app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
217.160.0.102302 Moved Temporarily 138 B URL HTTP/1.1 app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer Verdict Alert openphish Intesa Sanpaolo
GET /s/account/service/login.php?&second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 29 Nov 2022 02:11:59 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Expires: Tue, 29 Nov 2022 02:31:59 GMT
Cache-Control: max-age=1200
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Tue, 29 Nov 2022 04:35:00 GMT
Date: Tue, 29 Nov 2022 02:11:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4925
Cache-Control: max-age=121287
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:11:59 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:53:26 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10871
Expires: Tue, 29 Nov 2022 05:13:10 GMT
Date: Tue, 29 Nov 2022 02:11:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:17:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3249
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WI4qpxfpGMl+3UXVU5lVi02/YqSNrCMbD59tjoEt4yqLYBrLfoVCo6kHhUxe5CFboG0Tfussnlg=
x-amz-request-id: H84NB9J72QTPN0VP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 01:42:19 GMT
age: 1780
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:11:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash ceff6945469f926cd7a51cf56a78cece
0ef181e79de546a4138d658b59f0609a0fadf318
e1e1a9a4622dfde2b9f7375babb1b613de82974e41ba9e4f68f3560ea0b0f504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=108436
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:11:59 GMT
Etag: "63846f03-2d7"
Expires: Wed, 30 Nov 2022 08:19:15 GMT
Last-Modified: Mon, 28 Nov 2022 08:19:15 GMT
Server: nginx
Content-Length: 727
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 02:11:13 GMT
cache-control: public,max-age=3600
age: 46
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 994
Cache-Control: max-age=112289
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:12:00 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:23:29 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:12:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 02e1458292df752bf2ee2be02eb033f7
d977b274d5d43a53cd724da48360ec607c6b3ed9
64fbdc1418068dee8b9c8ce6c7493da563569feba2a620ea80667354e603b7f6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 00:43:04 GMT
ETag: "d977b274d5d43a53cd724da48360ec607c6b3ed9"
Last-Modified: Tue, 29 Nov 2022 00:43:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1436
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0ddae430b55-OSL
app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
217.160.0.102404 Not Found 1.6 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
IP 217.160.0.102:0
Hash d2a404375d6aaca457c8ad0786dcf24d
d62887bbdd7ec4337d58a83dff776f026e5ecfc5
d82bab53cf65d65d620052f22c2193d593afee55b73584861d6720c2724d9610
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/riskminder-client.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 02e1458292df752bf2ee2be02eb033f7
d977b274d5d43a53cd724da48360ec607c6b3ed9
64fbdc1418068dee8b9c8ce6c7493da563569feba2a620ea80667354e603b7f6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 00:43:04 GMT
ETag: "d977b274d5d43a53cd724da48360ec607c6b3ed9"
Last-Modified: Tue, 29 Nov 2022 00:43:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1436
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0dda9a4fab4-OSL
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 02e1458292df752bf2ee2be02eb033f7
d977b274d5d43a53cd724da48360ec607c6b3ed9
64fbdc1418068dee8b9c8ce6c7493da563569feba2a620ea80667354e603b7f6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Sat, 03 Dec 2022 00:43:04 GMT
ETag: "d977b274d5d43a53cd724da48360ec607c6b3ed9"
Last-Modified: Tue, 29 Nov 2022 00:43:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1436
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0ddee530b55-OSL
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 1.6 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Hash d2a404375d6aaca457c8ad0786dcf24d
d62887bbdd7ec4337d58a83dff776f026e5ecfc5
d82bab53cf65d65d620052f22c2193d593afee55b73584861d6720c2724d9610
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/1
217.160.0.102301 Moved Permanently 262 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/1
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash abc841525bb5ebd2144adfe1e01126d7
5142d28a0dc6fe3ee97ab5be3107298340c0da0a
60647365b418febd5c6e2a92e46aa605ec5a99bd07ad099a0ab1d3921872ec0c
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
content-length: 262
location: https://app-intes-asaopaolo-it.com/s/account/service/.
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash 8f473f85cb21fec9d80f5a39d56be974
888d52a92ab4ae5cd7bfd28aeb30975b647010b9
6226e2c2b56c53c1212f3da218fffdc3bbcd5e3273b917c5a312c1649c33faf9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:58:12 GMT
ETag: "888d52a92ab4ae5cd7bfd28aeb30975b647010b9"
Last-Modified: Mon, 28 Nov 2022 23:58:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2948
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0de6e6f0b55-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash 8f473f85cb21fec9d80f5a39d56be974
888d52a92ab4ae5cd7bfd28aeb30975b647010b9
6226e2c2b56c53c1212f3da218fffdc3bbcd5e3273b917c5a312c1649c33faf9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:58:12 GMT
ETag: "888d52a92ab4ae5cd7bfd28aeb30975b647010b9"
Last-Modified: Mon, 28 Nov 2022 23:58:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2948
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0de69c2fab4-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash 8f473f85cb21fec9d80f5a39d56be974
888d52a92ab4ae5cd7bfd28aeb30975b647010b9
6226e2c2b56c53c1212f3da218fffdc3bbcd5e3273b917c5a312c1649c33faf9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:58:12 GMT
ETag: "888d52a92ab4ae5cd7bfd28aeb30975b647010b9"
Last-Modified: Mon, 28 Nov 2022 23:58:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2948
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0de6ac61c0a-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash 8f473f85cb21fec9d80f5a39d56be974
888d52a92ab4ae5cd7bfd28aeb30975b647010b9
6226e2c2b56c53c1212f3da218fffdc3bbcd5e3273b917c5a312c1649c33faf9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:58:12 GMT
ETag: "888d52a92ab4ae5cd7bfd28aeb30975b647010b9"
Last-Modified: Mon, 28 Nov 2022 23:58:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2948
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0dece7c0b55-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash 8f473f85cb21fec9d80f5a39d56be974
888d52a92ab4ae5cd7bfd28aeb30975b647010b9
6226e2c2b56c53c1212f3da218fffdc3bbcd5e3273b917c5a312c1649c33faf9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:58:12 GMT
ETag: "888d52a92ab4ae5cd7bfd28aeb30975b647010b9"
Last-Modified: Mon, 28 Nov 2022 23:58:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2948
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717d0dec9d1fab4-OSL
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DNSx2StHIejYnVSEgu8OxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5dt6WV6pFufDwehY/oiOZep3lHY=
www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
193.203.234.216200 OK 17 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (27465)
Hash 813c287cb552d3893880f19f6f1385e3
1d8069a147ca13ca331a949b3b3f3b377ff70106
a36e83b0a321dc743c3e84a8fc60083d1da58690c21e3718cc443b1b3bb17140
GET /ib/public/login/css/ArchIbPublicStyle.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Content-Length: 16997
Keep-Alive: timeout=17, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b63ecd294c3b14aba13ecbe6daa1015bc75d1ce7cfe4d0bcc54e2068fee71191eea8fa9e0ca97915e69abb023f896f40d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
193.203.234.216200 OK 21 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 8053bbd821b737d18e8c686b9084819c
60d314e36de8101a9006e898e23a187bc0389d0f
58ad4a977ac9403bc08ba6bd2c0df7160f76240285f0a8f5e07053b6b83acdb0
GET /ib/public/guestarea/styles/app.css?v= HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: max-age=84600, no-store
Content-Length: 21036
Keep-Alive: timeout=17, max=96
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b20e530cadf9a4e8c8f91970a9a56a94f24f3689accd7306ca1a422c428c5c76d9311c7f52604d4116b6e321f6826c2bf; Path=/
app-intes-asaopaolo-it.com/s/account/service/res/jq.js
217.160.0.102200 OK 90 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/jq.js
IP 217.160.0.102:0
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 3e4bb227fb55271bfe9c9d4a09147bd8
156837f75f6600ccb602b4efcbd393636c33f35e
ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/res/jq.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 89501
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "15d9d-5ee394412f689"
accept-ranges: bytes
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/res/arr.js
217.160.0.102200 OK 228 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/arr.js
IP 217.160.0.102:0
Hash a01612e293c21d0f11a3a6573423d3c8
b4aa9b544b15e65f1c4978e257e39ae1daa5b59f
688b08514eb55988aee0853a1899240705df42c06e5542532bf2da5bf72a3ec0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/res/arr.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 228
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "e4-5ee394412e6e9"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
193.203.234.216200 OK 103 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65011)
Size 103 kB (102923 bytes)
Hash 13d142175a1b8ed0fd27b6119843d35b
ee0f47c77adc19366ccb13a4a69d1ffcc904928b
7e2d410906d9cf76d5d8e8b89bf24fbd9a1563d2603259fb17657afe55d5cd20
GET /etc/designs/vetrina/clientlib-all.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c2ba2-gzip"
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b92cab0d9d91e0dafaf207f6ec44709d3d8e897b237a8e066f616433e7dfb3861056019dc1a3746553006832552f1aab6; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
193.203.234.216200 OK 485 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65371)
Size 485 kB (485343 bytes)
Hash f4c6107b15cea93853e5386a56c8466c
f18dc3a59d19cefc48f5971c81bba983be10cc8d
11bf3978a97737456ea1ea2ca2bfa58c2be1ccf633c9f6e56ef7b0271670c850
GET /ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Keep-Alive: timeout=17, max=98
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8fdc1fc6cb94204f0775b16f6a82766e645f84a5855f23724aecda46b3c0be68e0b2192af7f9d41ac8a22bde2d511a1e; Path=/
Transfer-Encoding: chunked
www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
193.203.234.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 19 x 10, 8-bit/color RGB, non-interlaced\012- data
Hash 3aadce088b74fd250abcdb82d51ba273
1e9f10dbc5fcd6c98a94659c0344907e0b7b59d6
b9cf5ac56dd524668e1156759674215a9224dcaec961914e0e36c2c0efcb9bc0
GET /content/dam/vetrina/design/ico/flag_eng.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5de"
Accept-Ranges: bytes
Content-Length: 1502
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b38e0dc7576bc6f6b88dc1d32aa353e0067a694aa6eb72acb038f2643b2ab54f94fc353cc75b4d2b09abe4fbd5bfc29dd; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e717863b7c31ba33f14c2ee53111095
2e9aa87909ffba3c2f4733edd5c811d08c307d37
7eb9aabfb251336728d1db8891b0c04b8317679348d7fe66a019fb2451eb191e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "617"
Accept-Ranges: bytes
Content-Length: 1559
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b025f57b6ab5e536b14ba60999db93680846c4307724664f65f8c23cde4da9687f5868e4be4b381db97673be506f97fca; Path=/
www.intesasanpaolo.com/etc/designs/vetrina/images/tool-gal-ico.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/tool-gal-ico.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 315 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bbda1a73109123e492134a89b3524fd
981797657e4e03a4cb0a5855fa1de97a94faf77c
af13859e6c4fa7910d13f78d99dfb525908d4f21b4341895e9da0232619184e6
GET /etc/designs/vetrina/images/tool-gal-ico.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "649"
Accept-Ranges: bytes
Content-Length: 1609
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b27f8dae5779ceb8c3297d2b223351072a97f366649736cadfef23970c8e0d212a0e7296338c18ef2499ea47b928ace43; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_casa.png
193.203.234.216200 OK 472 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_casa.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash d2d851d2505109ae24ddbafd9785143e
31adb908c2d8ac92e1bba73e5f68517fb32ea914
f9632d1f38fc16ef528f71e49c9d270adf550cb39832a43edc447fdd82eb931f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_casa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1d8"
Accept-Ranges: bytes
Content-Length: 472
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b84448d46b6fe5449fe8688f9eb9188387f7969850835ea95bf5a9348061eedb438db432426a6e29605bb8eec82dec89b; Path=/
www.intesasanpaolo.com/etc/designs/vetrina/images/ico-parla-con-noi.png
193.203.234.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/ico-parla-con-noi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 43 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash bed2ce651195bd358c9e92df2984b52e
8b135fc67e0639a317b4fef7517858064edb81ed
9e5f7acbc049c135bfae2d725aa23aeced8e05320aadf2629ca8fa11f5dafb14
GET /etc/designs/vetrina/images/ico-parla-con-noi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "785"
Accept-Ranges: bytes
Content-Length: 1925
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b9a36b4801a8b5d3241b189126c74653dc7b060d2420ccaa7667222a888efeb18522efbb02ab95d786259b91415ad51fa; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png
193.203.234.216200 OK 531 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 1fe64c45415a28884fe29aba300f5a16
9dad3e5309a3a3104ab3e7f48276f34c9aab16ed
9c76d15c14cc6a258af1bc61376f6a7dd2677926b5e18b01842f4b46825739ee
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/valore_insieme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "213"
Accept-Ranges: bytes
Content-Length: 531
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bf12cf07bb44beedf7cdee7060852508f08abc5763eda03d4d7c3e4c03839fb6499930d443826f687a509a7a8a9e9283c; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a05d6251cb7b66ecbede227a1e59b12
2dc09f21115b7c4f1053f46e8346bcbf5b609f48
e8be3c5c3b09a632c4d35d1cd337bd69933d54ac6add4e309de16dfb1339fb8c
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "670"
Accept-Ranges: bytes
Content-Length: 1648
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be7a9f9f8d3df53b8bf21d2ae2b8e0c0a68918ccc62c953744e10ce04d191dc286f1f75138d39280a37325e3179bbbea7; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
217.160.0.102404 Not Found 1.0 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
IP 217.160.0.102:0
Hash 0ba0732d31e7af1e2e30dce60f549ac6
c0248d5f79677c3d9d70111d434312d34c224a0d
3d7619abfd2ee9139529b2fe68305289513630a33a53955425fdaed883ab5efa
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/archConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
193.203.234.216200 OK 636 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data
Hash 1f733d902641ab7de0bb6842aa03fa5f
5766dbb756fe3f98fb2250a521b420e4cbde4b64
6e1a339145211944cb299dd747c7928050f0d3da2e6e9fa19d95eda395d2842e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "27c"
Accept-Ranges: bytes
Content-Length: 636
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6735964ce1b9d1860144a6edef4d41a802eb714be7f2036d2e78dfde1891f7315b59254170c1d3aba89e476ffb03c013; Path=/
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 1.2 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Hash 0c98963c247ac39a504f12fe94de306a
a00985a2a2bb8f0d45027dabf5092109f7f4f627
fede8c02799edeec9bac5780434a389a1dd6ed2324abea169f7b201f089b0809
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 1.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Hash efa6c2b16c3f57df2805a6fd7a03fdab
4967793c5bf6db01fa35a64c1cbe5c4a692e3bac
a29ccf14c83a26869c404685736aa726adb4475c2f6de098d34c609f2960a005
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
193.203.234.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 85c0ca4e83854737af7e875072e09f1c
6c52099d9dcf9c3932ac11b82d085c26566b4a99
7d048f17267aaad7b97463042fe50808124861e587e43ba6d59a09520d37adf8
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "43e"
Accept-Ranges: bytes
Content-Length: 1086
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b867135cc6104f347f8088ccb5766da653f2c40f8cb179db39a3f7be8b3ea643965fb19bc43252b59065e6661ac4e6e55; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Versi-e-prelievi.png
193.203.234.216200 OK 813 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Versi-e-prelievi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash d49514fa4c1400d7e88e4f167d70117b
30ff7ae4556f897b41ffd37cf0c5c09554630766
c45941b79ce0afef58ab10568e9d6799ac407479da2fab285f872f77bb09072a
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Versi-e-prelievi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "32d"
Accept-Ranges: bytes
Content-Length: 813
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b01369a95cd78175d1e70f59cece88c1974e35251c24c216b4069aa58241927dcfecc8678a40bbb7e67bcf9eeb98e1acf; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
193.203.234.216200 OK 44 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ab760a63af97f61f5b186eea04ac0853
b9fc917cb2b5a9f8b6bf90fcd8ed30c3df1491ab
47e722567b6ffbe6bbd8a758b0e981de956b093ad71c2730c6e7acd3da23e48e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "ac90"
Accept-Ranges: bytes
Content-Length: 44176
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b146f445d36134203185f672312e5c6dcb6d16d09adeb5636f59478d70e4a3bcdf2e5fe03e9b7d8878be77744718e9ad6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png
193.203.234.216200 OK 2.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 39 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 765895c7c36d25b3e9fab1fbbd0e9141
eb18fc417926909986d91ce68d601dc3ce93669d
928b0b6e08c035315069aa10d57aa64a61ef893dae42e33fee7c8d40dc2c1d04
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "828"
Accept-Ranges: bytes
Content-Length: 2088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4b2c605bddc8890d5e24c329b73bbac5b83a6018649e2e0899f9fb3b6129e9476ae9623d1e2aa6c0a192ccdec6b209cb; Path=/
app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
217.160.0.102404 Not Found 2.6 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
IP 217.160.0.102:0
Hash 760e6ef55e3f70d9e98c2fe7dd8c2298
f68ae029befe866237a2cbb899ddd8e7619294b5
119fc2a3a2791b18cd4aaa30818f2db06acc639e73822633e94b64b52c7ddd9b
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/NdceSDK.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 36 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 472728754be887d0048b6481486a9b9e
b06067365beb2540cc75486681cd8dd8296c4943
900bf203d7c5c73d516b7b2c9a48c2dbe126ee6afc7658e6b6f1ea1cc25b3035
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69f"
Accept-Ranges: bytes
Content-Length: 1695
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4ecdc61d1f01f502799297a39da7c4b8a09b569c95f7a39fa733b69bacf6cbecb940d2f664e41f251bce4687579af4ac; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png
193.203.234.216200 OK 2.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash 51c277d3dc61b5e328ce22b0788f239c
616527e6ac2cfde61d21e58d2eefb5edff44407c
19642c4f1cd0daa88e25d98a184cffee87c5f4011d08c34e51bb59074cf831fc
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "928"
Accept-Ranges: bytes
Content-Length: 2344
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b239bc1fe1315abe8b6959ec6b3075534a24f94ee85bb3bad6387202bd64f8aead066bcef9729e2d272427d7f043554ad; Path=/
app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
217.160.0.102404 Not Found 1.9 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
IP 217.160.0.102:0
Hash a6dce09bf0cc1babc4d1b91c7a191cfc
3c2896869e89852f4dd90e15bf6fb8681c2cc20f
c86d3b059c44233a9447165b406722de9df6804edfea145f75165ebba0a1046d
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/coreLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
193.203.234.216200 OK 755 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f7970f6b1e84bd08f8ee30808b8f872
6887f512ac33bf4c97274c50f0ba091e86fce92c
9c63089b53ad83c220734210fff43104620cbca67e8b94d906173603cf7a359b
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2f3"
Accept-Ranges: bytes
Content-Length: 755
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b821f22c4932d459b31f778e2f3b1bb26aa4e19cf212a6a90ee253907fec1c40da36f02c1d79da4e0a392504fa9db13c2; Path=/
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 1.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Hash 493eb786e1086a2226c6c340108cc2c5
1c09816583080b6b97e5dcdb3c9b4df3ab382183
68e20d71d10a13fe898709062d89a92c5a58e4ec151691d513b73968aad35c39
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/require.js.download
217.160.0.102404 Not Found 1.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/require.js.download
IP 217.160.0.102:0
Hash 12fa590bad7b682d08ae1dbcfb723f90
b9d8a09164bd36362cc596510b1536e1c87929a8
34d46d2b709e4767b04fdde0de5ac972d90b70367fe5d494bd7c80da26ead94d
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/require.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
217.160.0.102404 Not Found 1.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
IP 217.160.0.102:0
Hash f45523b12be98b215e38fa2742a2d057
6b4fbaaaee8c6924f532f535f86d1cc6cc5e2d8d
71c4150fe9a65a96c7328d97524a1289fadd6a5c50f4752cfee568017de0fb97
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/rtdmcontent.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
217.160.0.102404 Not Found 1.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
IP 217.160.0.102:0
Hash b0811e633291a1b30f7450d5340d784c
a830a7a0adf74c2415033d564269686b4e6d8e7b
e4718aadf01773aff2189ab45e3c0928b0466235fbf18723f072e74e65cabc13
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/hosts.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
217.160.0.102404 Not Found 459 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
IP 217.160.0.102:0
Hash db0cdccaf6215b9dd164b2e87a9d3ab5
b131968c753f9268d97feb754fa537238dab1b22
423b8a8ae77bfcee8dce2b47d9e7a2a199e9c92e70bfc6ffcb49a4cd553131be
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/container-controllers.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
217.160.0.102404 Not Found 1.0 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
IP 217.160.0.102:0
Hash 46a1d5e2beb8e050d37102c804180eed
7c9f99ef5757424d2246b08718be69f72d785002
7309aa55ff8a1f4bfb362d579b81ae6785a586a2678eb9491733c98f9b9c66af
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/mmConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
217.160.0.102404 Not Found 339 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
IP 217.160.0.102:0
Hash c1176a459ab1d7c92d81be7aac220861
857426e955987ad8153ee7e9daca61a39f2cd3ca
52d8c3f3f1efea7e8952d53295bd31b131a825c4acf4797f7d9b721af421757e
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/qrcode.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png
193.203.234.216200 OK 389 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 34c0bd611938d57ad5f54c770e5baea8
c159b129658b88217eae93bc1bafb8b058953e41
e9a9af06d3d336672d0826bfa5a4364f5784ff3e50f9a8723a8d53bb5c836831
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-protezione.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "185"
Accept-Ranges: bytes
Content-Length: 389
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b37cdde7d76d0c1b114baea5bc35943aea888653baa11102a06a09f5f12795f85d552256fb12c89cc9f682b268b898d6c; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
193.203.234.216200 OK 846 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 0dabfbc85676aa4244df981d66442787
f5577da5fe1db920fb9297b04141910dba7c71db
c4ad41bff6a989eccf6c69b2ffd07e99db9a3e630abd9767c0127dcda8d48e56
GET /content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "34e"
Accept-Ranges: bytes
Content-Length: 846
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8797cf907796a82fcdfa82918a39c3865500d8fba207cccc26bd4f6b20c4ac6c3fd2f70f8d702cad21bda2b5cfdf4a92; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
193.203.234.216200 OK 428 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 11e91593a166f018a4aa0916c7b73350
4ba63965fdd76a02b4d036f47c255f09e85ff39a
3e0f818be2f1c0bd47c08c179a0b3197877531fd05fdeeb347dd2d57688a3c78
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ac"
Accept-Ranges: bytes
Content-Length: 428
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b174e2f6a901d33973d710ef72a5c0f91b052f856af4566f7db30e810ef6cccd2504c81fe122b8926f4faf424fce298d1; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
193.203.234.216200 OK 779 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash afd9f85fac6546c607d1eebc7ef52962
12d55078f098628fbf14e9690da2c29c151230d4
5cd4a1094a5f93e25f2201e50aa13be6656bd407c9fd7c097cfc205481d59259
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30b"
Accept-Ranges: bytes
Content-Length: 779
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b78a4f2cb8b672ba35fa5a1086a7be3c386ccf15afe086f8fac9828d9d80f3f6cc6e3c44db688eb92f803480e7a9772a7; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
193.203.234.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 953d466998bb50eb89e7f2891a23a4fd
8dd86c56406bb47c39a78b13fae6d880da78af41
da88efb3be79917d7253ce96aa4ab5d0ebd8c6950aa6fe8cab94e9940a16825e
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7e9"
Accept-Ranges: bytes
Content-Length: 2025
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bdb4da0dd516386795e707c5514ebd7a37232eee72aa859bf9361688ae962e0418fa7cf1c172637ac523f8aed0c1f49b3; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
193.203.234.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 9cd78420707a87125d12f9c4975d6b25
bb5d43b22e504212ea6c01514059ec74ca3d9308
1ccffa6b14288bc5eeff3f77d41bf025b20ca1a993242bc2c628b40f4b659027
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "440"
Accept-Ranges: bytes
Content-Length: 1088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b167192e45ab642ad6893eb9452e1982dc61e42a4f0d7412b04bbcdb120c33ca9e58b6a74ec1551a181ab62a2ce8ec9c6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c9e877b081e0ad2ab15a3517c5634da5
527844b9b8e18ec995f86c3314bb4c28347dac3a
1c68215f3398f077c98bd6d873c62e7bb1000748297b15a38da9b83b1072c398
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "671"
Accept-Ranges: bytes
Content-Length: 1649
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be0e14b417f52c7320408c2fd9d80784048270b6d7fe84582cccd339ea10fd291e45166ad6165dac218af1bcc8eb515cc; Path=/
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 18 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Hash e1150da18da7c121cd1c3be4f5ed2c45
b28dd054617354639175d1daac98b81b5bd49e60
974a541a6bc0307bec8d1f9ee68f35931d6da0ba83149129c52191345c06e014
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
193.203.234.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ba6b5d4f1a091512dfe9b682b939ac6
a212027b8c3d7db7a97baf4f7ff6ee53d9113a79
7ad8682c17cb55cf3bed7a6fe487dc2d6f52af35fe5ed92955065dd99a5fac34
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5ca"
Accept-Ranges: bytes
Content-Length: 1482
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b766f65d08835c8ac1076b1128253f6756315295ba78816e27c1c5fa4fa3a9e49ca1a9536f60339a3b8b56b80462465ca; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
193.203.234.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 7588c2126bb6eac4d6923a5a8feaabe5
26922770c1d055037902465c39adb0e1f3c31ce6
17d1098dccadf020fc350ad169a1f81593180d5c325101f4dafb0b888850eb6b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7a0"
Accept-Ranges: bytes
Content-Length: 1952
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757be4b1f5f390cd22451209d701cf6bd94b8dc998a9d40ad4263c4ac041f90921f6bad1b3586765e99be6fdc2efa6b7bf69; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 24dc06b1321d6b083ec7c5fc13983e07
d233856fae8dc8fd2c10650ab3e25def6af860e8
b9e4567d5965eafa16de795405ef30938099d4772b81afccc6ed25e1e8ad1fa6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "66b"
Accept-Ranges: bytes
Content-Length: 1643
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bf2c6c213dd7abf6716f81917efb58beb579716a78d00d1008dc0cf4ac1eba6e1e49e0af1ee65c13720d866d02f7b7e3b; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 53 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash a9892e9544a65b92f046e6a0ab78ecb1
6238d501ffecf19c4610fd106f31b3fb25623e52
07e3793af3a0da6e0d963018c0d650f406cd17ab51e80d7524b90439b1532a08
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_commercio.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "669"
Accept-Ranges: bytes
Content-Length: 1641
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b89409a89dccb252a6584f44020c5fd5b183d083aec09968432b24ca55bf6474c29def8acd604509d8d2708678e81491a; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
193.203.234.216200 OK 1.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 85239f84c97a2057670b9174e9cb6864
45f5447da4aa98e10cfb8e8a176ca51a98752a60
2255e18e78b3b6642bde1026a1bf2973a7cc340068b841de2f55e56f4113db9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4e8"
Accept-Ranges: bytes
Content-Length: 1256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b495bfd47912848a288ac9a37ccbbc48fffec3b9fe230b13a2e98628cf2d371642bcc7e0999eff3a89257ad2e1666561e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 0174afcfbc58e183cfac4fa96ab4da06
edd34fa51681d95b7310ff012d9df09b0d3f69fd
10bcfa7fe0d272656031c8f0f5c3b0d4f99e6f01108efe0dbb0d203d8bd6df95
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "737"
Accept-Ranges: bytes
Content-Length: 1847
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b36f06e9f6b589f60378483019726df5dee2e61e29b01c9eda67a98560f49c0bea66e1e1393922e901ff2b41ff83e23b0; Path=/
www.intesasanpaolo.com/etc/designs/vetrina/images/logo-intesasanpaolo.png
193.203.234.216200 OK 5.2 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/logo-intesasanpaolo.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 279 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fa2e7d279a9e8509db5ab5f300091c9
8fa4d667ca1df6df6fe9b7fac0d6a9f4c14daf55
559bde803d8dedb905509859f3c1d14c9837788f2d5cf6ee26f1518f528d0cf8
GET /etc/designs/vetrina/images/logo-intesasanpaolo.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "146d"
Accept-Ranges: bytes
Content-Length: 5229
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b08585e5b650cc853e15f4c6a4841a9ed72b818ea83e755d80794b7abc3894488515c6d45361a9ee5ef21b6b3f89c4f79; Path=/
app-intes-asaopaolo-it.com/s/account/service/css.css
217.160.0.102404 Not Found 584 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/css.css
IP 217.160.0.102:0
Hash 1ff415a2775ffb8a999f3eb5bdb7142d
aa2f00dff1be38aeec45c2f39ec198fb5efa7e6f
55f12887cc8e29caeef08d870a512b0ad1ba1e20a92c1dae7d65e1550ee6ae11
GET /s/account/service/css.css HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9729a9e9baaeb8704a41234706f1f758
64b517cda34ec2b38a11e91b45e1615a23f19802
45978963ae9033d33224ed5677e4b77223fdeef3a5003e0670e762c534f88446
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ed"
Accept-Ranges: bytes
Content-Length: 1005
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bcba6c87fe99bc7641199c40344f910df43cce7056f6ec9bb2600e32a0c7d15714f5283306c085aa6e9f5316e8aa32f15; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
193.203.234.216200 OK 581 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 4eccc5d2b149b12cbb8f36dae371b95d
ab6125429786ae86249cb357e60944e1330b02f1
e69cc6876dd59840448b8327049bd33ad0b7ecfee3e3ae2f13646a821a91a331
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "245"
Accept-Ranges: bytes
Content-Length: 581
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba1635709746d542fd27ffda29787a9c8f3f81f88aee472d5ee4bf19185e7ebb167400f85aca461bba2b468a4ee4beb38; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
193.203.234.216200 OK 819 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 28098b88dc2ed890f92dbccce3093653
306e46ebf4eb580e95a3254e1ed99e1b8a54e092
2ee5235a5008535da5044a323c747c83df4f1d42a12fab62175ed86a89652f53
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "333"
Accept-Ranges: bytes
Content-Length: 819
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b9b8b4c8c1ec3373f9c6bcf62040132c3d430ab3e217119bb8a748531f93fe2e6bac6e702a0a7436cd9f7ef2cb4c1b365; Path=/
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 816 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Hash 2e6dcf9326229a8739e5a7f9291f6bda
63be28cad3e27806487df92ecb158b483cf8057b
68739bc0aecf9a3c8c3ee78986633084774fc4b17d66ad5baf0e13077b0b34f4
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
193.203.234.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash d12b8e3c731d4b3683a083e2d806efbe
f1000991e5877719788fbd2a21e7e3c588383b8f
dee169bd1537e0f50a2b62e5413559506f0b24a8959e261b9347c545c6d6dac6
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "749"
Accept-Ranges: bytes
Content-Length: 1865
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8e7d3e7a74e3ed1fdca1ad7da67928c5532f3d1308511375be5cada19f552263b49729350d527ca466fd050b7292546a; Path=/
app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
217.160.0.102404 Not Found 14 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
IP 217.160.0.102:0
Hash 1afd9ee5b30c482381216a8b79c68cfb
999ecc575a7a3c4dc326623a8ab6c485e73ac029
50bdf5bf5d1a0387421257d58819c5aef5ab9856b642c8df201566338fafb042
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/rtdmcontent.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
217.160.0.102404 Not Found 45 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
IP 217.160.0.102:0
Hash 4d48195cef684463271691e3f84c827f
c12db235fe5efdf60f1677ec00c37bd8055a7f2e
5cf62e5afec2ea4b65c461fc4d8fac1cee36107d889b033ceb2b49e8c1d89d7b
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/sha1.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
217.160.0.102404 Not Found 11 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
IP 217.160.0.102:0
Hash 7434539be5186040c2ce769fbd5108fc
3bcfeb07d623df69f12274094b26dff7fdbf4aa1
29879470b627be75be542ad21ace7590276b54db09246f408e1c17a7cb2d3e44
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/main_app.js(3).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k
193.203.234.216200 OK 15 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type TrueType Font data, 17 tables, 1st "GDEF"\012- data
Hash 4e5c465373308d47cd7b9c8738b83700
3b82c99243223edbc229c285eaf4094ceb082f63
e1dbf9c55297ea6533a87a7f802524fa04b713e4ab522c43dba05806ac7f7643
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Regular.ttf?2r5i7k HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:00 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69d0"
Accept-Ranges: bytes
Content-Length: 27088
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba86c59488dc1847441ebf4e5abd7c164b11ffb1e1ccdc860f06af47093fb12a21be25fbc01251a35109dd676565cab73; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
193.203.234.216200 OK 994 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0204ce28b7c0e666cc95b486bd827074
5054f3d2c5a70efb65eb9422f3ab2919d433e4a8
01de4f9d83c625f7ba08dfc12cfd6ecc9a999c767c948c38b1307d8669e69ce8
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3e2"
Accept-Ranges: bytes
Content-Length: 994
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bb26ff7e9ee41c062066eb0819a17f048e9766def3178d22e2d27233948a96fa59a4eb2372840dbc647c578f86976a670; Path=/
app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
217.160.0.102404 Not Found 15 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
IP 217.160.0.102:0
Hash 1fa428de298f5293185ba05f48950684
47a16a08d337f1bee0778da520ed2bda9936d50a
2da8d7d21c3f369c56122289895a6f517624c123e7342d3edb127ad814fa343c
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/riskminder-client.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 37 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash c53b2488e746a5a423d1024ca318e41e
32b36f817c530d595d53142257e25897bf6a73ea
7621b7efdd066ad06e4ab99786b72c02f9d126e63bfa911cee193b1071fa1ccd
GET /etc/designs/vetrina/images/acc-show.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "402"
Accept-Ranges: bytes
Content-Length: 1026
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2f15a01adf5c9f48cc710937cd9ffb92872015f232c6e4ba48d4f05780ff16266f1f43ce6f3099290a5ebf5ae59684c5; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
193.203.234.216200 OK 1.2 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 770e2371beff574acd7d05d11fc4b796
2e9ffc43ed0d0127207fc26184d75775371b3c69
a6056763e4056b9e6848ac140c4aae062cbb4a7325bc09e7cb5ed3d48f76550b
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4ca"
Accept-Ranges: bytes
Content-Length: 1226
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0bb1cff2836388071c5df3861e1ec4cca375c05e68661a388cf3b96185f50aec3ca22baa32aff28c1378e59e84814473; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 487d8aca55607687e0acd496212af3ce
60c80f858d63027ae29a33539899c7f25aade8e1
7693cdc4c77cac73213ef7e99eec0bdf6d80c4c7173f57a40402d90c4a8ccbe2
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6eb"
Accept-Ranges: bytes
Content-Length: 1771
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba309f9fb0663f9766ec021506b5ecb3e9c46f2e48c4b4fef9108ee9e8ab107b3f38433f08a71adbfb02f201836d3c4bd; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2248a12a6cc384fa88034706b81867ab
62c7769e2265dfc8713670a76445df3f2f29c64a
3e2ae7a3987fdbf96e531f1f84dcee710e293f1139b46afd544030296012a136
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "674"
Accept-Ranges: bytes
Content-Length: 1652
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b239a6f42a8b53d2f9377d15cebbc482ece985865d6a82c1668f1fbe1b808f583546f542f3ba18bf272c1f5ba0a429205; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrows.png
193.203.234.216200 OK 528 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrows.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash f844b407ff44c6666d38477ae7dff5db
ea52a6b99560e25cd531c06ada26b76ccee59182
354a16c92816350830076c1f625525d9460ff1269cb3b8766592540d5ad28ba8
GET /content/dam/vetrina/design/ico/arrows.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "210"
Accept-Ranges: bytes
Content-Length: 528
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0fe9dc55498da2ac659f300ca98d97661bfd5e7366eb2f83a0736c2043e686a5a3e00eca96fdf8cc5d4bae8a5a4826bd; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide.png
193.203.234.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 37 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 04075b9c724604b649a398fd38b85b45
0ffd0f9d6e2b336b835866d9db4193db665af9d3
366de85e50aa042f34ef304b5195d06a87dcc81107e0a5ac87d997d35d95b275
GET /etc/designs/vetrina/images/acc-hide.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "557"
Accept-Ranges: bytes
Content-Length: 1367
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b480740d505bddefab81b2d65e8b0178c7ffb13945250e32005bc54c1c661bd857ee05a85f46aa7c420b7fdc173c3b68c; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-isp-footer.png
193.203.234.216200 OK 6.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-isp-footer.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 232 x 29, 8-bit/color RGB, non-interlaced\012- data
Hash ef01da585f296c6d8e232268cc000390
74bff78003ad10f9d52a089f6bcad4069dda8047
d9561fa4d3be12499d6736cc0781352340f9a9b209c977ccc233ac737d2c9e4d
GET /content/dam/vetrina/design/loghi/logo-isp-footer.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1786"
Accept-Ranges: bytes
Content-Length: 6022
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bcee3003e90ae086038397bcd211e26a71dbaa0d94f9decc934afb8e91e448488140f3690640a73cfac3f62a32c2e64fb; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 644 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Hash ae89ca5fcf0d8db893cf83787ea009b5
737ebb3fac088658015727186417a8b041215dc4
dbd77489d7f9abb7031d7f392e25215ee2a5f3d29598417449c9e7fea37a3933
GET /ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/trasparenza.png
193.203.234.216200 OK 4.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/trasparenza.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 107 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash eecd73363f285a2669afb7d9809e8853
d25dce286104c621e3e3f41953a3b67b3abf51fd
09c850d89f41e9c808d6bd12871bcfc7e6f7d76cd1f7f959a5d79ffb800f8de2
GET /content/dam/vetrina/design/loghi/trasparenza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "133f"
Accept-Ranges: bytes
Content-Length: 4927
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6eeaec297089008f2df259fb94b13c4be8bd697f6e10185fc5bd18f190a13f14e6a8907215cca4bf3f67c4388d61db05; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
193.203.234.216200 OK 11 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 344 x 42, 8-bit/color RGB, interlaced\012- data
Hash 1bdff8a43af86e37593537e037e36c26
067557b4785a26539cbea69d8aca86dd8f0f8efd
10ca81e1589cc3b4b1d18a25ee6acf121970effa02449deb4beb17a880af41fd
GET /content/dam/vetrina/design/loghi/logo-footer.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c84"
Accept-Ranges: bytes
Content-Length: 11396
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2023432403d27da7cbea4d15c32518767a3182e243b00158c9956f52afb92a2270aa0b7c7fd5ad9868f1f7618f4a72c5; Path=/
app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 15 kB URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Hash 22479723b720be5900ef10334953ad87
420e13ffff1d53210b412f6d922c3f9bcd73f80c
842cf925d06c34ae3eb36d0a7cf377543aecd92cc06db5798246553693ab02bf
GET /ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 1.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Hash 0dd4071acd2ad22d44a0a8a766624ae4
2970c30edfbf8ef67bdcb25f6185821a376a7be0
fee21b2a0f0d1e9d642c9df7084bb375c3436b98bc5569f8ad97e7ac6dd9c4e2
GET /ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
193.203.234.216200 OK 2.5 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8bfcfb986c4de70ce6ec602168d856fa
cc7bc984c5506dd079a5c6358cb36cd73f0e0167
1aec5219cdcd75f87dfe65e36a8d4b860ac03b5573e6c9a2739b119e5defe63e
GET /etc/designs/vetrina/images/acc-show-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "9e9"
Accept-Ranges: bytes
Content-Length: 2537
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b13e14f791cb9181f3c2e65597c441c1a697dcf63d24b64c2424e33c956cd0ffceea389a8a7ba93250881632be82620c6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
193.203.234.216200 OK 661 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 1925984e52c6f2ec12ea89c78a0f89fa
30d2e4965e0560ae82182806d780bacd5d243743
5de37a1fe078804b30beff475e96731b604de1d4487b207f12821acb1fb7e75a
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "295"
Accept-Ranges: bytes
Content-Length: 661
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b98e9d6e277268c353df759bee247c9feddbfd6081ab76c392865958e3f2728a627a4b15df388fe8c9da6e4bb295a33de; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 36 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 472728754be887d0048b6481486a9b9e
b06067365beb2540cc75486681cd8dd8296c4943
900bf203d7c5c73d516b7b2c9a48c2dbe126ee6afc7658e6b6f1ea1cc25b3035
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69f"
Accept-Ranges: bytes
Content-Length: 1695
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b89ce1831b0bcc2992325dd581e97e6ba152826b53911d0078b5fd8027547f56008d83422cc2e5a0303e109d3d784b207; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
193.203.234.216200 OK 596 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c7d2c21bd468f05bfdabb2e0b2238b3c
46e8967dc3ee2cd90e0e4b627b7b9fc96e8b2288
718107e6d810e9b67562f6a863033f4d10a36a4f64593dd01312aff95bc7ea16
GET /content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "254"
Accept-Ranges: bytes
Content-Length: 596
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7dced3b37b2c969830b5ec110b000c91308a18f13ec7f46c6750fc55d7d1ccebc52a2738f4f504d1e311dbf470c90adb; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
193.203.234.216200 OK 511 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash f244d24a063a46f86edac372b073b1e8
edb5dbea8d380e9b3f4f53c59afc072b19ac9dbb
2eb1d09976e9f10b9dc5c3dfe828a17e5b1d444e43441a1aeca185d287dd6abe
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ff"
Accept-Ranges: bytes
Content-Length: 511
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bd0094ac34604447034673449d86015905896a8e1dc59f5c923557f517b983db9ec397337f9b0e2f702ccb484059d47b9; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
193.203.234.216200 OK 256 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 201953b73ed38c675e4250642c1711cb
1c7095ba00420e53b8860a049e0086124143bfcb
53ada21076c9e67920d7bac98dbd0289439178d32fae68ac3e166dfb24c202ee
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "100"
Accept-Ranges: bytes
Content-Length: 256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b742a5101dc59c05e3b2ca8ef3b58f02ad60d039fb39e70e497a71a7d60deff85fffa3bc7b80f5a89e8a010432f668861; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
193.203.234.216200 OK 385 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash b0728c9ff3887010e1e0418b0481528c
a55efdf86f54838927b4a33e0f27cecade2e1240
b60ec7c2b42ee03cbcf0f85a83a85c8e1ad5eccb900c13dabd2ef9e197e95217
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "181"
Accept-Ranges: bytes
Content-Length: 385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b3a0d12c4c637f953080a2ab859b14aeb392e51fe138de0a3dd9616039bdd8921e40e17dffba86eaff691865772132f6b; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
193.203.234.216200 OK 595 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c5a80521672d1d8362557812443d6252
56d0d34b06d98fadd8e8cb7a67fa6df0c29b55b9
a9923e07e656afe78af4f2d835ece2b10b63f578b8f010d2a7e7194b997a1d2b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "253"
Accept-Ranges: bytes
Content-Length: 595
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bd36240e50771682eb3b70bb72350e43b0be2957efc4518606fdc53426515ce146e8dd9dae982d2420f3a7dc7e521a51b; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 44464729720604e1072d5e7acc4c822c
fd96540e38540ca00a78eaa883d591015682ec47
84fa5701367eade39300241ea5510a22b1be8597a9389245581af99f82e1d5c4
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "682"
Accept-Ranges: bytes
Content-Length: 1666
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b49456c9d82da43bfebd0d5e5f98b62194b280a1214e38214f534acdab5d0d57d7fab3fc2b1cce27d564573dd3d78b59e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff
193.203.234.216200 OK 19 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Web Open Font Format, TrueType, length 18668, version 1.1\012- data
Hash a7622f60c56ddd5301549a786b54e6e6
d55574524345932db3968c675e1aea08c68a456f
6e8a28a0638c920e5b76177e5f03ba94fcdedd3e3ecd347c333d82876b51c9c0
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "48ec"
Accept-Ranges: bytes
Content-Length: 18668
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-woff
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b42ec97afce340fee1c332d95e4ea75bc335e680bd4888701cc98511466be3ddc400d593e6ace6c0237868d788a2ff253; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f93282ad9dad88323dd9a5ce3ed16938
10214afe74e2828343fd5fe9705b3c633eb860e2
ce862c0e134141bbbb38445196f43432d2b0440dcbb1d544d09f10b73d83a1f6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6bc"
Accept-Ranges: bytes
Content-Length: 1724
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b92dd2c4c54650e579979cd1d9501dd7bd2202fa9bcf60d9897ca971be7f01545c99e3ddc9c567d7b3b32e319345211c0; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 78d2c46ff3dbed457d744a59aa80eb30
3bc15b183660a9d87604127163c24d5a637c4f80
38539e3cf9b3f454c141febf43ede597b2fd9bae495ad4d416dfa09ac53cc201
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6dd"
Accept-Ranges: bytes
Content-Length: 1757
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bffe190d3550c6a0a98f66ad69c75449f67784b0736bb784862218487eaf3baf9bace9e4cb6eb61df0e091e2c896689cb; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
193.203.234.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f8b1df6f62bc6ef7983f994b39650e5e
b47e2869ad706b489b950e12b29ac585f0a6ffeb
3fe4f6784d9d9dbe5213e7cbfe3dd7c2112a287aa8b60e4ad7371d7dd9caaa9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "68c"
Accept-Ranges: bytes
Content-Length: 1676
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b04568d96f7d07e03b297ab1a0b4a62028c11e1caf2b49ef176d98609c7707c2650500ffc52df53852bb0c2e238ab6d4f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 30, 8-bit/color RGBA, interlaced\012- data
Hash e14f7c0b186112c42a144cf0114614d1
b721bbca276dd3a028ac9ecf84122233de7640ae
cf9b112e70bcd1e0df433fccd8947546350ed57e1ac5d53bab5df0b7507ed133
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "728"
Accept-Ranges: bytes
Content-Length: 1832
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7448621517051dcea6582e39f244f08f1ffd3aeeedbdf5819c8ae9ea1e9b0f4ab49c10e5e8e10b64686dbbc1af648a20; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d8bcb2ee2f36ac0d27115b9abe5f5506
56fbe74451e52685a81f9c9fc9bfcef1e9a0761f
cec35acf6c690be6a9be0a3e2cfc177cda979be9cd8282837e96357a8d1b7c9a
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6ec"
Accept-Ranges: bytes
Content-Length: 1772
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5aaeca698c9009e78ffe7cbb54bfc96002edabc650c6081dc4e11112b61c7f46df9741fe2aa0e57b3480b31f4ca3c90f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
193.203.234.216200 OK 2.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 39f9ae177d2f0ec52dc3f84563a3516e
060444b971e82655e3004d2a2143294d3d7b9fd2
cf41f546ab4e7d8421dee66ccdeb8025c4c43ac91eca416f6bcd99d9ae476df3
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "951"
Accept-Ranges: bytes
Content-Length: 2385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b4594ad075e93455e4988a2a11d67d92209bfba430cc4d0578c10b8da239090196f4029c64cea8d51b4a45ae82a75386e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Semibold.ttf
193.203.234.216200 OK 28 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Semibold.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Hash 8f7128145a3c2b83923552a328df7cdc
ba7725a9de61b3a33273bfec3d5acf98aeba13f1
23fea0a987694a487d5e053345c610b6c2b0cee5943e6c54dffa8c4d3b8c2a27
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Semibold.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6dc4"
Accept-Ranges: bytes
Content-Length: 28100
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b6e2bbc9d12824b0b5ba8ea8bc12bda29ecb820c3607800120223d1bcdd03beee7f0fd209407944486a632fa14f6352f1; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
193.203.234.216200 OK 2.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 180 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 01f230e9d9d29134e314b32575a0264b
235956a5f7390c5064577ebb30e6469ef5f547bc
331a40833344afe8c42726440e3fd617946212fe0b2e830a6aa32f3b1a596d46
GET /content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "b33"
Accept-Ranges: bytes
Content-Length: 2867
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b8dc791d738136d63bd07959ca717614927048e6a3ed19b532c84834f440284b439eddb6cdc15e2891e2606f47c13de6c; Path=/
app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
217.160.0.102404 Not Found 2.9 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
IP 217.160.0.102:0
Hash 087c95e756b9edb43054130b6fb9487c
c1d89bba70ca8087ce96d942852829d1f1a13327
107e0ba881c9444f0252f125299bcfbacd1ef73188d5ef6e4933bf7198ec713a
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ispLoginHelper.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
217.160.0.102404 Not Found 1.9 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
IP 217.160.0.102:0
Hash 41d3631b31c3841100dcb24e1bf623f6
3f586ba537240e44f9467b3b47d46565595211a4
b89e2bae1a96fee6e2056208eba0f4ba0dd4392068dae70e3e2ae0e5717be20b
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/cryptoJSforISP.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
217.160.0.102404 Not Found 7.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
IP 217.160.0.102:0
Hash b35fe6f9fbfe2f0a5d11e9817e5719c8
c274d78a77a3c7599a4fe3339ed325c764fdc29d
3721181aa1e35a83754dd5809c48aa720ee3f50d3195aa9af33786c78f799396
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-youtube.png
193.203.234.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-youtube.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 30x30, components 3\012- data
Hash 61c25ea9855ecf15e827129facb1a6aa
c1c80aba18672b7dd46bfc2b5dea62bc4b7a06ca
6a471ccdefd7b51f03ad674ef48a005a7acc76d159d3b718eab59ce83e0489bb
GET /content/dam/vetrina/design/ico/Social/footer/ico-youtube.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "780"
Accept-Ranges: bytes
Content-Length: 1920
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0ba3cd773e5d064787d38e2bae0d7c34b52a16241b2e5b4b57b7c8b8bd4d972995dbfe67490e96102f99215ece0aee58; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash fe2e33b806798c4940ec29050769d7be
7f84f4a5f3f90f36bcbe8037cb41bded19309286
17b4afca46166fc395e83752554c9e737206f172f9ea7c155cb936d7af9ef9fc
GET /content/dam/vetrina/design/ico/Social/footer/ico-facebook.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "638"
Accept-Ranges: bytes
Content-Length: 1592
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b5cc24d6e9d74a54d8afdc1628777e55b7ac38aefa18e8737c102305d078e5d3d6c4bf215d7d50793885d3bef1cc1cf8a; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
217.160.0.102404 Not Found 28 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
IP 217.160.0.102:0
Hash 45706990dbdc6065948fd4696094e0cd
f03d4e4bce18307af4c110a6f698ff61c47bfe9b
00e6fed7ccbbf9acb6d5d38a66b5b4cf74aa01a543f651dda16cbb1fce2fbfd2
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/mmConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
193.203.234.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash af146dd6d182c64128186c8d713e1583
6163d0369057326387125886b07bc0f1be3d97e9
d86ee6fb558c2c457946b4ddde8c8a49e964023b9b7685553e76c6ef29363793
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "562"
Accept-Ranges: bytes
Content-Length: 1378
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7f7bd9f6279d75f51724cf576f34bddefa2b1f39043f223c4efba380afd52a7b53165d7ab0acb369e7e710f07229c886; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 5eb1f62866c9c443dbf14812499f54cd
ec00a0c80f301e5dd2a86c5c7543aa0b7143ca9e
04f0e091c3221e44e7c509914c108ff7a376bca1bddfb0ff6e906fe9a6b883fb
GET /content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "656"
Accept-Ranges: bytes
Content-Length: 1622
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b01e8dd940099f8872658d1b8aad457f3a5fab9cfc1c31a67e170e983066b3cf92a54116f9e1a125872651e90e4ffbae8; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
193.203.234.216200 OK 3.2 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 6396d65afc34a7989461099bb0072e99
d76fbd4a1d70a6fe1e7d6f34ee5ba61ed8e3baa0
173f71531eaa3fefa888c0c92cfac551e7b27007029ab36a127e5f3232510b8a
GET /etc/designs/vetrina/images/acc-hide-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c8e"
Accept-Ranges: bytes
Content-Length: 3214
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc42053a6b64c68cc3775ce39e960c6fa00b99ce34caea9336764dadd74a01b74674102750d6c5faec6fb3a2f8a774d7a; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-twitter.png
193.203.234.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-twitter.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash d0e5a30ed93355d29a7225558b54c1e2
4e14886bfd8554b035572c135802671b1b002a1e
efec1f0b86601e36eaf074ca433412258f5bdd485c5da1b0c18001b24e6fdd65
GET /content/dam/vetrina/design/ico/Social/footer/ico-twitter.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "654"
Accept-Ranges: bytes
Content-Length: 1620
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b88ced424e13b8bcfc8c7de08002832c31164a07f1e9810a1e9adb5f3ac6472a317e742ea5ae73a816f8b03f06daf3152; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
193.203.234.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 08ccd1cb56e41a7435056ed7c373578f
728f0cd5a5351a2cf82a8d54795fc6af9f44f68b
73c183f088781fc33e3c0e0586b10722ad09cd10c706ea28cbe7284eeb1e6e42
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "590"
Accept-Ranges: bytes
Content-Length: 1424
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b401b776929350db6188eaa63ed62daa6077a4fcbe77fc1c71534f26ca70b561b7f3c69d922b8d751b14275fa5c94bdd5; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 523 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Hash 4824be9c9548c3a0ffa98bf6b5c10764
731d6cee31556ab1768847bee5501614c1574d69
91a9e77c81acbdf2747ef754519daea09fdee9f9a48f401a22c3c69e225aeafe
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/
217.160.0.102200 OK 19 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/
IP 217.160.0.102:0
Hash 90bc09add62cd1dedf1e39eea3eaa7ad
c09679fa18ede0aaeec7a2c171134c38810cd965
7fea0b9a6a2c83a5571247422d1033cb88191b4e6a6ff0e32b7710259770b591
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rb-NFzuOBQEOMHfs7L68ZBeBH_JMqKYfJhxWs4eNYq35L8duYylQdg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:07:34 GMT
age: 267
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:40:08 GMT
age: 66713
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae2e2986caa15a90b615147f229b51ec
c6dfd277cdbd057472e6df6ad1a200f50684d442
ec3799922c38ee6394601744ff4b2c405ee44c4718a2b90c104134657f8b480b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9015
x-amzn-requestid: eb4599b5-e88a-47cd-8d1b-5839c4f7593e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnbGLToAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852962-67476fac77c8d1ee36f89ecc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 09Pb9RMyAoRWXYfw5mxwtpl6fnHwlxDJryR4c-F3rurGKUgo-HYUOg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:42:03 GMT
age: 16198
etag: "c6dfd277cdbd057472e6df6ad1a200f50684d442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
193.203.234.216200 OK 681 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash cb988be4f45959a69e3546743355a8cc
802ff7cde193725a5195cb240f63f81cb77979b5
52e66c1b321087253378e5b6dfa5d525a614cdbb3c9973d5cf159ac0d32ecb3f
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2a9"
Accept-Ranges: bytes
Content-Length: 681
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bcd1555f09012a48a8ae959d2e95c91b547e148c63aa51cadc47f2a83dab2c1828fc41b8965d8de512fe120ac48910dd0; Path=/
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 81603
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: awi49MMMlK51wHPbyBrBkL4N4g9lX3ea40LxyrYbYxe_FsfqelTcTQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:57:05 GMT
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
age: 15296
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
193.203.234.216200 OK 798 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cd798ec622a5777f4ff2d6ab69ed5fb4
d2a5eb4ad8511ad8be2840a10d2fa589f53fbd39
478c49aa9a07383978500bc901b5650a76489d4077385bbb0fe2bda16ee69519
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "31e"
Accept-Ranges: bytes
Content-Length: 798
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7db20ea84723100d09f0bb67b357791a6c2db3f112b7b3e8d9969141c45a334647e97241eec52ceb7c381150ce9c43f0; Path=/
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XC26NJ0PkNhOsuvMPTd5TlY-oDOGfGoNxzzMANQRlyBWt1XZW_gUfA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:42:03 GMT
age: 16198
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
193.203.234.216200 OK 711 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 13fb65bbf6b71f371734ffcb77eee65c
86c35972ce92ad5e9d2672600e953df51bf6b923
a5e253bb0c4b8566cb8ef1cb425b4b24e00853927a468e8a626ca4da1be73312
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c7"
Accept-Ranges: bytes
Content-Length: 711
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bebbc9695dc784cafc0aeecee1d221e026be83b14595f2f2fcbc2e24af16124fc42bf41c8a9629a963b04946d12b6b098; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
193.203.234.216200 OK 900 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash be00ed5d688cc89e1ed88c5d19b6112a
5584f034996cf2f921fedff53d0378212d52eb01
c14456513f21407b2fb73f0a5e44ba8b93d868c084dcf27bc7b2cb08d750494d
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "384"
Accept-Ranges: bytes
Content-Length: 900
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bbb6a66b1b11672ae28225808c445d27ec5481eb616ac4759bc06fabce3eaa264a07202d271e6c2336e277682edb5b109; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
193.203.234.216200 OK 417 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash fcb17cf1047ba4170838c3b99395a848
244c2c2f21d879c4e944e66180100d951c177f92
8a3b5c38fe7253539f893b989c0973c8f8e9fffd11d470e258773e389919c5e6
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1a1"
Accept-Ranges: bytes
Content-Length: 417
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b0e8c852df8f9ecb41acd9aa90a314390534e6d839f5c35cf2852120ccde9d1805fdae42b2692eccffcbe5f50dcba15d1; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
193.203.234.216200 OK 2.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 39 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 765895c7c36d25b3e9fab1fbbd0e9141
eb18fc417926909986d91ce68d601dc3ce93669d
928b0b6e08c035315069aa10d57aa64a61ef893dae42e33fee7c8d40dc2c1d04
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "828"
Accept-Ranges: bytes
Content-Length: 2088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bfb2a102d6e48e7290e4d61f2e09d57f2b3503fdad03f612a7abb72ec8142bc1392c9f646f9d9b3ec18ae210dcd3da7dd; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
193.203.234.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, interlaced\012- data
Hash 96162c4dab3c7028437f8290c93e0fd9
9ea2a567a95ecce36a6760e5ae77138ef86d922e
dce4673512de52fd393e1eacc72ff22313515d00603a353f3df4383d13959a68
GET /content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6d6"
Accept-Ranges: bytes
Content-Length: 1750
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bb8fd8153b137ebda50ccbb8170135fcf5f926b2db8fd88e6581ed6fa424a131182d9824b7e950418efa4035e3d578710; Path=/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7214
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 02:12:02 GMT
Connection: keep-alive
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
193.203.234.216200 OK 930 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8786b476163b5626790111201de7a105
f432a249eac59b4a057f0ab2a34cfa99adc898c6
7a2b1b4bff76a3cb518c06ef6abbd483c60e5b2d6377020a6bf1198134ebb8ab
GET /content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3a2"
Accept-Ranges: bytes
Content-Length: 930
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc93cdb4ca4b4af4ec69a44344867da6922bbc4a88bfbddc7394e408673a5fbea0c9bc443f27faa921f495e9795d1e815; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
193.203.234.216200 OK 702 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ecbc8cec38438e1f4883c26b97eb7e2
0c6d07f1cff42c4546455ec766259e85339bf3b8
d324d101d0340ef2a01fabab8d52815a08a51c0cfab63daf120b3db017b7b0e7
GET /content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2be"
Accept-Ranges: bytes
Content-Length: 702
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b73f2dcd025f08c2262efac39917cad9235ae5a899c555b6c4a4a983daadc1a6b50b453c09019907d6a735a8059a41732; Path=/; Secure; HTTPOnly
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7214
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 02:12:02 GMT
Connection: keep-alive
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
193.203.234.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash e386b810ca1b33a6e67d98b0e42324e7
e11d099289ef780c5770b532dd709c52fe64d11a
3b579671f0f852fb817840c791e1375fce7d12fe48589c41539e0811365020ba
GET /content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ff"
Accept-Ranges: bytes
Content-Length: 1023
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b2c8a6864306be950fa6a88ebd17cd09db626039cc929414a238703f5ab2e59748babda6968b6c1852a7ddc9b273b5207; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
193.203.234.216200 OK 780 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 25fc69e5b31244dd631227402ffd0f0a
f3ed167cbcaea621681f96214c5aab84c3cf6e9e
319ac41473da7a19b6f87692f3cdc4822a9b5283df3638fe88a38aa75b018f0b
GET /content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30c"
Accept-Ranges: bytes
Content-Length: 780
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b78ffabc726a13131d7e74991a4aa926b8f336a6519bd94c76f5ceb0f8a57f0e805be03289e1266334549518e53ca1bdd; Path=/
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
193.203.234.216200 OK 403 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash d2cde8858cd32b0dc6c51330f8d70a0b
876f950299f7a0e760dbf8940fab54c095424427
70a69e8967b498671cce7e6422fb2bbbaa83a35451a63e958a7e63f157db9e56
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "193"
Accept-Ranges: bytes
Content-Length: 403
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b06f03eccc4148488760ec09eda1513975fbcaf5db541f79b7ef0d366cb2e184ffc43439dcaa8dfb2cfc3c3e77777bd92; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
193.203.234.216200 OK 769 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e46bd471bd30126c3da601d9d94b9655
81bfcc60c7ac3f6324d676ca948c25b9b7d8730d
de06f4ebd0f89a97e88aaf43f277bfe3fd14727e9d57370c0b65faaf7940f656
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "301"
Accept-Ranges: bytes
Content-Length: 769
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b06fa4e8792432c9eede025b76408f35d3d9aaff76272d63c33990a6ef3a7719bc1c73895f75014bbd541ec6d9b38444d; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
193.203.234.216200 OK 898 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fe49c46bd70c432b1cc5fa16b2eeda0
d136d4aeba48d32fc1e83110bd7d4b0d73813785
d4e7da2a85fd1a67b9aa5a335b2593cd726856733129fc770edd43ad69bfb822
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "382"
Accept-Ranges: bytes
Content-Length: 898
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757beb07b6a0c7a329ef7b33ba7e19344fa720cb45f445f11bf61416bf302bbbc9565984504385b84d31f02e26d3ff8dccb2; Path=/
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
193.203.234.216200 OK 2.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash 51c277d3dc61b5e328ce22b0788f239c
616527e6ac2cfde61d21e58d2eefb5edff44407c
19642c4f1cd0daa88e25d98a184cffee87c5f4011d08c34e51bb59074cf831fc
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "928"
Accept-Ranges: bytes
Content-Length: 2344
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bec410913e06a3fc3d70250f25ede9954f1d74fe9b46015228bbc4a3dddc73d96c14f27f829633cd9addd588a3a414175; Path=/
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ArchSecurityManager.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
IP 217.160.0.102:0
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
IP 217.160.0.102:0
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
GET /ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginPageController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/sha1.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/moduleManagerSso.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/app.js(1).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/archConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
193.203.234.216301 Moved Permanently 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Location: /it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/fondo-pensione-aperto-il-mio-domani-adesioni-individuali.html
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b77f6a44c1770dad86518b5698611a0db0b7379e63bbfbcd8043cb55cd8c64e7a81e37d215b3d1ccf1d018944bfaf3813; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/content/dam/vetrina/design/img/LandingPage/anti-phishing/box-frode-sms-mobile.jpg
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/content/dam/vetrina/design/img/LandingPage/anti-phishing/box-frode-sms-mobile.jpg
IP 217.160.0.102:0
GET /content/dam/vetrina/design/img/LandingPage/anti-phishing/box-frode-sms-mobile.jpg HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
GET /ib/public/login/js/arch/coreLibs.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/mmConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/NdceSDK.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757ba19699ed9f5239df1e55d910654508ca587a5efe254d2e0d91f9a142a9060176bba4ec0cbbdbdbb4498fff1c0ca2da60; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/main_app.js(3).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginPageController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/js/sec/assets/theme//container-controllers.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/jquery-2.1.4.min.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /ib/public/login/fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "35fec"
Accept-Ranges: bytes
Content-Length: 221164
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Cache-Control: no-cache
Keep-Alive: timeout=17, max=98
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bdef5cb9f077cc3ddba02bafdc911628a0cf216da145d68449ede6800a8ed6b10870976e3ddfc86b64472336fb26d8219; Path=/
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/cryptoJSforISP.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b7fb0ad82769fd204f214f920ff57bcc8bafdc3a1f50f6fa5643545eb55ce4c5aaf6f7a88f128b67e53bba1d1ad9dbd99; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
GET /ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/container-controllers.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,600,300
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,600,300
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,600,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 02:12:00 GMT
date: Tue, 29 Nov 2022 02:12:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
IP 217.160.0.102:0
GET /ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/sec/assets/pages/loginpage/controller/LoginPageController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
193.203.234.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 02:12:02 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b50c458eb4f5c7ebb4acbcc26e2988c3dc655865abe5485c42274aad10e74f6a7ee08de2f1f26896b806840d9dc8e3eab; Path=/
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.ttf
193.203.234.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.ttf
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /ib/public/login/fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "350bc"
Accept-Ranges: bytes
Content-Length: 217276
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Cache-Control: no-cache
Keep-Alive: timeout=17, max=99
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757b101427974a2bb97cb8346038f18d6e2468b0170f1a73a1a37e302044716965e9ad457e1c8d34554e1f1c31fe46e2abea; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
193.203.234.216301 Moved Permanently 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
IP 193.203.234.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 02:12:01 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Location: /it/persone-e-famiglie.html
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=011353757bc4d51aff714dfa474fb4e6f8636f5ffc9c8fac9121485bc85aa442729eaf92bcb45472ef688ba3ce9038c072edb715aa; Path=/
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:06 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/js/sec/services/ispLoginHelper.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/coreLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ArchSecurityManager.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/qrcode.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ispLoginHelper.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
IP 217.160.0.102:0
Analyzer Verdict Alert openphish Intesa Sanpaolo
GET /s/account/service/login.php?&second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:11:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/moduleManagerSso.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:01 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 02:12:04 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?&second_time=0
Connection: keep-alive
Cookie: PHPSESSID=f90869de20d3426d6c951f4980b45469
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Tue, 29 Nov 2022 02:12:00 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2