d3ebda6fcea3b9a2db6042026dd1f2cc6c5482adfa0b5ffa660f05f35ef2; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:41 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
IP 217.160.0.102:0
Analyzer Verdict Alert openphish Intesa Sanpaolo
quad9 Sinkholed
GET /s/account/service/login.php?&second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/rtdmcontent.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/NdceSDK.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/archConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/riskminder-client.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/cryptoJSforISP.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/jquery-2.1.4.min.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/hosts.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/js/boot/main_app.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2d883521fa0e3dde05973f03f6ff3f97dc32557278ebde55310596f511a227836047f91aa20350435529d29f419bb522; Path=/
Transfer-Encoding: chunked
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b45f94c1c44983b9689fa47d57306ee79f67a2d42f21259eeddfaf63a9ec32eba2b4a2d2b0c77e59b052af73351243d0e; Path=/
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/ispLoginHelper.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/css.css
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/css.css
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /s/account/service/css.css HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /ib/public/login/fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "35fec"
Accept-Ranges: bytes
Content-Length: 221164
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Cache-Control: no-cache
Keep-Alive: timeout=17, max=38
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bb48bdba9503b7d10d9a7c7e5eca59c418537b309f033a8ebeea5f0ea04fc7ecb5d56c14754d673a3aa847ecfe4546da2; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.ttf
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /ib/public/login/fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "350bc"
Accept-Ranges: bytes
Content-Length: 217276
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Cache-Control: no-cache
Keep-Alive: timeout=17, max=88
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bb1289bdedd8812794ed7236ce149c6d7b48e06570c854f8f92f241eab15ee4713a8408b9edb21de759011fedbf1abaa8; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/mmConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/coreLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:42 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/coreLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/ HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/qrcode.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/moduleManagerSso.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/LoginPageController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/hosts.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/sha1.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/rtdmcontent.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:41 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba3147b77ede49ba10d623aa94ddfd3c39376511b1d25292879e662a0ec9f2df07b269d9ce148b5cb1f47b67b37e2386d; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 12:34:42 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 12:34:40 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3f8"
Accept-Ranges: bytes
Content-Length: 1016
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b86349a7827b154b06d41344de6512212fbc6c483bdc8e465347a76976e2ff77767dc6af6a890fadb80eb725ce8356252; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:39 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 12:34:41 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bbe50455131f2cade0478a31c5adb18aa0388616b2bc07a245cc5f29f23af5411202e0d00520a129548836e1cd637ba2d; Path=/
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/favicon.ico
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/favicon.ico
IP 217.160.0.102:0
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:42 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/require.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/require.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /s/account/service/require.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=786cb2a996b11c5183666fa4d689fd09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 12:34:40 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2