app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
217.160.0.102302 Moved Temporarily 138 B URL HTTP/1.1 app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/login.php?second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 28 Nov 2022 20:54:56 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Expires: Mon, 28 Nov 2022 21:14:56 GMT
Cache-Control: max-age=1200
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8107
Expires: Mon, 28 Nov 2022 23:10:03 GMT
Date: Mon, 28 Nov 2022 20:54:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4754
Cache-Control: max-age=140139
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:54:56 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:50:35 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2323
Expires: Mon, 28 Nov 2022 21:33:39 GMT
Date: Mon, 28 Nov 2022 20:54:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 20:17:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2227
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JqoTGXoErpgP4GyoUaEExoPMEyDX4Ept1j9+ASWbvY9eVzASiGMqtXxV8UNj951J0vVQnR1N6QM=
x-amz-request-id: 7B8KPHDQ0YWFJV6E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 20:42:13 GMT
age: 763
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 20:54:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 9aa91476cd8fac2d74213608914faafc
959251c7f5de7f3efe6c7d60ebf1029acd3ed85e
b137a80f2ff5e77b6fa1f4e0f2cfd145e5e55f5691733c39a0c02db6c8eae5c6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:42:57 GMT
ETag: "959251c7f5de7f3efe6c7d60ebf1029acd3ed85e"
Last-Modified: Mon, 28 Nov 2022 18:42:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771600713c8ab517-OSL
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 9aa91476cd8fac2d74213608914faafc
959251c7f5de7f3efe6c7d60ebf1029acd3ed85e
b137a80f2ff5e77b6fa1f4e0f2cfd145e5e55f5691733c39a0c02db6c8eae5c6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:42:57 GMT
ETag: "959251c7f5de7f3efe6c7d60ebf1029acd3ed85e"
Last-Modified: Mon, 28 Nov 2022 18:42:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77160071293fb503-OSL
app-intes-asaopaolo-it.com/s/account/service/1
217.160.0.102301 Moved Permanently 262 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/1
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash abc841525bb5ebd2144adfe1e01126d7
5142d28a0dc6fe3ee97ab5be3107298340c0da0a
60647365b418febd5c6e2a92e46aa605ec5a99bd07ad099a0ab1d3921872ec0c
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
content-length: 262
location: https://app-intes-asaopaolo-it.com/s/account/service/.
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 9aa91476cd8fac2d74213608914faafc
959251c7f5de7f3efe6c7d60ebf1029acd3ed85e
b137a80f2ff5e77b6fa1f4e0f2cfd145e5e55f5691733c39a0c02db6c8eae5c6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:42:57 GMT
ETag: "959251c7f5de7f3efe6c7d60ebf1029acd3ed85e"
Last-Modified: Mon, 28 Nov 2022 18:42:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771600714957b503-OSL
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 9aa91476cd8fac2d74213608914faafc
959251c7f5de7f3efe6c7d60ebf1029acd3ed85e
b137a80f2ff5e77b6fa1f4e0f2cfd145e5e55f5691733c39a0c02db6c8eae5c6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:42:57 GMT
ETag: "959251c7f5de7f3efe6c7d60ebf1029acd3ed85e"
Last-Modified: Mon, 28 Nov 2022 18:42:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771600714cdbb517-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash bb09e2ec76a2c52818ce8b7292f80b5c
183e8ece0b8b76b30715769d038be19b8b96efb3
f8d8b299242d290fe20c8a244dc9502bafb01c4c1aad10f76b9e81ca4a1c02d9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:16:44 GMT
ETag: "183e8ece0b8b76b30715769d038be19b8b96efb3"
Last-Modified: Mon, 28 Nov 2022 18:16:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3599
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771600719d5fb517-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash bb09e2ec76a2c52818ce8b7292f80b5c
183e8ece0b8b76b30715769d038be19b8b96efb3
f8d8b299242d290fe20c8a244dc9502bafb01c4c1aad10f76b9e81ca4a1c02d9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:16:44 GMT
ETag: "183e8ece0b8b76b30715769d038be19b8b96efb3"
Last-Modified: Mon, 28 Nov 2022 18:16:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3599
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77160071ac09b4ff-OSL
ocsp2.globalsign.com/rootr3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.20.226:0
Hash 9aa91476cd8fac2d74213608914faafc
959251c7f5de7f3efe6c7d60ebf1029acd3ed85e
b137a80f2ff5e77b6fa1f4e0f2cfd145e5e55f5691733c39a0c02db6c8eae5c6
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1434
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:42:57 GMT
ETag: "959251c7f5de7f3efe6c7d60ebf1029acd3ed85e"
Last-Modified: Mon, 28 Nov 2022 18:42:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7716007189b6b503-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash bb09e2ec76a2c52818ce8b7292f80b5c
183e8ece0b8b76b30715769d038be19b8b96efb3
f8d8b299242d290fe20c8a244dc9502bafb01c4c1aad10f76b9e81ca4a1c02d9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:16:44 GMT
ETag: "183e8ece0b8b76b30715769d038be19b8b96efb3"
Last-Modified: Mon, 28 Nov 2022 18:16:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3599
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77160071af92b518-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.20.226:0
Hash bb09e2ec76a2c52818ce8b7292f80b5c
183e8ece0b8b76b30715769d038be19b8b96efb3
f8d8b299242d290fe20c8a244dc9502bafb01c4c1aad10f76b9e81ca4a1c02d9
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Fri, 02 Dec 2022 18:16:44 GMT
ETag: "183e8ece0b8b76b30715769d038be19b8b96efb3"
Last-Modified: Mon, 28 Nov 2022 18:16:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3599
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77160071ad73b517-OSL
app-intes-asaopaolo-it.com/s/account/service/res/arr.js
217.160.0.102200 OK 228 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/arr.js
IP 217.160.0.102:0
Hash a01612e293c21d0f11a3a6573423d3c8
b4aa9b544b15e65f1c4978e257e39ae1daa5b59f
688b08514eb55988aee0853a1899240705df42c06e5542532bf2da5bf72a3ec0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/res/arr.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 228
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "e4-5ee394412e6e9"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
193.41.198.216200 OK 17 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (27465)
Hash 813c287cb552d3893880f19f6f1385e3
1d8069a147ca13ca331a949b3b3f3b377ff70106
a36e83b0a321dc743c3e84a8fc60083d1da58690c21e3718cc443b1b3bb17140
GET /ib/public/login/css/ArchIbPublicStyle.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Content-Length: 16997
Keep-Alive: timeout=17, max=59
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dad31b7bdeab7c3706d2771dfbee780de7abb846c2f470a2784edac7565abcd13721dfa67e91e713dddd0170304713b53; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
217.160.0.102404 Not Found 673 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/coreLibs.js.download
IP 217.160.0.102:0
Hash f95ebe8d8547ade164a491b1cb563ad6
1495a0b75d7d769af36cd889a933bbcd655297d5
79aad1b56d4d236fb5d343904a3aa9d73b2f5b2b1227256c8464c33f4c97bfc2
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/coreLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
193.41.198.216200 OK 21 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/guestarea/styles/app.css?v=
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 8053bbd821b737d18e8c686b9084819c
60d314e36de8101a9006e898e23a187bc0389d0f
58ad4a977ac9403bc08ba6bd2c0df7160f76240285f0a8f5e07053b6b83acdb0
GET /ib/public/guestarea/styles/app.css?v= HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: max-age=84600, no-store
Content-Length: 21036
Keep-Alive: timeout=17, max=75
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d781cb863e48bfd0f7a9ee0ab86dd2fc4d26589586be3a66a446252a173ba8d61aecd8f9fda2a70bcc3d9072a45ea8fef; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/res/jq.js
217.160.0.102200 OK 90 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/res/jq.js
IP 217.160.0.102:0
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 3e4bb227fb55271bfe9c9d4a09147bd8
156837f75f6600ccb602b4efcbd393636c33f35e
ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/res/jq.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 89501
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
last-modified: Thu, 24 Nov 2022 15:43:26 GMT
etag: "15d9d-5ee394412f689"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4219
Cache-Control: max-age=134537
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 20:54:57 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:17:14 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
193.41.198.216200 OK 103 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65011)
Size 103 kB (102923 bytes)
Hash 13d142175a1b8ed0fd27b6119843d35b
ee0f47c77adc19366ccb13a4a69d1ffcc904928b
7e2d410906d9cf76d5d8e8b89bf24fbd9a1563d2603259fb17657afe55d5cd20
GET /etc/designs/vetrina/clientlib-all.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c2ba2-gzip"
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0302dc5c9eb0bbcb3c0f63c5562c55f661fb48b7f4a9e78657e3dd847a833494159a69ba38b424b8776942c3b970e380; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
217.160.0.102404 Not Found 172 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/NdceSDK.js.download
IP 217.160.0.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e796f37d7bd470e2eabc2644b62b73af
2c7fa79ac161e6bfbc0b1b55a21ec2ad27c14fee
a82d2ea26e678d94a5b295b0243f250a9be994357d60633feff72d1e90a2b788
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/NdceSDK.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
193.41.198.216200 OK 485 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type ASCII text, with very long lines (65371)
Size 485 kB (485343 bytes)
Hash f4c6107b15cea93853e5386a56c8466c
f18dc3a59d19cefc48f5971c81bba983be10cc8d
11bf3978a97737456ea1ea2ca2bfa58c2be1ccf633c9f6e56ef7b0271670c850
GET /ib/public/login/css/css.css?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:57 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Keep-Alive: timeout=17, max=65
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d095a38b1b81cae6ec529525cc8d9aa4e7fac30ed0954a3c3041ae6aaee559dd4ff0d81cfd26ccc2727312296ff01483e; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png
193.41.198.216200 OK 2.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash 51c277d3dc61b5e328ce22b0788f239c
616527e6ac2cfde61d21e58d2eefb5edff44407c
19642c4f1cd0daa88e25d98a184cffee87c5f4011d08c34e51bb59074cf831fc
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/gestisci-identita-digitale.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "928"
Accept-Ranges: bytes
Content-Length: 2344
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0e6086c85de726cb28b86675eb41e30d772d2015e8cf9f92b4954591c9c38853ae3436bda6abc4aa302fe2edfa8568fd; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
193.41.198.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/flag_eng.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 19 x 10, 8-bit/color RGB, non-interlaced\012- data
Hash 3aadce088b74fd250abcdb82d51ba273
1e9f10dbc5fcd6c98a94659c0344907e0b7b59d6
b9cf5ac56dd524668e1156759674215a9224dcaec961914e0e36c2c0efcb9bc0
GET /content/dam/vetrina/design/ico/flag_eng.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5de"
Accept-Ranges: bytes
Content-Length: 1502
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dac55e736e6671614189c5ea04816dbee976fdd982b39215ee3f2d4b221947362deca67cbf3847d7a3b9e9291e882b78b; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png
193.41.198.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash af036ec44e0d281a9d58be37b109fe8f
cae4073c1bced105a328b2b87fd02beeeb4c05c1
236de5c9852465458a81d5b8222c55813453de939affe0eaf15670a736a918e7
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Famiglia.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "476"
Accept-Ranges: bytes
Content-Length: 1142
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238ddc3840ec8b45821317ea7a0914d7adc8290132642942db30a7c236634fcba7718789849f38b29e8c0586373916392b05; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/sicurezza-digitale.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/sicurezza-digitale.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, interlaced\012- data
Hash 96162c4dab3c7028437f8290c93e0fd9
9ea2a567a95ecce36a6760e5ae77138ef86d922e
dce4673512de52fd393e1eacc72ff22313515d00603a353f3df4383d13959a68
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/sicurezza-digitale.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6d6"
Accept-Ranges: bytes
Content-Length: 1750
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238db3142565466394929199dd5a682c20acb7b342e60db52a1c1997949914ff8df7b2b0ed44e0af590cbf5c077168d6dc36; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png
193.41.198.216200 OK 2.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash ad3949451b7add6c7c6d66aef5577f32
a6fb3bd79e229928b25001a8467cc4e588739a03
b060ed54d87f269da89cd4feaaae9cce19742f05d1e1632a1524dc8ec941c961
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/app_icn.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "96e"
Accept-Ranges: bytes
Content-Length: 2414
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d05a37bae5638f2f38ff0452281a5fafc7e15e0ef2a61e6b06f6ba992983d42ac3ee5df9dc33f858c805ef7ad5a94b63d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 36 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 472728754be887d0048b6481486a9b9e
b06067365beb2540cc75486681cd8dd8296c4943
900bf203d7c5c73d516b7b2c9a48c2dbe126ee6afc7658e6b6f1ea1cc25b3035
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico-vivi-green.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69f"
Accept-Ranges: bytes
Content-Length: 1695
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d2b55c5d8e556569b74ce96807daacffbc90ed5178e33aa3d046ccca6d6f3168733d5321321e79c838f1b7cce4c772e9f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png
193.41.198.216200 OK 920 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash a8bccfda961ecd3be43a441527d31579
71d34a029705df5b71be5dd5f766ef8dd64dc317
0c626ee956da0905e4db04091d5d9ce31f7be197bbe06b61cf075d3d5d1a22b1
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Salute-e-Benessere.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "398"
Accept-Ranges: bytes
Content-Length: 920
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc5f50e283014165dc73e9ca4c8a7024f6ea24dae31c7dfb207cdd49c7cff80a61e999d93b3c362fdce1fc9bd4d36ba00; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
193.41.198.216200 OK 755 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f7970f6b1e84bd08f8ee30808b8f872
6887f512ac33bf4c97274c50f0ba091e86fce92c
9c63089b53ad83c220734210fff43104620cbca67e8b94d906173603cf7a359b
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Casa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2f3"
Accept-Ranges: bytes
Content-Length: 755
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238def72c32907b868ce052487798b91055ff0013c4748cf45340cde940b04487a12140ed89b9335d646b276b0dcdc6c6a44; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
217.160.0.102404 Not Found 1.3 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/cryptoJSforISP.js.download
IP 217.160.0.102:0
Hash f45523b12be98b215e38fa2742a2d057
6b4fbaaaee8c6924f532f535f86d1cc6cc5e2d8d
71c4150fe9a65a96c7328d97524a1289fadd6a5c50f4752cfee568017de0fb97
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/cryptoJSforISP.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png
193.41.198.216200 OK 885 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash af728d2cc97152f3c8dd5c41ed4c211f
cafbb0ab1c2951358239d67dfc2a29f545c5ecf7
c73fbc1f0cd73c288b2aa8acd207220d03662c05995cc24c042232d6e478c140
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Momenti%20della%20vita/Tempo-Libero.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "375"
Accept-Ranges: bytes
Content-Length: 885
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d72d002a577d6481a0d270050b914470e311af2c552b713f65993449aff1b76c9f0bad951ac68f49a1480f9cde7c2af9d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png
193.41.198.216200 OK 287 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ab3808552bc16abc55d567419107656f
56eaeaddf34ca22e138a1508d69627bb40e66183
91a6750fa71fbea8f89e59574bac4dc7cd6e876bcfbd1c7b686d9b0b0fdbc8f1
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-conti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "11f"
Accept-Ranges: bytes
Content-Length: 287
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d2d236736a2c0c3c48b79fcab7675214e51d40522e015a3befe49620ca5ebab2ca490067dee59787c834a6fc877e9b35d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png
193.41.198.216200 OK 167 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 776289406505334eab6ebc26b187c164
87f9b31a036d253d608b93d8a201354ccf837889
9a53840587d6136185d7cb060cd712d59ddc559798f777aa3efd82ca3dc3cd39
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-carte.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "a7"
Accept-Ranges: bytes
Content-Length: 167
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d6d5d3079ac7be79bd0db98fd5809dde34415113d6e1262653d243bfbfd37b6d77ed7df4afba78e3e005276d4ae37788a; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
217.160.0.102404 Not Found 1.0 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/archConf.js.download
IP 217.160.0.102:0
Hash 46a1d5e2beb8e050d37102c804180eed
7c9f99ef5757424d2246b08718be69f72d785002
7309aa55ff8a1f4bfb362d579b81ae6785a586a2678eb9491733c98f9b9c66af
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/archConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 561 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Hash 551c97531ebf87a6fd42e2a5a350deeb
a3d28a4dfe97b16c98d95c42024e83134151e937
fbfaf89cb4b69eaf1b791b2e1010d58b779a9b42430c277d06d6c2f3d912bab9
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
193.41.198.216200 OK 428 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 11e91593a166f018a4aa0916c7b73350
4ba63965fdd76a02b4d036f47c255f09e85ff39a
3e0f818be2f1c0bd47c08c179a0b3197877531fd05fdeeb347dd2d57688a3c78
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ac"
Accept-Ranges: bytes
Content-Length: 428
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d10cac895137a6c91dacdfcbba95bdcd3a3add8a6ebf5d6a093fdc3e0eec2685a400a09fb99402cfb8cd07e3cd51ac1c9; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
193.41.198.216200 OK 846 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 0dabfbc85676aa4244df981d66442787
f5577da5fe1db920fb9297b04141910dba7c71db
c4ad41bff6a989eccf6c69b2ffd07e99db9a3e630abd9767c0127dcda8d48e56
GET /content/dam/vetrina/design/ico/Icone_bianche/icon-pos.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "34e"
Accept-Ranges: bytes
Content-Length: 846
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238df10f5a1a98ad848bc6a80c1a52aa490c0f59529b29ecd0b4b8d5b3e9765ea5d35f43258f017c51ce9445d08b8b817853; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
193.41.198.216200 OK 779 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash afd9f85fac6546c607d1eebc7ef52962
12d55078f098628fbf14e9690da2c29c151230d4
5cd4a1094a5f93e25f2201e50aa13be6656bd407c9fd7c097cfc205481d59259
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-finanziamenti-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30b"
Accept-Ranges: bytes
Content-Length: 779
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238de9f0e8eaf9cc2632155e064c249fa3b4fac44845d591418466ab8422eb95e54305e4cf408973c9d7edac7368cf76ef7f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
193.41.198.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, interlaced\012- data
Hash 9cd78420707a87125d12f9c4975d6b25
bb5d43b22e504212ea6c01514059ec74ca3d9308
1ccffa6b14288bc5eeff3f77d41bf025b20ca1a993242bc2c628b40f4b659027
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/icon-estero.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "440"
Accept-Ranges: bytes
Content-Length: 1088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d1101f21e9706dc40fbda86f20847c081b5551806ce2eb0c039e3ae6a87fc32e4d324c5903de7d20a2e941555b678ef8d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
193.41.198.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 953d466998bb50eb89e7f2891a23a4fd
8dd86c56406bb47c39a78b13fae6d880da78af41
da88efb3be79917d7253ce96aa4ab5d0ebd8c6950aa6fe8cab94e9940a16825e
GET /content/dam/vetrina/design/ico/Imprese/Tutti-prodotti/ico-copertura-rischi.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7e9"
Accept-Ranges: bytes
Content-Length: 2025
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d62db1a3c97496ecf9b2bff50cf76c74541ab710cab8cb994f67144463386eda2226fbb7cfda851cf0e97925e00f46885; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c9e877b081e0ad2ab15a3517c5634da5
527844b9b8e18ec995f86c3314bb4c28347dac3a
1c68215f3398f077c98bd6d873c62e7bb1000748297b15a38da9b83b1072c398
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-factoring-e-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "671"
Accept-Ranges: bytes
Content-Length: 1649
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d47d31e97864d9fbef635e4404667c5f3a515309c363b19bc1c90d80048a2b275c314db4f8331bd4aef76011af125697a; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
193.41.198.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ba6b5d4f1a091512dfe9b682b939ac6
a212027b8c3d7db7a97baf4f7ff6ee53d9113a79
7ad8682c17cb55cf3bed7a6fe487dc2d6f52af35fe5ed92955065dd99a5fac34
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-leasing.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5ca"
Accept-Ranges: bytes
Content-Length: 1482
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d3badd721fac0a4acf43c25f4b63372e5908574283525e13e09dcaec18b959f5ea3dbda17bf0546c1267b0441ccb4af4d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
193.41.198.216200 OK 2.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 7588c2126bb6eac4d6923a5a8feaabe5
26922770c1d055037902465c39adb0e1f3c31ce6
17d1098dccadf020fc350ad169a1f81593180d5c325101f4dafb0b888850eb6b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_trattore.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "7a0"
Accept-Ranges: bytes
Content-Length: 1952
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d19931783df356de6f4928bd5fb6efd75d333b40b3d598b629015f2b4c56f80e84816491063eb8574140c4d9483b53e38; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 24dc06b1321d6b083ec7c5fc13983e07
d233856fae8dc8fd2c10650ab3e25def6af860e8
b9e4567d5965eafa16de795405ef30938099d4772b81afccc6ed25e1e8ad1fa6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_valigia.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "66b"
Accept-Ranges: bytes
Content-Length: 1643
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d17b3d4c0813cf7b2f4e645e5e8c399532edaa49f37fe04ac683e4a399c3e009e0ec6927ac02a48e5472b7d9e7098196e; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
217.160.0.102404 Not Found 5.4 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/main_app.js(3).download
IP 217.160.0.102:0
Hash 54f26cf57f4dfdf2f12cdc76d9e2b519
d77d3f58cd426922dd0640a8ec3503c8c5b76955
8f546bab33434da055e0e0c742a23f66ddb0f93d6daba9f0172d228b3e810e21
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/main_app.js(3).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/css/css.css?v=4f50be38d701ccb0e1a55470db167950
217.160.0.102404 Not Found 10 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/css/css.css?v=4f50be38d701ccb0e1a55470db167950
IP 217.160.0.102:0
Hash e6a41bb487bba500699fe6f4147290f1
2795ac8a2ee5d9734d34e3524701693bd375f518
33c0d76b47874479a0f3f247221f8aabd3f2f7d76d3578a0a19e29bf5edd1884
GET /s/account/service/css/css.css?v=4f50be38d701ccb0e1a55470db167950 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 816 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Hash 2e6dcf9326229a8739e5a7f9291f6bda
63be28cad3e27806487df92ecb158b483cf8057b
68739bc0aecf9a3c8c3ee78986633084774fc4b17d66ad5baf0e13077b0b34f4
GET /ib/public/login/js/lib/qrcodelib/qrcode.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
217.160.0.102404 Not Found 2.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ArchSecurityManager.js.download
IP 217.160.0.102:0
Hash d4683443328b1a536efbaa73c87986b7
aca31f43e2ccba657c7f9e3bc593967032257ba5
ea036bd47b984afa9b01b5c4f3bc4b6c0e1cee1ac87ad4b0f81c87e1152a45a0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ArchSecurityManager.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrows.png
193.41.198.216200 OK 528 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrows.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash f844b407ff44c6666d38477ae7dff5db
ea52a6b99560e25cd531c06ada26b76ccee59182
354a16c92816350830076c1f625525d9460ff1269cb3b8766592540d5ad28ba8
GET /content/dam/vetrina/design/ico/arrows.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "210"
Accept-Ranges: bytes
Content-Length: 528
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d67bd3e0221af2627bcc38a1cd10208d521d0e22909615eee508c552c239b75a6644ca03d90a33675eb81e8453b106b57; Path=/; Secure; HTTPOnly
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 400327
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
193.41.198.216200 OK 930 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8786b476163b5626790111201de7a105
f432a249eac59b4a057f0ab2a34cfa99adc898c6
7a2b1b4bff76a3cb518c06ef6abbd483c60e5b2d6377020a6bf1198134ebb8ab
GET /content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3a2"
Accept-Ranges: bytes
Content-Length: 930
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dbe0e7087850df618ab555e051fba62f01eb79e9d8c115992a3f79043f724fa69f3771303ef8385b31daa03ae837c37c4; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
193.41.198.216200 OK 403 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash d2cde8858cd32b0dc6c51330f8d70a0b
876f950299f7a0e760dbf8940fab54c095424427
70a69e8967b498671cce7e6422fb2bbbaa83a35451a63e958a7e63f157db9e56
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_portafogli.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "193"
Accept-Ranges: bytes
Content-Length: 403
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d5c8c4196c6d5ba6729bd369adec24c22047a3ff3247972acda3e5e8a2ae59d52b1099c3e71d06b4558125fa73b1a5d73; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
193.41.198.216200 OK 385 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash b0728c9ff3887010e1e0418b0481528c
a55efdf86f54838927b4a33e0f27cecade2e1240
b60ec7c2b42ee03cbcf0f85a83a85c8e1ad5eccb900c13dabd2ef9e197e95217
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_diagramma_freccia_su.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "181"
Accept-Ranges: bytes
Content-Length: 385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238ddf21b1fd13cbcd6a0eb3a1bb81bb22bfc3140aabce28b5e06a904b43b2822dbb31cf328c545c6d3b6a917c09c2245beb; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Semibold.woff2
193.41.198.216200 OK 14 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Semibold.woff2
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Web Open Font Format (Version 2), TrueType, length 14544, version 1.0\012- data
Hash 223a277bd88d8a90c8cdf24cda0ad5f5
24234c1c81b3948758c1a0be8e5a65386ca94c52
d61b45b8b3cded238a65ee0aac4043b989f11cee56acfe5c889777f961f241a2
GET /ib/public/login/fonts/OpenSans-Semibold.woff2 HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "38d0"
Accept-Ranges: bytes
Content-Length: 14544
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=17, max=96
Connection: Keep-Alive
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d970e0b198c1edcee5a66e127e3f56a30f7d0772be6956155c16e51bb5a68403cf1a7146c539ea48cc0ab02a41343d166; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.woff2
193.41.198.216200 OK 14 kB URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-Regular.woff2
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type Web Open Font Format (Version 2), TrueType, length 14048, version 1.0\012- data
Hash cffb686d7d2f4682df8342bd4d276e09
2c07a9656f1e38da408f20f1cf11581a15cbd7a2
3b98b0dc3bed9d40f43e64adba5de47c76895338a96f0a5a314676cd6287eca9
GET /ib/public/login/fonts/OpenSans-Regular.woff2 HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "36e0"
Accept-Ranges: bytes
Content-Length: 14048
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=17, max=81
Connection: Keep-Alive
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc34ab3a79b7fd9ea51dad4790fbb366ec0cf2af53ae4e026691bbc39f184cf8bf6df54a26d2f5da7c1006b52b7dd3b7a; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 816 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Hash 2e6dcf9326229a8739e5a7f9291f6bda
63be28cad3e27806487df92ecb158b483cf8057b
68739bc0aecf9a3c8c3ee78986633084774fc4b17d66ad5baf0e13077b0b34f4
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
193.41.198.216200 OK 11 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/loghi/logo-footer.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 344 x 42, 8-bit/color RGB, interlaced\012- data
Hash 1bdff8a43af86e37593537e037e36c26
067557b4785a26539cbea69d8aca86dd8f0f8efd
10ca81e1589cc3b4b1d18a25ee6acf121970effa02449deb4beb17a880af41fd
GET /content/dam/vetrina/design/loghi/logo-footer.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c84"
Accept-Ranges: bytes
Content-Length: 11396
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238de8583d9b2efed05c9a52a70b8ff570fe032428c55a8698b446a32f0407ed1598b89233476301c51f57b8e203cb713366; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
193.41.198.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash d12b8e3c731d4b3683a083e2d806efbe
f1000991e5877719788fbd2a21e7e3c588383b8f
dee169bd1537e0f50a2b62e5413559506f0b24a8959e261b9347c545c6d6dac6
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-sicurezza-dati.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "749"
Accept-Ranges: bytes
Content-Length: 1865
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dd449c1dd0c9ec99a53b0e6a935fb7c33ad034055769e5b7136deb665ddb2ed17c793a20c454d4cb0f9ff28d1421c1936; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 15 kB URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
Hash 4e9a4a6c3321319bbeee40fc9fbaf052
a86f049e69686a32c0c8fa3bb7d495cdaff31766
f10ac19cc79a44b1df3ceee2af68ba9f86b29cdc1444858792f3f332ece158a2
GET /ib/public/login/json/events/registry.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png
193.41.198.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9275ff045976d491067330fb9ad9d928
977aa3e0f00afe4e419c1694b16ef4dfc2dcfe52
e4ccc74bcf88676d1fd24470abb333deebbdf3ec2d993951edf2513b1caf8ce0
GET /etc/designs/vetrina/clientlib-site/css/images/breadcrumb-separator-white.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3f8"
Accept-Ranges: bytes
Content-Length: 1016
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dd6ac6bde84a644f8ad67baed5dc2a0c2e2c90896ce18dc893ccd1a91edf22f1e3e90e2e3a8538a0cfb9354483130f1c6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide.png
193.41.198.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 37 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 04075b9c724604b649a398fd38b85b45
0ffd0f9d6e2b336b835866d9db4193db665af9d3
366de85e50aa042f34ef304b5195d06a87dcc81107e0a5ac87d997d35d95b275
GET /etc/designs/vetrina/images/acc-hide.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "557"
Accept-Ranges: bytes
Content-Length: 1367
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d1bede05ec4fc5934a5c74da7658da0b06b4521f78e0404b21628db8048a6306039d79cd9de289c2e061a45e14e6301c1; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
217.160.0.102404 Not Found 6.2 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
IP 217.160.0.102:0
Hash 2a74c576664da4c5be46525be987accc
6f7ebabc75d7bbfd76ab7db260791a762b09130d
29f02ae3fe283af67af4aaa4d094324c7aea652f6741cfb79ceeb9282bacc61a
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/moduleManagerSso.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2248a12a6cc384fa88034706b81867ab
62c7769e2265dfc8713670a76445df3f2f29c64a
3e2ae7a3987fdbf96e531f1f84dcee710e293f1139b46afd544030296012a136
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-scudo-sicurezza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "674"
Accept-Ranges: bytes
Content-Length: 1652
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238df46959a544bd158306523f2934ec5f65d3f0f17ed1d491bc908866f4d6107c52f3edb835c593286d1c31e75d9439ad9e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
193.41.198.216200 OK 819 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 28098b88dc2ed890f92dbccce3093653
306e46ebf4eb580e95a3254e1ed99e1b8a54e092
2ee5235a5008535da5044a323c747c83df4f1d42a12fab62175ed86a89652f53
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-lente.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "333"
Accept-Ranges: bytes
Content-Length: 819
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d102eaa103669fb33d6f28adb5413f06d32f1402013d51109e2abfd8f6bd942eca3b10ce21c80ebec68de1323d5bc39fc; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrow_right_black.png
193.41.198.216200 OK 412 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/arrow_right_black.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 15 x 18, 8-bit colormap, non-interlaced\012- data
Hash d8f8f4c1055faf967aec67208046cd38
bb1edaf2793f34e1bdd00c525917c25359c3912d
400e83f5f5c6235fe8a676b41c27e27cb11a15f05b1fc78384d07bff0bea7841
GET /content/dam/vetrina/design/ico/arrow_right_black.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "19c"
Accept-Ranges: bytes
Content-Length: 412
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d8c73498d60f05f1f5e0360c73d65788f9f42e931b37bf4d7359b45d78379015a90401b713f07a50f4f577c3669342d91; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
193.41.198.216200 OK 1.2 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 770e2371beff574acd7d05d11fc4b796
2e9ffc43ed0d0127207fc26184d75775371b3c69
a6056763e4056b9e6848ac140c4aae062cbb4a7325bc09e7cb5ed3d48f76550b
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-messaggio-amichevole.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4ca"
Accept-Ranges: bytes
Content-Length: 1226
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d96a3da65f94fe2432be79be5ba70ea7fc36daf3e0bed67d637f17d749323e2fb2a8918a25e2a32bed879caf1b54e0966; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
193.41.198.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 37 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash c53b2488e746a5a423d1024ca318e41e
32b36f817c530d595d53142257e25897bf6a73ea
7621b7efdd066ad06e4ab99786b72c02f9d126e63bfa911cee193b1071fa1ccd
GET /etc/designs/vetrina/images/acc-show.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "402"
Accept-Ranges: bytes
Content-Length: 1026
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238da83b4a7eb17dadc5a34f3078247b8f60b912cdbbd3daf0098bd0fc6171aee6aadf42b1f911b6873ab3de6276ce0be457; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
217.160.0.102404 Not Found 5.1 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginPageController.js.download
IP 217.160.0.102:0
Hash 08a279bbc0eb3a502b4ca0e986a606d3
c72dfba0426a70e97a0b8c0192245edfbbdf2543
4e527eed261047988fef3fe0a05b1b5294002b431a13437099322829b5ebaa5a
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginPageController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
193.41.198.216200 OK 581 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 4eccc5d2b149b12cbb8f36dae371b95d
ab6125429786ae86249cb357e60944e1330b02f1
e69cc6876dd59840448b8327049bd33ad0b7ecfee3e3ae2f13646a821a91a331
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-nota-penna.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "245"
Accept-Ranges: bytes
Content-Length: 581
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d191a4e31b52c36f73aab67d506b6d8e636e4991e2763dbfa9d8d693af0e79c3c25ed7ff65fe838dd19fed0498664700a; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 487d8aca55607687e0acd496212af3ce
60c80f858d63027ae29a33539899c7f25aade8e1
7693cdc4c77cac73213ef7e99eec0bdf6d80c4c7173f57a40402d90c4a8ccbe2
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-mittente-attendibile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6eb"
Accept-Ranges: bytes
Content-Length: 1771
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238db509f4f3daccd6a16d10e4e7ff217ff22d0920ccbd2f2fb411c2691021cfcf7eb8ca7104d38623109c1bf046a05fe7e4; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
193.41.198.216200 OK 994 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0204ce28b7c0e666cc95b486bd827074
5054f3d2c5a70efb65eb9422f3ab2919d433e4a8
01de4f9d83c625f7ba08dfc12cfd6ecc9a999c767c948c38b1307d8669e69ce8
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lucchetto-password.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3e2"
Accept-Ranges: bytes
Content-Length: 994
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d5be0ebe2a6b42b90c979b260872eb7e93c806ea26fcaf759fc3249c4a94f59ef336e17574a32ff742073f1f5cd3be2d2; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png
193.41.198.216200 OK 1.5 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e927dfec8c612e541a672c978fb259a
c00149a83f1b0ad2ad0a935ef50552fe6255977a
27cfc61f59f680b812faeff5e79339ac8855226a6f120799b9df567e9f0e81b0
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-info-sicurezza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "5d5"
Accept-Ranges: bytes
Content-Length: 1493
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d9a91e89a93b459ec6777cd1a8e718034b6c7ef57f4d3aa0d32083607eaa8c5547f4bac5cc2b65e5024f948d30fd4ba22; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
217.160.0.102404 Not Found 1.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/moduleManagerSso.js.download
IP 217.160.0.102:0
Hash d80db79770f26d764b1434f5d0c69f42
ec79a91653d49be2c31e153e6a549ca422ece3d1
600b33e77cab5612a31987531f3f9e886dbea44e63231fce68e6839d37584342
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/moduleManagerSso.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png
193.41.198.216200 OK 848 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 0591fdc5209f59cce93bbe874db32d84
ab37c00282ab029c08695d2e17c637f45edc7dde
5eb234e588261dcb624c60fc69cd7b3e75473ab10d4a36284fb513b01baa37c9
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Fai-Acquisti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "350"
Accept-Ranges: bytes
Content-Length: 848
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238db78a0b4f5ba33dc1bd99fb636f13d7939d9b56c936d32acdcd1f6a228fe7b2489e3a3f85a9114f89cfcba2bcc20c1cbe; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
193.41.198.216200 OK 1.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 85c0ca4e83854737af7e875072e09f1c
6c52099d9dcf9c3932ac11b82d085c26566b4a99
7d048f17267aaad7b97463042fe50808124861e587e43ba6d59a09520d37adf8
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Risparmi-ogni-giorno.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "43e"
Accept-Ranges: bytes
Content-Length: 1086
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dfda47f8ba6e0a700640483ece8d27431c2fbbef51f53e963043e1deb150fd822e03cc7ab59e1495e29012e0a8d0453f3; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png
193.41.198.216200 OK 923 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 6021613a00888e4ad1cd2eea74ea68d2
326bc3f06f52cbfee058f206ed4c78dac14c1062
5b4b9331f3b3b037dcc472d92c6be93679161ff51167369cdf18b434e66df421
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Controlli-le-spese.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "39b"
Accept-Ranges: bytes
Content-Length: 923
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238de695e16934dbccec38074a6c584b998ca03b1286b006daa8e825076f981b6027a99490ea56c1986b93a82402ae12070d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
193.41.198.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9729a9e9baaeb8704a41234706f1f758
64b517cda34ec2b38a11e91b45e1615a23f19802
45978963ae9033d33224ed5677e4b77223fdeef3a5003e0670e762c534f88446
GET /content/dam/vetrina/design/ico/Icone_verdi/ico-lente-omino.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ed"
Accept-Ranges: bytes
Content-Length: 1005
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d60b79181accbcc613287b215d508ba19e07db7a825e36d09146daf84d30ae803988d789a14ba2e7ebca68986b8a8946d; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 1.8 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Hash b3e2387bfbf874727ccab77deedecb4c
197b1f4fe46aa496764941a4db5f7d1b075e50e1
562ab27b43f6791a7e8d75de2ab008a50d221493ffdead615d551fa5ad7a47fd
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
193.41.198.216200 OK 1.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 85239f84c97a2057670b9174e9cb6864
45f5447da4aa98e10cfb8e8a176ca51a98752a60
2255e18e78b3b6642bde1026a1bf2973a7cc340068b841de2f55e56f4113db9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_condominio.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "4e8"
Accept-Ranges: bytes
Content-Length: 1256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d356fd0fdce025f038f980af73eb1d87118771424f8e956d974f09f81e9b883163ce690da5a8e2d3ba6f4298c8ef7173a; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 0174afcfbc58e183cfac4fa96ab4da06
edd34fa51681d95b7310ff012d9df09b0d3f69fd
10bcfa7fe0d272656031c8f0f5c3b0d4f99e6f01108efe0dbb0d203d8bd6df95
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_banconote_plus.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "737"
Accept-Ranges: bytes
Content-Length: 1847
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238de144893b823e02f4740db9cad070546ef273090c5998a6d73ac98a1f193f915a81366e4ff59621a86a190e83ee072897; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 44464729720604e1072d5e7acc4c822c
fd96540e38540ca00a78eaa883d591015682ec47
84fa5701367eade39300241ea5510a22b1be8597a9389245581af99f82e1d5c4
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_aereo.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "682"
Accept-Ranges: bytes
Content-Length: 1666
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc1b0b6e40696c14079e287a42f2849289a5e95a2902d65d6098ad72a85efed49eae8ef25525ce17e64434d44240585f6; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f93282ad9dad88323dd9a5ce3ed16938
10214afe74e2828343fd5fe9705b3c633eb860e2
ce862c0e134141bbbb38445196f43432d2b0440dcbb1d544d09f10b73d83a1f6
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_grafico.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6bc"
Accept-Ranges: bytes
Content-Length: 1724
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0ba49028c6a477e2e9b13fd2d00a5b1bdd9a89e8936953bef5d4759f0f01e7f1b6967cb381b4d7fc7badfeb05767fd18; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 78d2c46ff3dbed457d744a59aa80eb30
3bc15b183660a9d87604127163c24d5a637c4f80
38539e3cf9b3f454c141febf43ede597b2fd9bae495ad4d416dfa09ac53cc201
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_cassa.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6dd"
Accept-Ranges: bytes
Content-Length: 1757
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc3aba3518cd580dde5ca2b7d11177b26750bb9c33cc84507ddee3acbacdbeaf823177b865dd2cd6930d2480cc503ed9e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f8b1df6f62bc6ef7983f994b39650e5e
b47e2869ad706b489b950e12b29ac585f0a6ffeb
3fe4f6784d9d9dbe5213e7cbfe3dd7c2112a287aa8b60e4ad7371d7dd9caaa9f
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_pc.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "68c"
Accept-Ranges: bytes
Content-Length: 1676
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dfec2ee825c2201f08925fb6ec38b89cfd7e66b5b6e1c4cddbcfe6a5423f877c6e32c2ff3d613b62d66782d76e0330f39; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d8bcb2ee2f36ac0d27115b9abe5f5506
56fbe74451e52685a81f9c9fc9bfcef1e9a0761f
cec35acf6c690be6a9be0a3e2cfc177cda979be9cd8282837e96357a8d1b7c9a
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_lampadina.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6ec"
Accept-Ranges: bytes
Content-Length: 1772
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d7dd76ddeebfe22581539b4a08d9aa2294ee1ddfe8db11938d4c2a2d4e5aa1d6e27f4132c61c2cb08bbf3c203dc21663a; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 30, 8-bit/color RGBA, interlaced\012- data
Hash e14f7c0b186112c42a144cf0114614d1
b721bbca276dd3a028ac9ecf84122233de7640ae
cf9b112e70bcd1e0df433fccd8947546350ed57e1ac5d53bab5df0b7507ed133
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/tutelare-l-attivita-e-il-benessere-dei-lavoratori/ico-tutelare-attivita.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "728"
Accept-Ranges: bytes
Content-Length: 1832
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d3ad27e800c323e125eac33bd7f3973127d1e99eb9f7fc6448f4f171e1104d4cb4ec026bbcb4aa09ba8fd719e14df7f33; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png
193.41.198.216200 OK 2.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 22fbc6725f81475dab49204fad983fc0
a1ed3bb9f9b5249997a0af48e7df234a4124c71b
ac75be845e69801e3cec54782754ca177a4bc14dfdd062ff7251e744e533274e
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-business-sostenibile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "a81"
Accept-Ranges: bytes
Content-Length: 2689
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238defa2ce95133d72fb5fd332b72b9888e361a6ad7d57612f52deb302cf9649cff65e24762867049c25ce1f6d6d39a91aab; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
193.41.198.216200 OK 2.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, interlaced\012- data
Hash 39f9ae177d2f0ec52dc3f84563a3516e
060444b971e82655e3004d2a2143294d3d7b9fd2
cf41f546ab4e7d8421dee66ccdeb8025c4c43ac91eca416f6bcd99d9ae476df3
GET /content/dam/vetrina/design/Immagini-business-imprese/Bisogni/Far-crescere-la-mia-startup/menu_icn.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "951"
Accept-Ranges: bytes
Content-Length: 2385
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d4baf35ee94332da2346cbc9c3cdc52bb9b2322a854af85f98da2352a74f518fd350cf3f1780abfd31a88c48166601b1f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 9164db3e9c91ba3ff788fd2105bf4d28
fdd88bded2ec9d992282ec01b66cc16ff64421cc
81eeffdb453f881561865e7c42baba2f578f3b0f7af0d81b681671f917f81277
GET /content/vetrina/it/business/prodotti/formazione-e-consulenza-per-imprese-e-startup/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6ea"
Accept-Ranges: bytes
Content-Length: 1770
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d8d828da0562e33bbc7f65200de162e205f65c9e049327c47e99ed6767a8ce364863f391a9166567afa901dd836433db1; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-identita-digitale.png
193.41.198.216200 OK 7.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-identita-digitale.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 100d31722d691360c5ec934128d518d1
f1904c86f9b8fe9a538e1ba588cf4643a087607a
46e779be79b0f461dcba7ad6481da07195c26b5b056de4c00c8eef6854fda341
GET /content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-identita-digitale.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1c7a"
Accept-Ranges: bytes
Content-Length: 7290
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dd24e254e252daea3067ae61348334ed1e5575b173dce1ae53830e5b84661518e790b364a2b4c45a840f27f7cdeec13dc; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
193.41.198.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash af146dd6d182c64128186c8d713e1583
6163d0369057326387125886b07bc0f1be3d97e9
d86ee6fb558c2c457946b4ddde8c8a49e964023b9b7685553e76c6ef29363793
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-valore-insieme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "562"
Accept-Ranges: bytes
Content-Length: 1378
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238da58bf4fcb3a326a2ddd33f457f2be68f425c648bd91e84c86bfb22d1516ba53e095097eb392a368834bb19318115df38; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
193.41.198.216200 OK 2.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 180 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 01f230e9d9d29134e314b32575a0264b
235956a5f7390c5064577ebb30e6469ef5f547bc
331a40833344afe8c42726440e3fd617946212fe0b2e830a6aa32f3b1a596d46
GET /content/dam/vetrina/design/ico/Imprese/servizi-digitali/ico-piattaforme.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "b33"
Accept-Ranges: bytes
Content-Length: 2867
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238df5d51618029fa289da988ddb4df429468a606e496bd4d6c9bb9b583bffe43ca88def424ef22948a6c2e5c044dd516ea2; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 5eb1f62866c9c443dbf14812499f54cd
ec00a0c80f301e5dd2a86c5c7543aa0b7143ca9e
04f0e091c3221e44e7c509914c108ff7a376bca1bddfb0ff6e906fe9a6b883fb
GET /content/dam/vetrina/design/ico/Social/footer/ico-linkedin.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "656"
Accept-Ranges: bytes
Content-Length: 1622
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d55cb90a5c6f937022cd8e9c8ed3dd2b111cb8395aba493488068ed67d3ca50cd26b88077a1fb86cf1aa91856c4fbe479; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-facebook.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash fe2e33b806798c4940ec29050769d7be
7f84f4a5f3f90f36bcbe8037cb41bded19309286
17b4afca46166fc395e83752554c9e737206f172f9ea7c155cb936d7af9ef9fc
GET /content/dam/vetrina/design/ico/Social/footer/ico-facebook.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "638"
Accept-Ranges: bytes
Content-Length: 1592
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc003d166eef567ffb873b3c6883d08a73ddb0feb7f6bdf6ce961d0f3377aacf70c405a2bf09a60e3286f9af7e557145f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-twitter.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-twitter.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash d0e5a30ed93355d29a7225558b54c1e2
4e14886bfd8554b035572c135802671b1b002a1e
efec1f0b86601e36eaf074ca433412258f5bdd485c5da1b0c18001b24e6fdd65
GET /content/dam/vetrina/design/ico/Social/footer/ico-twitter.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "654"
Accept-Ranges: bytes
Content-Length: 1620
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d90b47ff4b1d43a8ecbb2208adeac1921c43aab261deb07c340db5ae972219fd780d2b30a069fa4546ece039504b2e552; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-youtube.png
193.41.198.216200 OK 1.9 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Social/footer/ico-youtube.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 30x30, components 3\012- data
Hash 61c25ea9855ecf15e827129facb1a6aa
c1c80aba18672b7dd46bfc2b5dea62bc4b7a06ca
6a471ccdefd7b51f03ad674ef48a005a7acc76d159d3b718eab59ce83e0489bb
GET /content/dam/vetrina/design/ico/Social/footer/ico-youtube.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "780"
Accept-Ranges: bytes
Content-Length: 1920
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d4e4bb195ca56fa2626c9e59e624911c62833f12c6bafd45d1138d02b6e0e373c9ee5761b35e94486a61d28a2ad3120b5; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
193.41.198.216200 OK 2.5 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-show-mobile.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8bfcfb986c4de70ce6ec602168d856fa
cc7bc984c5506dd079a5c6358cb36cd73f0e0167
1aec5219cdcd75f87dfe65e36a8d4b860ac03b5573e6c9a2739b119e5defe63e
GET /etc/designs/vetrina/images/acc-show-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "9e9"
Accept-Ranges: bytes
Content-Length: 2537
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d15c8bf7511e5c89b97877349784424e71ed3af0e3e61acca5f6c268475e4c01212fc5ccc0fdf04e02df78831d287f9f3; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
193.41.198.216200 OK 1.4 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 08ccd1cb56e41a7435056ed7c373578f
728f0cd5a5351a2cf82a8d54795fc6af9f44f68b
73c183f088781fc33e3c0e0586b10722ad09cd10c706ea28cbe7284eeb1e6e42
GET /content/dam/vetrina/design/ico/Icone_bianche/ico-banner-cookie.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "590"
Accept-Ranges: bytes
Content-Length: 1424
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d26df86d58ba58924edd5f0b9cbeeba54d7dc3e748efe49166ee83bc49678fa8cffce4af194f1443cf722933caaf74cbb; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
193.41.198.216200 OK 900 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash be00ed5d688cc89e1ed88c5d19b6112a
5584f034996cf2f921fedff53d0378212d52eb01
c14456513f21407b2fb73f0a5e44ba8b93d868c084dcf27bc7b2cb08d750494d
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "384"
Accept-Ranges: bytes
Content-Length: 900
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d04c3f3d1ba054c62adaa096981edbb1ded0ff8e7b251f87f63dcb5e8f5a9f252462d3d721c7b012c3d7ddedb7fb2324a; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
193.41.198.216200 OK 595 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c5a80521672d1d8362557812443d6252
56d0d34b06d98fadd8e8cb7a67fa6df0c29b55b9
a9923e07e656afe78af4f2d835ece2b10b63f578b8f010d2a7e7194b997a1d2b
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_monete_euro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "253"
Accept-Ranges: bytes
Content-Length: 595
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d4018778508d805d34cd05002ae1665dbb6a80eef5f0216ff6c381df78737d8ccf5343dbd95431303e5f097d2aa3b146f; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
193.41.198.216200 OK 798 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cd798ec622a5777f4ff2d6ab69ed5fb4
d2a5eb4ad8511ad8be2840a10d2fa589f53fbd39
478c49aa9a07383978500bc901b5650a76489d4077385bbb0fe2bda16ee69519
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/paghi-all-istante/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "31e"
Accept-Ranges: bytes
Content-Length: 798
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dcd7d2cf22986b6dc6fe83770bf3acc8165b31bb676e9f2baebda0b657b5fcb01930ffb1fabde1874532183452fc985ec; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
193.41.198.216200 OK 681 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash cb988be4f45959a69e3546743355a8cc
802ff7cde193725a5195cb240f63f81cb77979b5
52e66c1b321087253378e5b6dfa5d525a614cdbb3c9973d5cf159ac0d32ecb3f
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/fai-acquisti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2a9"
Accept-Ranges: bytes
Content-Length: 681
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238ddbad9954ebc4e661abc80c6952ac2f8d3f6c2714bd74a0d3301c86d4cfd8090479a80933134b65852c8e8f0f1a884118; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
193.41.198.216200 OK 417 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash fcb17cf1047ba4170838c3b99395a848
244c2c2f21d879c4e944e66180100d951c177f92
8a3b5c38fe7253539f893b989c0973c8f8e9fffd11d470e258773e389919c5e6
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/segui-i-tuoi-investimenti/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1a1"
Accept-Ranges: bytes
Content-Length: 417
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d4efac33d4ad17ba669d2110101cc15fd4f97d3a9f001c0335c19941479f4b7a02560c845ce297b7f275ec13ec741453b; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
193.41.198.216200 OK 661 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 1925984e52c6f2ec12ea89c78a0f89fa
30d2e4965e0560ae82182806d780bacd5d243743
5de37a1fe078804b30beff475e96731b604de1d4487b207f12821acb1fb7e75a
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/versi-e-prelevi/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "295"
Accept-Ranges: bytes
Content-Length: 661
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d29652d82333814c11038d899c68438255a891b5e66c656b11e9cf009f29d4e63d2365a4255c50690708004b55aaee3d8; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
193.41.198.216200 OK 898 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fe49c46bd70c432b1cc5fa16b2eeda0
d136d4aeba48d32fc1e83110bd7d4b0d73813785
d4e7da2a85fd1a67b9aa5a335b2593cd726856733129fc770edd43ad69bfb822
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/intesa-sanpaolo-mobile/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "382"
Accept-Ranges: bytes
Content-Length: 898
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d71dcd3513071c0045170ac945edbf96c06d2e61a01ec68e53642f86ea52ca80c7da19000e7c424d5370bacc4bfa569b5; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
193.41.198.216200 OK 2.3 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 58 x 70, 8-bit/color RGBA, interlaced\012- data
Hash 51c277d3dc61b5e328ce22b0788f239c
616527e6ac2cfde61d21e58d2eefb5edff44407c
19642c4f1cd0daa88e25d98a184cffee87c5f4011d08c34e51bb59074cf831fc
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/identita-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "928"
Accept-Ranges: bytes
Content-Length: 2344
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc0666fb89b5d09de79a939a9ac6385f774e7511004ffe4bb065c5018e2f1b070ae38d9a7ca2764a5f816b656a916609d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
193.41.198.216200 OK 1.7 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 36 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 472728754be887d0048b6481486a9b9e
b06067365beb2540cc75486681cd8dd8296c4943
900bf203d7c5c73d516b7b2c9a48c2dbe126ee6afc7658e6b6f1ea1cc25b3035
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/finanziamenti-green/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "69f"
Accept-Ranges: bytes
Content-Length: 1695
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d04220374c67ad7fc9cbad6e0631164dc8b73a3afe801ae1affab4fa6cc396dcda9b47d374aeb82f63cc96efff80e3cdf; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
193.41.198.216200 OK 780 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 25fc69e5b31244dd631227402ffd0f0a
f3ed167cbcaea621681f96214c5aab84c3cf6e9e
319ac41473da7a19b6f87692f3cdc4822a9b5283df3638fe88a38aa75b018f0b
GET /content/vetrina/it/persone-e-famiglie/bisogni/salute-e-benessere/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "30c"
Accept-Ranges: bytes
Content-Length: 780
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d731fd247a28e8f938e7320b035ef66a2965d8b933db7189b3acc14a8948fc4672d7208f6b3331ebef6d081e8b259f5c7; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
193.41.198.216200 OK 1.0 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash e386b810ca1b33a6e67d98b0e42324e7
e11d099289ef780c5770b532dd709c52fe64d11a
3b579671f0f852fb817840c791e1375fce7d12fe48589c41539e0811365020ba
GET /content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ff"
Accept-Ranges: bytes
Content-Length: 1023
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0850bdb9dec2572e03c30fc4519b4d464522f03adde28cc2340492a711771d87dfa551fd4925d653322f12c55675e293; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
193.41.198.216200 OK 769 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e46bd471bd30126c3da601d9d94b9655
81bfcc60c7ac3f6324d676ca948c25b9b7d8730d
de06f4ebd0f89a97e88aaf43f277bfe3fd14727e9d57370c0b65faaf7940f656
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "301"
Accept-Ranges: bytes
Content-Length: 769
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dbec47a7baf04e010df586622c71613f91dfc64b037ac56aec56e79a81a1c0fe853032ea76e619cb4dd56814eacad3b5d; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
193.41.198.216200 OK 596 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c7d2c21bd468f05bfdabb2e0b2238b3c
46e8967dc3ee2cd90e0e4b627b7b9fc96e8b2288
718107e6d810e9b67562f6a863033f4d10a36a4f64593dd01312aff95bc7ea16
GET /content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "254"
Accept-Ranges: bytes
Content-Length: 596
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d6446edbc7e41868f8f3c3b5a524dda7806d8e2480fd34220f36882d54b66b0346fd102feed6bed283bf9ec6b422426d4; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
193.41.198.216200 OK 702 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ecbc8cec38438e1f4883c26b97eb7e2
0c6d07f1cff42c4546455ec766259e85339bf3b8
d324d101d0340ef2a01fabab8d52815a08a51c0cfab63daf120b3db017b7b0e7
GET /content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2be"
Accept-Ranges: bytes
Content-Length: 702
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d2a80e2867656b58f01a302a50a101bad8459b8f1b1f425f11297cda13a2c6c5be436e6d1ae19aecef57cf0ccf7fadbaf; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
193.41.198.216200 OK 711 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 13fb65bbf6b71f371734ffcb77eee65c
86c35972ce92ad5e9d2672600e953df51bf6b923
a5e253bb0c4b8566cb8ef1cb425b4b24e00853927a468e8a626ca4da1be73312
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/controlli-le-spese/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2c7"
Accept-Ranges: bytes
Content-Length: 711
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d7f5e650e5d0761bd245d0c7eb6997a9f157e28e65a51283c52b2701bac0f4e6fd649f7ff0a43e5469c2cc0d682b3d5a5; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
193.41.198.216200 OK 2.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 39 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 765895c7c36d25b3e9fab1fbbd0e9141
eb18fc417926909986d91ce68d601dc3ce93669d
928b0b6e08c035315069aa10d57aa64a61ef893dae42e33fee7c8d40dc2c1d04
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/proteggi-chi-ami/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "828"
Accept-Ranges: bytes
Content-Length: 2088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d04e094b716ab770c3bb304a7eb3444206571dbfe1d102af5ac9fcb7c2adbba2263870e807c43d8a6e30e4c6d5f3db355; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
217.160.0.102404 Not Found 1.8 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/container-controllers.js.download
IP 217.160.0.102:0
Hash 3a85a883ebf92fbb885145ee28d7fd19
a5a5ef84faee6920bd630edd8b92e68941c8f82f
ac8bd49d15588b0f74dd28f96783d7d15bd190ad1b7811bddc085b0138ff806f
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/container-controllers.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
193.41.198.216200 OK 256 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 201953b73ed38c675e4250642c1711cb
1c7095ba00420e53b8860a049e0086124143bfcb
53ada21076c9e67920d7bac98dbd0289439178d32fae68ac3e166dfb24c202ee
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_carta.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "100"
Accept-Ranges: bytes
Content-Length: 256
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d6615acdd2d49c0169e10f4b1e95b3a9272c5a689fa672c8b816831084eb79e819189dba4311187793e7993e4a9f6e28c; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
193.41.198.216200 OK 1.8 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, interlaced\012- data
Hash 96162c4dab3c7028437f8290c93e0fd9
9ea2a567a95ecce36a6760e5ae77138ef86d922e
dce4673512de52fd393e1eacc72ff22313515d00603a353f3df4383d13959a68
GET /content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6d6"
Accept-Ranges: bytes
Content-Length: 1750
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc414bbfe5cc82769e279442f508bad071600ceddf74495dca28ccb4d3db059b23e402a970242994c2a88985711cf56cb; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e717863b7c31ba33f14c2ee53111095
2e9aa87909ffba3c2f4733edd5c811d08c307d37
7eb9aabfb251336728d1db8891b0c04b8317679348d7fe66a019fb2451eb191e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico-pagamenti-digitali-xmepay.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "617"
Accept-Ranges: bytes
Content-Length: 1559
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d98755f96f2755da24255a0b051e31fc15b7492e9cd4e5c7cfeee9986ce896dd2caf8b5fde90f5d4dbe91b1de526cdf30; Path=/; Secure; HTTPOnly
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4988
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4988
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:54:59 GMT
Connection: keep-alive
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
193.41.198.216404 Not Found 25 kB URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
Hash aad0f98d51faec70c4c2d926996402c0
cdb45e1b7f7ce614714eb6a2e5f2c5bb5bb90575
41d2ff8d46de6966b972438b3cc020b244fa3cfb18f6a30fb509e136c68ba9e3
GET /content/vetrina/it/persone-e-famiglie/prodotti/mutui/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d137bc4b2cd9d3505ccaf8025bbb4bcd619a44229ab85fcc7dffa06ffd2adce00cfe47dd8057800175036a0e2fae4314d; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4988
Expires: Mon, 28 Nov 2022 22:18:07 GMT
Date: Mon, 28 Nov 2022 20:54:59 GMT
Connection: keep-alive
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 10 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Hash 42aa961999d5a7bafd6c776bd5d911bd
a537e0bdfca772fea3ca4d017228d1c2669f506b
adbabfba84563dfde3c729deb008d0b06ab2f9bffcc308f447f053724cc649d8
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 45800
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 36 kB URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
Hash a171d930d6e5ab4ea9ed6b33092be7a6
727313080a3324a5d331b61e57e53b85749870e6
5de49f07691cf8707715d133b63bbaec450d64cc12cbad173d83802b5a4263fa
GET /ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
217.160.0.102404 Not Found 644 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/angularLibs.js.download
IP 217.160.0.102:0
Hash 9938118c489579a446cf1e1943b6d452
e824a89cbd0c0d1565375ea5270d5563ab5d2099
afee785d62cd2d64c2c33f422cfc0be88b29f3268eaf7d057239e68419b801f9
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/angularLibs.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 82413
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
217.160.0.102404 Not Found 703 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/jquery-2.1.4.min.js.download
IP 217.160.0.102:0
Hash 5fb9627a9eaf7c94df65772090bfb1ae
86b53519078e6f74533f89f8e5a66ae716f076e5
3a72f3f8d27dac563af220f36ac898a595d6c43fba0390acf4004250876ce057
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/jquery-2.1.4.min.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
217.160.0.102404 Not Found 4.5 kB URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
IP 217.160.0.102:0
Hash 445b41d9aedc4ac67e791bdab095c211
f008857525784610b4b63e7afecbba20fbfae23b
2cddb9d206b249c2795da59eea2e58e9f942789cb273cb6e7ad291006d5724e8
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/app.js(1).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 82822
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
193.41.198.216200 OK 511 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash f244d24a063a46f86edac372b073b1e8
edb5dbea8d380e9b3f4f53c59afc072b19ac9dbb
2eb1d09976e9f10b9dc5c3dfe828a17e5b1d444e43441a1aeca185d287dd6abe
GET /content/dam/vetrina/design/ico/Icone_bianche/ico_ombrello.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "1ff"
Accept-Ranges: bytes
Content-Length: 511
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dbc1a6e3b7cdc27f48fd9d6a5677d6845e2783bae98257177becbcec581316600e87c46f0207c5ee49c8fa5fb36fe1901; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
193.41.198.216200 OK 1.6 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a05d6251cb7b66ecbede227a1e59b12
2dc09f21115b7c4f1053f46e8346bcbf5b609f48
e8be3c5c3b09a632c4d35d1cd337bd69933d54ac6add4e309de16dfb1339fb8c
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20prodotti/ico_piani_risparmio_previdenza.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "670"
Accept-Ranges: bytes
Content-Length: 1648
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238df457f18b20696891c430b61a561321f562798e6719df0e2af6fe4c4c88580cb7db067aa8faae6cffd6cece55fa5788a1; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png
193.41.198.216200 OK 994 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 30 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d52a209de7f08d79c4337a0048b9360d
889a0efcf545d2d3ba407125aad0b8c2dbe79c08
a72eeef66e3a5d1723d4cd47303eca5d99e54e9498f0fede9b46eb9e8b531d85
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Paghi-e-invii-denaro.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3e2"
Accept-Ranges: bytes
Content-Length: 994
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0cefd2486546aaec2960f767eee6b545431985b15a1efe90ac5e39f51ef47c73749ca72de02ffc306947440ab16decb9; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png
193.41.198.216200 OK 2.1 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 39 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 765895c7c36d25b3e9fab1fbbd0e9141
eb18fc417926909986d91ce68d601dc3ce93669d
928b0b6e08c035315069aa10d57aa64a61ef893dae42e33fee7c8d40dc2c1d04
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/ico_proteggi_chi_ami.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "828"
Accept-Ranges: bytes
Content-Length: 2088
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc70ce1e445b675bac08c4cabc2ec5e3df87f444df78ffed05b14a031d7fc5ad9bbd94415f6b4ece190b40b4f5791ef9e; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
193.41.198.216200 OK 44 kB URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 32 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash ab760a63af97f61f5b186eea04ac0853
b9fc917cb2b5a9f8b6bf90fcd8ed30c3df1491ab
47e722567b6ffbe6bbd8a758b0e981de956b093ad71c2730c6e7acd3da23e48e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Segui-i-tuoi-investimenti.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "ac90"
Accept-Ranges: bytes
Content-Length: 44176
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d6703e5bff061ce30eac52c66f5c3acac74b11bde7148a5d92dc06fbf0611c22b4ec41746208269b2cc0f73c793a1c5d4; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
217.160.0.102404 Not Found 985 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/app.js(1).download
IP 217.160.0.102:0
Hash 1bb11e009205c6605edddd0480a728be
77bc45f05acba4da774d91a2a76c85753e5531fe
1242a6cfc3accf5e9440d202b039aeb9f6646a8bf12310b5f0ef84d562f487b5
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/app.js(1).download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
193.41.198.216200 OK 3.2 kB URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/images/acc-hide-mobile.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 77 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 6396d65afc34a7989461099bb0072e99
d76fbd4a1d70a6fe1e7d6f34ee5ba61ed8e3baa0
173f71531eaa3fefa888c0c92cfac551e7b27007029ab36a127e5f3232510b8a
GET /etc/designs/vetrina/images/acc-hide-mobile.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c8e"
Accept-Ranges: bytes
Content-Length: 3214
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc1fc4e9464e23d41edcbee9620eea4be8db424040060971e896f2fd68f7fb402bf1864fcc9ffcfbd3e3617de525348a1; Path=/; Secure; HTTPOnly
www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
193.41.198.216200 OK 636 B URL HTTP/1.1 www.intesasanpaolo.com/content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data
Hash 1f733d902641ab7de0bb6842aa03fa5f
5766dbb756fe3f98fb2250a521b420e4cbde4b64
6e1a339145211944cb299dd747c7928050f0d3da2e6e9fa19d95eda395d2842e
GET /content/dam/vetrina/design/ico/Menu%20hamburger/Tutti%20i%20giorni/Icona_ServiziPerMe.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "27c"
Accept-Ranges: bytes
Content-Length: 636
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d0b462bb3909f9e88a2b32451728237ff32d00a8d653cf3f8ee765c3aeaeb71161ddbcd9ffda6be2d6808028abe78208e; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/lib/requirejs/requirejs-2.1.16.1/require.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/hosts.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:55:00 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/devicedna/riskminder-client.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/devicedna/sha1.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/mmConf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/mmConf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675
IP 217.160.0.102:0
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/2/1?t=1663838675 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/log4javascript.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/log4javascript.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/ispLoginHelper.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ispLoginHelper.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/env/hosts.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/js/sec/assets/webparts/login/controller/LoginController.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/apis.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/apis.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/apis.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/rtdmcontent.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/rtdmcontent.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/require.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/require.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/require.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/hosts.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/hosts.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046
IP 217.160.0.102:0
GET /ib/public/login/js/arch/services/ArchSecurityManager.js?v=1663840109046 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
193.41.198.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/pagamenti-digitali/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dcd88cb3840f9e2304c05c8eb101e7a09a2a0d2392c992ad95718c66e53fd3e41f074d8fc46655a7eadb217f76b343b60; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:55:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/favicon.ico
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/favicon.ico
IP 217.160.0.102:0
GET /favicon.ico HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:59 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/css.css
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/css.css
IP 217.160.0.102:0
GET /s/account/service/css.css HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/archConf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/cryptojs/cryptoJSforISP.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/log4javascript/log4javascript-1.4.13/log4javascript.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/ HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff
193.41.198.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /etc/designs/vetrina/clientlib-site/css/fonts/OpenSans-Light.woff HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "48ec"
Accept-Ranges: bytes
Content-Length: 18668
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: application/font-woff
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d5038d81d0712b32e9e51bba6d6fab46ca3bc424f6da70d789e63f5ee029083345d4383d20b43d4396143edef7c086906; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
193.41.198.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/xme-salute/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d9631ad1e2f7f4d6a569085845ec8568aa156067a821ebf252b28f52b0a0c9a74dc3445bb29be70f5874b5bf37a758637; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/qrcode.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/qrcode.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0
IP 217.160.0.102:0
GET /ib/public/static/js/apis.js?v=4d96a725a15b6d4387944ee01a5535b0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
GET /ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
193.41.198.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/consulenza-patrimoniale-valore-insieme/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d8dda89d18ab511dc03e53f65429489886c5c572bae81357507a1fea3deb8263b522df264037b9088fc98bbee092dfa44; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
193.41.198.216404 Not Found 0 B URL HTTP/1.1 www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /content/vetrina/it/persone-e-famiglie/prodotti/piani-previdenza-complementare-pensione-integrativa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 20:54:59 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238da5c6a00a163c099208d5ec146ccd9650253c3383e8ffa027350c45e582d692a98a595831b42e24f0d4deea94bc84d9c3; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:55:00 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,600,300
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,600,300
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,600,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-intes-asaopaolo-it.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 20:54:57 GMT
date: Mon, 28 Nov 2022 20:54:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1
IP 217.160.0.102:0
GET /ism4578/in/bec27c810134e336daabbb6d8db4800a/3/1 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/registry.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/registry.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/registry.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/login.php?second_time=0 HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:56 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/riskminder-client.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/riskminder-client.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a
IP 217.160.0.102:0
GET /ib/public/login/js/lib/angularLibs.js?v=ea72c92cfb56408e5c068156d2f6701a HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/LoginController.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/LoginController.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
193.41.198.216200 OK 0 B URL HTTP/1.1 www.intesasanpaolo.com/ib/public/login/fonts/OpenSans-SemiBold.ttf
IP 193.41.198.216:0
ASN #20942 Intesa Sanpaolo S.p.A.
GET /ib/public/login/fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Referer: https://www.intesasanpaolo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 20:54:58 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "35fec"
Accept-Ranges: bytes
Content-Length: 221164
X-Frame-Options: SAMEORIGIN
Vary: User-Agent
Cache-Control: no-cache
Keep-Alive: timeout=17, max=95
Connection: Keep-Alive
Content-Type: application/font-sfnt
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238da70e38ec7de570bd8a7829dbfef6b7db9cb1387c3ffb972c51917e08279534361ab19ca6034ace8f5b74d79b70361d68; Path=/; Secure; HTTPOnly
app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/boot/main_app.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/js/boot/app.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f
IP 217.160.0.102:0
GET /ib/public/login/json/modulemanager/produzioneagw/conf.js?v=d0e3282501176d0b23fe01305222f92f HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/sha1.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/sha1.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:57 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/js/boot/main_app.js
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/js/boot/main_app.js HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:54:59 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c
IP 217.160.0.102:0
GET /ib/public/login/js/arch/directives/rtdmcontent/js/rtdmcontent.js?v=d5835e48be2ef342dedd9a2b6f59034c HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
217.160.0.102200 OK 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/panel/process/processor.php
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
POST /s/account/panel/process/processor.php HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://app-intes-asaopaolo-it.com
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 20:55:02 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
app-intes-asaopaolo-it.com/s/account/service/conf.js.download
217.160.0.102404 Not Found 0 B URL HTTP/2 app-intes-asaopaolo-it.com/s/account/service/conf.js.download
IP 217.160.0.102:0
Analyzer Verdict Alert fortinet Phishing
GET /s/account/service/conf.js.download HTTP/1.1
Host: app-intes-asaopaolo-it.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app-intes-asaopaolo-it.com/s/account/service/login.php?second_time=0
Connection: keep-alive
Cookie: PHPSESSID=a48757c62ee1accc57d6d3d4e09ef397
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Mon, 28 Nov 2022 20:54:58 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2