88.218.117.143301 Moved Permanently 162 B URL User Request GET HTTP/2 IP 88.218.117.143:443
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 29 May 2023 13:11:05 GMT
content-type: text/html
content-length: 162
location: http://www.tel-bar.co.il/
set-cookie: TS01a42730=01465a598cc508b230b88d5e3b4f1282f9fa98e33c272cba684f13cb286ff6ba6a56bf7c3267ed0195a3e7699bb6f31f54bfb06c99; Path=/
X-Firefox-Spdy: h2
88.218.117.143301 Moved Permanently 162 B URL User Request GET HTTP/1.1 IP 88.218.117.143:80
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 29 May 2023 13:11:05 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.tel-bar.co.il/
88.218.117.143301 Moved Permanently 23 kB URL User Request GET HTTP/1.1 IP 88.218.117.143:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721), with CRLF, LF line terminators
Hash 0c8f5b583ad42e91f20242f8d21bb90c
580a2c5d5ef8641a74032f5095a9c925faefd19f
781d0d16684eae01471af53ecdeccbba64c8761f1b61c86728460e09b63c1c30
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:05 GMT
content-type: text/html; charset=UTF-8
content-length: 22606
x-cached-with: ezCache
vary: Accept-Encoding, Cookie
last-modified: Sun, 28 May 2023 08:47:36 GMT
content-encoding: gzip
set-cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c; Path=/
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Assistant%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHeebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=hebrew&ver=6.2.2
142.250.74.106200 OK 2.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Assistant%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHeebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=hebrew&ver=6.2.2
IP 142.250.74.106:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type gzip compressed data, max compression\012- data
Hash 4cafe4ba45bf78f8fd628ca74aab87c1
4d80b3b7aaf0092cbd5a2ed7587638d9ffb79d07
ffbde8ede25ac7cdd8b567786b3abfc2fec94d4069dfcf84a0a1be8a8cafeac3
GET /css?family=Assistant%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CHeebo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&subset=hebrew&ver=6.2.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 13:11:06 GMT
date: Mon, 29 May 2023 13:11:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
88.218.117.143200 OK 156 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Size 156 kB (156320 bytes)
Hash 7448f400e18336c1e99dd35d035a41fb
3cb6f8d5f209b301d23acb52078b8005be82a682
d6ff6ba00f399adeafc60868138c654ad66afd6021171bf270aaae4bf36005fe
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 07:55:01 GMT
vary: Accept-Encoding
etag: W/"63885dd5-c5c"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
88.218.117.143200 OK 3.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 77298e5c5b3f628ad228a130d299874a
0aad55ab8aa39cac6c6d5ed31cd3e82001887ef8
7212444c60c702a3bd5bd0fc7f2a0e0c1c51b88717648ffab020eab7fb8be20e
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 01 Dec 2022 07:55:01 GMT
vary: Accept-Encoding
etag: W/"63885dd5-3d38"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
88.218.117.143200 OK 78 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: font/woff2
content-length: 78196
last-modified: Sun, 21 May 2023 06:05:40 GMT
etag: "6469b4b4-13174"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
88.218.117.143200 OK 31 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 03b64590291722730eb5f81aaaa6adc7
ed8578a13bb1c49bdbb8b63b6645eba96685dd84
b6e27a1d507a59c5b4149975275ea3aed99d17ff57e1a9dba70bbd9c6f66711e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-2a5"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.3.1
88.218.117.143200 OK 24 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.3.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 3dc91228fdfd3c6ff06a0e0a10468597
e800b1573b49e430ed08962ec612cda064cc5610
282b80a222a78fedcc947fd4b3cec50d613875d4499ef4032ff835925594dcb7
GET /wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.3.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 07:37:16 GMT
vary: Accept-Encoding
etag: W/"638859ac-2d11"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bf41763493034cf0721a38e55b1b3ddc
286ada2e9811dec033e7c630fa0c33a036771ae1
8bb566767ad110bd2452aca59b4190694cce97ab9601de46067d8643efaad86d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/css/widget-posts-rtl.min.css
88.218.117.143200 OK 9.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/css/widget-posts-rtl.min.css
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash c03cbb2727bd3096370fffd2c5eaaf9c
953cf17beda575c1a2c7f0a38a7ae2109a0ea9a9
dd623cc7f5188b2bafb287854ef79a584d1e9c7159b7daa9452685c09f7e40b0
GET /wp-content/plugins/elementor-pro/assets/css/widget-posts-rtl.min.css HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:30 GMT
vary: Accept-Encoding
etag: W/"6469bd1a-374c"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2
142.250.74.35200 OK 7.1 kB URL GET HTTP/2 fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 7108, version 1.0\012- data
Hash b12d20cb26314e7f0049865ce9ab118a
656e298f39611c8722dbcdc5f474c835badcbc9a
6013e7acc139d5c58af47570c1cd4d3a90acdcb93075f23ea8e8d5215ac2cbab
GET /s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 19:07:53 GMT
expires: Wed, 22 May 2024 19:07:53 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 24 Jun 2022 19:28:25 GMT
content-type: font/woff2
age: 496993
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/pojo-accessibility/assets/css/style.min.css?ver=1.0.0
88.218.117.143200 OK 26 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/pojo-accessibility/assets/css/style.min.css?ver=1.0.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash bb419c9f918f1e9293c4203ddbddd80d
9abe53b962126d9605a5e3c990f5e0cd6c359deb
0348cd36f4e9b65907c4f0d9c8652e1375d61259c28a5421b5bdef89bc3a5bf0
GET /wp-content/plugins/pojo-accessibility/assets/css/style.min.css?ver=1.0.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Tue, 21 Mar 2023 11:30:17 GMT
vary: Accept-Encoding
etag: W/"64199549-cc6d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/themes/TEL-BAR-hello-child/style.css?ver=2.5.0.1649687611
88.218.117.143200 OK 21 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/themes/TEL-BAR-hello-child/style.css?ver=2.5.0.1649687611
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 49bc97be8293df1b46cef6b82a5b79c0
e1a333358e5c5ea2a672b939101d3ab32b342538
9c99a44dacffb1972a24a3b0155f65126204cfacd6af5d8859cc7905f84963eb
GET /wp-content/themes/TEL-BAR-hello-child/style.css?ver=2.5.0.1649687611 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Mon, 11 Apr 2022 14:33:31 GMT
vary: Accept-Encoding
etag: W/"62543c3b-237"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2
142.250.74.35200 OK 7.1 kB URL GET HTTP/2 fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 7108, version 1.0\012- data
Hash b12d20cb26314e7f0049865ce9ab118a
656e298f39611c8722dbcdc5f474c835badcbc9a
6013e7acc139d5c58af47570c1cd4d3a90acdcb93075f23ea8e8d5215ac2cbab
GET /s/assistant/v18/2sDcZGJYnIjSi6H75xkzamW5O7w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 19:07:53 GMT
expires: Wed, 22 May 2024 19:07:53 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 24 Jun 2022 19:28:25 GMT
content-type: font/woff2
age: 496993
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.2.2
88.218.117.143200 OK 20 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.2.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 6009ad731344862561ab2829412d7f2e
238b3bcc42195a02974b7bfc6542188533cbc8ae
c49ba3cde6136901c101802759bbe3b672bfc641d229adb3762eb9684471dcb1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=6.2.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-17c6d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-widget-icon-list-rtl.min.css?ver=1684651302
88.218.117.143200 OK 8.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-widget-icon-list-rtl.min.css?ver=1684651302
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 8f30eeb87cee2122c0d2d224a323f667
86639ea4dbc2ea121bb36ee485aa650df0459067
dc67d9a22321be50be341bc68a620b5bf552cee7cf1d736f6a8401637e3dfa9e
GET /wp-content/uploads/elementor/css/custom-widget-icon-list-rtl.min.css?ver=1684651302 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:42 GMT
vary: Accept-Encoding
etag: W/"6469bd26-26a4"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzaGW5.woff2
142.250.74.35200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/assistant/v18/2sDcZGJYnIjSi6H75xkzaGW5.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 20608, version 1.0\012- data
Hash 56573cfb638f35b191c36b5ad69a55e8
61b97f2670054092c49209678a2dd11d4d12a709
36ea273138b793477fef7ab102c5d882f9329660f70df5d5ad43f30f0edd7026
GET /s/assistant/v18/2sDcZGJYnIjSi6H75xkzaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 23:32:13 GMT
expires: Thu, 23 May 2024 23:32:13 GMT
cache-control: public, max-age=31536000
age: 394734
last-modified: Fri, 24 Jun 2022 19:46:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/global.css?ver=1684651301
88.218.117.143200 OK 16 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/global.css?ver=1684651301
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 773eaeb28c4ab66e51e2f6c7696fba81
723196d37d2fd476999327a51d3ca88297cddca8
0767cff61e10c7adadf1ada616d521ce50735aa31cc10a7e9e92d9b022d9a77c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1684651301 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:41 GMT
vary: Accept-Encoding
etag: W/"6469bd25-5d77d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/post-471.css?ver=1684651302
88.218.117.143200 OK 18 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/post-471.css?ver=1684651302
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 122c331d673b84150236161ecc0e7b3c
57d341340ab60a6f1a31333c28db76071d56cac7
b356d911063b2fd7c46ab2a848dcd4c6f722a23c18e691dfe99f2bacaf039525
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-471.css?ver=1684651302 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:42 GMT
vary: Accept-Encoding
etag: W/"6469bd26-d626"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.3.1
88.218.117.143200 OK 95 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.3.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 2f93c26123008d337c03cbb32f9b9d1b
c5659be52b8705d7ea9d27150c2a28a20fb37c02
51fe67ab078caa4ef8ff4510c933b2048637b8ee9f0a6ddcce7342ea55a6a849
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.3.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 01 Dec 2022 07:37:16 GMT
vary: Accept-Encoding
etag: W/"638859ac-a9b"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
88.218.117.143200 OK 73 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 51ed89d88ac3520080e9ac575fce25e4
353e894800cf04e3310fc6a1e7d27682f9d73fac
c6faa790247516e3f0ca434347ec1556bad4f501fe23c157fc686a84b3fd391d
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-15ed7"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/logo-tel-bar.d110a0.webp
88.218.117.143200 OK 4.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/logo-tel-bar.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 492d51164d5486e81699b8d415f9b67f
7de2e56aeca9ce04c18be2ebe62a2f19ac5bf6e3
6d260180e3b78420d77ebea36d959ee288cb2863ed5451700505b05ce336ddbd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/logo-tel-bar.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 4276
last-modified: Mon, 19 Dec 2022 06:59:24 GMT
etag: "63a00bcc-10b4"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%9B%D7%99%D7%91%D7%95%D7%A1.d110a0.webp
88.218.117.143200 OK 3.2 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%9B%D7%99%D7%91%D7%95%D7%A1.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 768000f8efbf179a9d3c4da68d6eecf8
750ee098cda145c07dadeeba5d374a4eca800708
2a9d7213bdd6cc67ac01c0a9123cf92ae1b384bbb557ccb3d3f1089a79c5af64
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%9B%D7%99%D7%91%D7%95%D7%A1.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 3162
last-modified: Mon, 19 Dec 2022 06:59:27 GMT
etag: "63a00bcf-c5a"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
88.218.117.143200 OK 2.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash f503cce9e9728a6c24dfa513e4c60ea3
3ce0e502d9f3e436948f0382a8a8166fd406592b
d5150d16aef711b3b87179ef113bd28c337cb9c494eb6f8b5a11071ec8245dd1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-29d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9E%D7%A8%D7%9B%D7%96-%D7%A1%D7%98%D7%A8%D7%99%D7%9C%D7%99.d110a0.webp
88.218.117.143200 OK 7.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9E%D7%A8%D7%9B%D7%96-%D7%A1%D7%98%D7%A8%D7%99%D7%9C%D7%99.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 72306dfd59c4ace30114b9568106a2a4
6a8074c1f9ed9f4788187a8123b19ff5c41918b9
78fb62dcc5ab5060d834431ddf134fac6d1b957ac3f49c45af530906545f5a1b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%9E%D7%A8%D7%9B%D7%96-%D7%A1%D7%98%D7%A8%D7%99%D7%9C%D7%99.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 7600
last-modified: Mon, 19 Dec 2022 06:59:32 GMT
etag: "63a00bd4-1db0"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%98%D7%A7%D7%A1%D7%98%D7%99%D7%9C-%D7%A8%D7%A4%D7%95%D7%90%D7%99.d110a0.webp
88.218.117.143200 OK 2.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%98%D7%A7%D7%A1%D7%98%D7%99%D7%9C-%D7%A8%D7%A4%D7%95%D7%90%D7%99.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash db1ca4dfae4ca3d0cb19fc1855ad211f
17a372e2e90664664d2552e5ccdee11ee18f2dd7
8180c481933ee634a1066bf47808504600e880545539c1387e65b9d5a80aaad4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%98%D7%A7%D7%A1%D7%98%D7%99%D7%9C-%D7%A8%D7%A4%D7%95%D7%90%D7%99.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 2262
last-modified: Mon, 19 Dec 2022 06:59:35 GMT
etag: "63a00bd7-8d6"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
88.218.117.143200 OK 16 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash f652fcb2462ac37ab93becdd46f9815c
ea8e46b6477454d82c0c21334fd50085ae0d3545
cc49933fc75aa5678a5ddd826121ef0119f13deaceb311286a4f2f5b1811aa90
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-e238"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%99%D7%A7%D7%AA-%D7%A6%D7%99%D7%9C%D7%95%D7%9E%D7%99-%D7%A8%D7%A0%D7%98%D7%92%D7%9F.d110a0.webp
88.218.117.143200 OK 4.7 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%99%D7%A7%D7%AA-%D7%A6%D7%99%D7%9C%D7%95%D7%9E%D7%99-%D7%A8%D7%A0%D7%98%D7%92%D7%9F.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 112b8195529cdffe90f8131cb3b1760b
c9609f8642bede2ac69b8ac5e328f335b65000b6
47c528707c1236a288f08ad1b47456c3e17304f29ed14c4883d582a2486ef8b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%99%D7%A7%D7%AA-%D7%A6%D7%99%D7%9C%D7%95%D7%9E%D7%99-%D7%A8%D7%A0%D7%98%D7%92%D7%9F.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 4690
last-modified: Mon, 19 Dec 2022 06:59:40 GMT
etag: "63a00bdc-1252"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/post-26.css?ver=1684651302
88.218.117.143200 OK 29 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/post-26.css?ver=1684651302
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash f8604656196e67b99b26b52982dea4d4
ce5c6da82afa9f5c0c0c56ad819f47f87d8fb0b1
0d3fd07546d0475abf996d2e641f7b3fb3c2af067ba23a5bea114a001791f40a
GET /wp-content/uploads/elementor/css/post-26.css?ver=1684651302 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:42 GMT
vary: Accept-Encoding
etag: W/"6469bd26-5a4d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/post-473.css?ver=1684651302
88.218.117.143200 OK 22 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/post-473.css?ver=1684651302
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 8b319e7db94f90b7b13fc5151b30594d
319159fb41c5e08845c571e01846789aebf0267e
3206b71a9b78afd09aa043e37fc6bf5dc622a99ff872be4a58eca770b3151739
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-473.css?ver=1684651302 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:42 GMT
vary: Accept-Encoding
etag: W/"6469bd26-367b"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-pro-widget-nav-menu-rtl.min.css?ver=1684651302
88.218.117.143200 OK 15 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-pro-widget-nav-menu-rtl.min.css?ver=1684651302
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 9059f6c3b455349e0f74b9b4e180141a
bf5ae7b7b9d8d7c19efce8214341a9d1467743e4
14a3cd3eab83dab103edb99a2f39131a5c4709657e53b9cde16ce09037dc292e
GET /wp-content/uploads/elementor/css/custom-pro-widget-nav-menu-rtl.min.css?ver=1684651302 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:42 GMT
vary: Accept-Encoding
etag: W/"6469bd26-67c9"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e75b43e8a7beaf5ded692008749eb5b0
5f96a142b29fc6ca88b33a9cb5c2c5b4b95b8635
a100d74db29961c793a7254e52dd854c8f85761876369b45073d911be95bab3a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bf41763493034cf0721a38e55b1b3ddc
286ada2e9811dec033e7c630fa0c33a036771ae1
8bb566767ad110bd2452aca59b4190694cce97ab9601de46067d8643efaad86d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tel-bar.co.il/wp-content/uploads/2022/04/FAV-300x300.jpg
88.218.117.143200 OK 6.5 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/FAV-300x300.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 512e68bbae33b40466502be9e8cfbcc5
b61797eaf7513c5919ca0a2c35f68f3607d56a8c
d05d491ae55189111955307fffa4629105a2bfcfa4d41eab667820e64893767d
GET /wp-content/uploads/2022/04/FAV-300x300.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/jpeg
content-length: 6513
last-modified: Tue, 12 Apr 2022 07:06:10 GMT
etag: "625524e2-1971"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/FAV-150x150.jpg
88.218.117.143200 OK 3.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/FAV-150x150.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 63c07f1cf499f00cf6224ed55e93335f
b4598270886a5f36c8d3aaa44e7f94fd8b47911e
6cb155d5fdbc875dade9c17bb32284db0b975bf0f9e49bf0d8d9f9f12caf368b
GET /wp-content/uploads/2022/04/FAV-150x150.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/jpeg
content-length: 3131
last-modified: Tue, 12 Apr 2022 07:06:10 GMT
etag: "625524e2-c3b"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/05/main-1.jpg
88.218.117.143200 OK 368 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/05/main-1.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1168, components 3\012- data
Size 368 kB (368071 bytes)
Hash be854f2dcb2d9e3b4d38bb6ad6743b59
006766beeedd94a6f75465aef0346525deb4664e
c10fd28d8bed7bccef23d6c2167665f195578fa4f93ac4f66c9ca9aee8c3e517
GET /wp-content/uploads/2022/05/main-1.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/jpeg
content-length: 368071
last-modified: Mon, 23 May 2022 15:53:00 GMT
etag: "628baddc-59dc7"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/05/main-22.jpg
88.218.117.143200 OK 179 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/05/main-22.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 179 kB (179408 bytes)
Hash 1efc76fd7656244eb1127e12ca37b29d
8276a31072d880941b062fda310d002d1762ba2c
c5b75b914f844ef1ad1565517f57a7dc3d3058a9594e65e791a178ea81354104
GET /wp-content/uploads/2022/05/main-22.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/jpeg
content-length: 179408
last-modified: Tue, 24 May 2022 06:22:57 GMT
etag: "628c79c1-2bcd0"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
qprivacycllcdn240423.blob.core.windows.net/sdk-files/configs/qprivacy_tel-bar_sdk_cdn.js
20.38.118.132200 OK 15 kB URL GET HTTP/1.1 qprivacycllcdn240423.blob.core.windows.net/sdk-files/configs/qprivacy_tel-bar_sdk_cdn.js
IP 20.38.118.132:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.tel-bar.co.il/
Certificate IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
Fingerprint2D:D1:D0:CF:F2:DD:8D:CC:98:A2:CB:2A:10:40:CF:80:AD:1E:0D:A4
ValidityWed, 22 Mar 2023 05:37:42 GMT - Fri, 22 Mar 2024 05:37:42 GMT
File type ASCII text, with CRLF line terminators
Hash add29450b7223327a255d8c80bc332ef
04a38a5fa15e1a8ec8c8d0047d3559c01db458b3
e15069b0100c4006cf0fc2cb8ea4d545e70416f06e8d66a87518149f7aba4e10
GET /sdk-files/configs/qprivacy_tel-bar_sdk_cdn.js HTTP/1.1
Host: qprivacycllcdn240423.blob.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 14831
Content-Type: text/javascript
Content-MD5: rdKUULciMyeiVdjIC8My7w==
Last-Modified: Thu, 04 May 2023 12:48:38 GMT
ETag: 0x8DB4C9DE1CF33B7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bdd98497-f01e-0037-692f-922d3b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Date: Mon, 29 May 2023 13:11:07 GMT
www.tel-bar.co.il/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
88.218.117.143200 OK 317 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Size 317 kB (317132 bytes)
Hash 20c5f539ed112c7d2e8b015483a45704
b1c922fba3b537bc9ad37809905a156127b78720
2242546ff96e3a0b292672f81fb95340ee40d7b9c6a7c32bdc2f3982e08419ab
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-3470"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js
88.218.117.143200 OK 49 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 90ed128ddcf1a8e861b52de81abff582
732141dcb5f753e218e10410a7f5f088986295b6
c37418f57b388957a2c0a2c7ea42421a86a8ae73fa4390781bf61d1e53a7439a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/video.d86bfd0676264945e968.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-dab"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/posts.e33113a212454e383747.bundle.min.js
88.218.117.143200 OK 8.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/posts.e33113a212454e383747.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash d9954304e916300a6b9f5cf6b898952b
e1a3c18c25531f661e017941b41902e9ea580ed0
e0117b764110a15c43646c78ccf76a65c197cdcefb7e871498b3e0a460719f79
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/posts.e33113a212454e383747.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-cfd"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/belinson.b197b0.webp
88.218.117.143200 OK 2.0 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/belinson.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aeb03c74a491ce169d37aec333ed765e
cf5d9161ea9650520954fa7cb9208b47ea7cb96f
1e9eb45b405ec31cccceb5d24fc9659b59414a72314d4a631b9312c2f8f9e5b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/belinson.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 1980
last-modified: Mon, 19 Dec 2022 06:59:45 GMT
etag: "63a00be1-7bc"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/clalit.b197b0.webp
88.218.117.143200 OK 2.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/clalit.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2cf3f3b929665d55cd77e4c7d91742a9
b8a95311ae726d51a775adfb7db1f00b4053136d
19e6522522a91f620cb5d255f3f93d4f33dccff0dc7122d36b33e6895fc3ee29
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/clalit.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2616
last-modified: Mon, 19 Dec 2022 06:59:48 GMT
etag: "63a00be4-a38"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/galil.b197b0.webp
88.218.117.143200 OK 3.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/galil.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86e7f761385e15647fff5340fc7fdf46
c6641b802848903e845445fe223b42b5f40239ed
dabdf5b9006fe07de115b2ddfda06db5f0c6452e387bccdf79d54e0f6fdbac65
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/galil.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 3138
last-modified: Mon, 19 Dec 2022 06:59:50 GMT
etag: "63a00be6-c42"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
qprivacycllcdn240423.blob.core.windows.net/sdk-files/v273/worker.js
20.38.118.132200 OK 54 kB URL GET HTTP/1.1 qprivacycllcdn240423.blob.core.windows.net/sdk-files/v273/worker.js
IP 20.38.118.132:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.tel-bar.co.il/
Certificate IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
Fingerprint2D:D1:D0:CF:F2:DD:8D:CC:98:A2:CB:2A:10:40:CF:80:AD:1E:0D:A4
ValidityWed, 22 Mar 2023 05:37:42 GMT - Fri, 22 Mar 2024 05:37:42 GMT
File type ASCII text, with very long lines (52613)
Hash a095c9dc745b9cb1f071d47dfa9202e2
0d156a69144d10690489d7c60cb329e7836547e9
897dc7c2bab19feaea5ea9899c1fbfbd4bf89ad5dfcd3ef3ed359bccd324ab12
GET /sdk-files/v273/worker.js HTTP/1.1
Host: qprivacycllcdn240423.blob.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 53476
Content-Type: text/javascript
Content-MD5: oJXJ3HRbnLHwcdR9+pIC4g==
Last-Modified: Mon, 24 Apr 2023 15:15:44 GMT
ETag: 0x8DB44D6C64854F7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bdd98633-f01e-0037-5b2f-922d3b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Date: Mon, 29 May 2023 13:11:07 GMT
www.tel-bar.co.il/wp-content/uploads/2022/04/hillel-yaffe.b197b0.webp
88.218.117.143200 OK 2.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/hillel-yaffe.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fde031e4f0256e5e3b12beb2fb251cfd
cfe55da4b86e88cf9cff72c004e4656740263acd
d3d956c4fc31be8628789eba07fae619d0fe4fba1043e9543daa53649845bdc2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/hillel-yaffe.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2396
last-modified: Mon, 19 Dec 2022 06:59:53 GMT
etag: "63a00be9-95c"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/lev-hasharon.b197b0.webp
88.218.117.143200 OK 3.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/lev-hasharon.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4eb2ce84819376fc7f69994895d7b770
26d27aa89e0b810470634163dfd3f88fc553d143
55e016b5bf4ebef221c6213edcea58252b813cdbb5c5adb31d71fcf1c792242e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/lev-hasharon.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 3310
last-modified: Mon, 19 Dec 2022 06:59:56 GMT
etag: "63a00bec-cee"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/levinstein.b197b0.webp
88.218.117.143200 OK 3.8 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/levinstein.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bca0b7181661d3df2c1f2e58812560ad
3562d81472193fbcdfcf39437219ce20a896787b
2bed5e7e04a7ea9e37fffba6df858de04f50700462b7ce40aab0c67ec0209a5c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/levinstein.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 3840
last-modified: Mon, 19 Dec 2022 06:59:58 GMT
etag: "63a00bee-f00"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/shalvata.b197b0.webp
88.218.117.143200 OK 4.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/shalvata.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af9cede587ca8409ae3af35f89404d0d
26d68b9a550304881b648350ed1be8635854affb
b6f1f05d0ace4b811dada2e02f8ca2c2966c7eeda196c99adfa619e5a967bc6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/shalvata.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 4088
last-modified: Mon, 19 Dec 2022 07:00:01 GMT
etag: "63a00bf1-ff8"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/sheba.b197b0.webp
88.218.117.143200 OK 4.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/sheba.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 05b30e71915ef0fce2cea74661e47132
98b5f15479e94848ee034403dac6bb3727daf4e6
6eea27b269138749b977bd6fa6c19736649827c46b51a0ed95bb7a2ad75d6c19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/sheba.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 4096
last-modified: Mon, 19 Dec 2022 07:00:10 GMT
etag: "63a00bfa-1000"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/shl.b197b0.webp
88.218.117.143200 OK 2.7 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/shl.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c75939a1712f33f33a7d1d375ab48228
f52969f9dab6003f6e07a970a2da1423bb57a775
d396ef81e3d1a876e8f5b9995e959f514310024ffa6aa4f921d0ad347afa87e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/shl.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2722
last-modified: Mon, 19 Dec 2022 07:00:13 GMT
etag: "63a00bfd-aa2"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=3.1.4
88.218.117.143200 OK 14 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=3.1.4
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash 95f286d697691e0cc40262e7b89887bd
157e2860db091d1e105621577780a6caa351c83a
292233e46d0c4ef96efcd31a77f1dac0591c34236fd68b8f59978023a7781925
GET /wp-content/plugins/jet-engine/assets/css/frontend.css?ver=3.1.4 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Wed, 19 Apr 2023 10:32:32 GMT
vary: Accept-Encoding
etag: W/"643fc340-10ee5"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/yoseftal.b197b0.webp
88.218.117.143200 OK 2.7 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/yoseftal.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 26d08351212893fd24a5deeab5c6842c
fd3ab7be553bd439869715a57846452ad2d6d764
2cf5f58c8047d5e6dba84b25099d4f77c599e9feafb2cc157c806ffc08e75f16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/yoseftal.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2728
last-modified: Mon, 19 Dec 2022 07:00:18 GMT
etag: "63a00c02-aa8"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/css/classic-themes.min.css?ver=6.2.2
88.218.117.143200 OK 8.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash e69b9c701deb4bea27151ddb93461911
48dde920d4870fe6fe45d617dba8733083ea9e3e
1000e2df064ba421304d517c6a4903a4e0cb13f88e3dedbafa2af13cd8d6b576
GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-123"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.6.9
88.218.117.143200 OK 25 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.6.9
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash db5901becaca53a3fb5fadf7291337bd
4e9c473fb38f0206c1e32fb6a9270ea1119f99cc
eb0cf8d0481b0901caff549c05107cb2fff9380ceea13ce2f4151f545829842f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.6.9 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Tue, 21 Mar 2023 09:04:13 GMT
vary: Accept-Encoding
etag: W/"6419730d-395d7"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9B%D7%A8%D7%9E%D7%9C.b197b0.webp
88.218.117.143200 OK 2.8 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9B%D7%A8%D7%9E%D7%9C.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fa114fe6eaf9aa9783932bf3d177697f
c7184b486e3591759f107ca0f8639cd4855e3f92
0a38413205dd694494cb97b1303b7729ee3e1dbbc61d088847de9840123d7b0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%9B%D7%A8%D7%9E%D7%9C.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2830
last-modified: Mon, 19 Dec 2022 07:00:29 GMT
etag: "63a00c0d-b0e"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
88.218.117.143200 OK 4.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type gzip compressed data, from Unix\012- data
Hash b1ec7c739209ab99229ada39996c9392
41874fe8bdd81757e1836ff0ef6a1f174fdd27ea
fce1a8056fa2487b92fa8f90d1366b99628ae4f0ab05c2dcd6663ffb004d5c04
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 01 Dec 2022 07:55:01 GMT
vary: Accept-Encoding
etag: W/"63885dd5-17a3"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%95%D7%A8%D7%95%D7%A7%D7%94.b197b0.webp
88.218.117.143200 OK 3.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%95%D7%A8%D7%95%D7%A7%D7%94.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9fbc9c26006f6eb27c6958ec7d76b295
fadc1a0a8b832ecfa9c5ee51070417099ee18b14
2fb189a5a2be21b6acbca62e1700e3d53a5cd299f9e6e465758349a80cc787a0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A1%D7%95%D7%A8%D7%95%D7%A7%D7%94.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 3272
last-modified: Mon, 19 Dec 2022 07:00:35 GMT
etag: "63a00c13-cc8"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A7%D7%A4%D7%9C%D7%9F.b197b0.webp
88.218.117.143200 OK 3.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A7%D7%A4%D7%9C%D7%9F.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1811445bf27d94edc27383c703219753
18dca5b8e2aee31dcd0ecc08604051d7ba5f3d9a
cf703dea9842a313c24f26d5d0715e39dd35e3c2ef04493e9770ef2fdc7abf8a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A7%D7%A4%D7%9C%D7%9F.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 3380
last-modified: Mon, 19 Dec 2022 07:00:37 GMT
etag: "63a00c15-d34"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/7187182426.b197b0.webp
88.218.117.143200 OK 11 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/7187182426.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x267, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a70e49e992ee9484a821e5d9df602b09
808650025946a2d0ead043dbbee9d0af05aa2cbd
9965216a982ee1b58f8b478d338d9f2890137d22fa7f9ef9548c794d1ff6563e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/7187182426.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 11300
last-modified: Mon, 19 Dec 2022 07:00:40 GMT
etag: "63a00c18-2c24"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net/bid/connect/static/1771570716.json?&sdkv=v1.1+273*&sdkm=2&sdkid=493321433&group=TelBarWeb
13.107.237.53200 OK 2.5 kB URL GET HTTP/2 clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net/bid/connect/static/1771570716.json?&sdkv=v1.1+273*&sdkm=2&sdkid=493321433&group=TelBarWeb
IP 13.107.237.53:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.tel-bar.co.il/
Certificate IssuerMicrosoft Corporation
Subject*.azurefd.net
FingerprintC3:A5:D1:B7:85:B4:6D:14:1B:2A:4F:A6:96:15:BA:C7:6F:BE:62:76
ValidityFri, 28 Apr 2023 23:17:44 GMT - Mon, 22 Apr 2024 23:17:44 GMT
File type JSON data\012- , ASCII text, with very long lines (2495), with no line terminators
Hash db60117fd2397d7097708b79133115cb
a6df873298812e0d88efa06a14e44baf0336e5fd
cf22513e06b6faea931dd1b38bc71af331656244836329eb7c0a94db2c478fa3
GET /bid/connect/static/1771570716.json?&sdkv=v1.1+273*&sdkm=2&sdkid=493321433&group=TelBarWeb HTTP/1.1
Host: clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=120
content-length: 2495
content-type: application/json
content-md5: 22ARf9I5fXCXcIt5EzEVyw==
last-modified: Thu, 04 May 2023 06:51:35 GMT
etag: 0x8DB4C6C006B5366
x-cache: TCP_MISS
x-ms-request-id: b5ecffea-701e-0096-482f-92e8bc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: last-modified, etag, x-log-token, x-log-hash
access-control-allow-origin: *
x-azure-ref-originshield: 0bKR0ZAAAAADK5iGa/7iESKRhw9QMr53AQU1TMDRFREdFMTkwNwA4M2ZlNjI3OS1mODFjLTRjN2UtOWM4MC04NmVjMzA1MTcxMmE=
access-control-allow-headers: x-v2, x-log-token, x-log-hash, if-modified-since, if-none-match, content-type
access-control-allow-methods: GET, OPTIONS, POST, HEAD
x-azure-ref: 0bKR0ZAAAAACfv5RhNCGzQrUplDx5wZ+6U1ZHMjBFREdFMDYwNgA4M2ZlNjI3OS1mODFjLTRjN2UtOWM4MC04NmVjMzA1MTcxMmE=
date: Mon, 29 May 2023 13:11:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash dfd5ad02f4f42dfda06a983cde156afc
22aa6b74534fcf3dea8b9baf4578d94e7d668e18
885fcb0b62d31ffaccbc95a3ff7a2478fe67a28f62917c980555911e11717d36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/iframe_api
142.250.74.78200 OK 1.0 kB URL GET HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.78:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (503)
Hash 85b384312488050928dd7fead044fbd2
65a14f37855b70d3e2ccfca88689e333786c7e78
5c82c8e08221bc7f060b619b3daa70d444f7b292e69c0bc32f7c8259c942b977
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Mon, 29 May 2023 13:11:08 GMT
date: Mon, 29 May 2023 13:11:08 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: base-uri 'self';default-src 'self' https: blob:;font-src https: data:;img-src https: data: android-webview-video-poster:;media-src blob: https:;object-src 'none';script-src 'nonce-qj8M4mdaTMJ_xTj0DwwCGA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';style-src https: 'unsafe-inline';report-uri /cspreport
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=KojQQOeuo-I; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=oNCKdektZKs; Domain=.youtube.com; Expires=Sat, 25-Nov-2023 13:11:08 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+033; expires=Wed, 28-May-2025 13:11:08 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/bbe1b497/www-widgetapi.vflset/www-widgetapi.js
142.250.74.78200 OK 63 kB URL GET HTTP/2 www.youtube.com/s/player/bbe1b497/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.78:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (580)
Hash b973de670b2b03faef5bbe89104fa8db
d251a6d123df91ae13c25a063f3cd2d6ebc4dc9b
ebb72a8ee62da54956da7d5cd3ca05420d319a9d34e14896a07fc85491666349
GET /s/player/bbe1b497/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 62712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:08:45 GMT
expires: Thu, 23 May 2024 15:08:45 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 424943
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/bbe1b497/www-player.css
142.250.74.78200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/www-player.css
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash b8afa5d85a1bf60a05181715a1b9d405
5b3124b4a0cb3d14d9c7a69d2cecdfa24b475304
2da3463d43c823fbf9a6df6c58b0bca86f25083def66cd532f31b114b997df04
GET /s/player/bbe1b497/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48702
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:05:50 GMT
expires: Thu, 23 May 2024 15:05:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 425119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/bbe1b497/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.78200 OK 2.6 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (552)
Hash 949e94fed78d252b728cdc2aa6ddc56a
d2bfdd653bb3da592097fb4ddb6eabbdc3060562
ac8177161c3038b07597ec544de3c00f46e1a0aa6b4b4c045ff0495553cc5069
GET /s/player/bbe1b497/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2625
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:07:04 GMT
expires: Thu, 23 May 2024 15:07:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 425045
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/bbe1b497/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 94 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (660)
Hash 84523cc509e7b9a1d46990d65185b9de
db4518d0142e239249d85d37875c4516501f710f
66c28207b52ebc8b2daba1a02dfdb35cba26b0538410e5b696805263d016c52b
GET /s/player/bbe1b497/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 94068
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:07:04 GMT
expires: Thu, 23 May 2024 15:07:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 425045
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 502777
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:40:21 GMT
expires: Wed, 22 May 2024 21:40:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 487848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/base.js
142.250.74.78200 OK 758 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/base.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (555)
Size 758 kB (757956 bytes)
Hash ef12fba4202719e6bf955d5497a856e3
7c8cf3c348e2ba17bec5cd24d6f57631d348add4
0ad4c72a41a087c98857745f49535143b8106429453b919703962c4367a9b68f
GET /s/player/bbe1b497/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 757956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:10:27 GMT
expires: Thu, 23 May 2024 15:10:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 424842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 29 May 2023 13:11:09 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 32 kB URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6d1c51d97c9f35ea8c1befaa4755a0dd
99009c007c380905b0460fec83caa9d2b1adc1c5
3fe5993538af835aeeaa25bcd35c92d1dc72205ec5621ee210558fe3554a4c78
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 29 May 2023 13:11:10 GMT
server: ESF
cache-control: private
content-length: 31511
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 809f2d592c12dfa909a4787df3e4e483
5d5ade0d64842e6cbbfc2eea41113d9eada72564
b62e9081770df0f0b60bb55391e719d282ff7f73dc4fe0098c7e4be4852a1c1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/remote.js
142.250.74.78200 OK 33 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/remote.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (538)
Hash 7838e965c560882a5e57df7b31977db8
b01998f38298cca57b49943572a66678c5021c8c
12e41f82a5a1b8b2ef61b7001a78df3dd1d387c0da7e884144530f479f6ea86e
GET /s/player/bbe1b497/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33435
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:10:31 GMT
expires: Thu, 23 May 2024 15:10:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 424839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/embed.js
142.250.74.78200 OK 8.3 kB URL GET HTTP/3 www.youtube.com/s/player/bbe1b497/player_ias.vflset/en_US/embed.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (3391)
Hash 37bbc7c6c5db9247aee64637c530554f
eddd9d2f6f1b869565c8f7a48d13a9af50745a11
ee317b545c5822bf3e3ac29b92bbc9a0dcd3d7c2ba0395aa8f4d9eae0b2df7c6
GET /s/player/bbe1b497/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8266
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 15:10:31 GMT
expires: Thu, 23 May 2024 15:10:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:49:18 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 424839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.ytimg.com/vi/JMdyngCanWs/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGFcgZChlMA8=&rs=AOn4CLDowgTmxhNAmmfoAVp5Eo9FtcyZMA
216.58.207.214200 OK 34 kB URL GET HTTP/2 i.ytimg.com/vi/JMdyngCanWs/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGFcgZChlMA8=&rs=AOn4CLDowgTmxhNAmmfoAVp5Eo9FtcyZMA
IP 216.58.207.214:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint67:27:90:A4:38:FE:23:E1:56:61:E7:AD:BD:53:5B:E6:62:11:AC:79
ValidityMon, 08 May 2023 08:20:02 GMT - Mon, 31 Jul 2023 08:20:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 95d49add97fe7a7cdf77dc0c41a9ea62
1299dfbeb08a0e76252e167bd87f377341374456
090b677894cdecaa849023fd4259667e2293c25c0970e771601df0a0001c84bf
GET /vi/JMdyngCanWs/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGFcgZChlMA8=&rs=AOn4CLDowgTmxhNAmmfoAVp5Eo9FtcyZMA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 34272
date: Mon, 29 May 2023 13:11:10 GMT
expires: Mon, 29 May 2023 15:11:10 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e202444f49089fa6735f57e2f885afc1
b43c6fef9149614a86afb99c181201b13b33559e
69602a4c6fcac3fe2c73366b48d5998f803bd55e9ea83645e8dccdc2f1349fab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 11ddcad6f0fc074c4f1b86c66ced6d86
cdd65841fec92aca297dfc5c17dee8c8b525fd1f
64cf10b6657bc2be18416ea274885a23d1dfaab08a13f87f113e19c9aeaf4fd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/xOb0SHR0aPcqgMSeUE4kE8EFJfzXtzKzd7W6zLK3ZJ0.js
142.250.74.164200 OK 15 kB URL GET HTTP/2 www.google.com/js/th/xOb0SHR0aPcqgMSeUE4kE8EFJfzXtzKzd7W6zLK3ZJ0.js
IP 142.250.74.164:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (37421)
Hash 2243a4c2d71474169b3c91e9d5cb245c
65ee8e11820bebbd3eb4b556cc6ef27a4c1e0e29
c4e6f448747468f72a80c49e504e2413c10525fcd7b732b377b5baccb2b7649d
GET /js/th/xOb0SHR0aPcqgMSeUE4kE8EFJfzXtzKzd7W6zLK3ZJ0.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14651
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 20:42:29 GMT
expires: Wed, 22 May 2024 20:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 May 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 491321
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 809f2d592c12dfa909a4787df3e4e483
5d5ade0d64842e6cbbfc2eea41113d9eada72564
b62e9081770df0f0b60bb55391e719d282ff7f73dc4fe0098c7e4be4852a1c1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 29 May 2023 13:11:10 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b867bfcf280b07bf8de1c882d2713a36
6f18283e74ea03a9f4bc1cdc92555ed5e1391370
c9885c2a4f1a7cacbef4e57ab61bbbf35ac3de3e7b48aa79bc43764410426a77
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1131
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 29 May 2023 13:11:10 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/generate_204?U4ey9Q
142.250.74.78204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?U4ey9Q
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?U4ey9Q HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 29 May 2023 13:11:10 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/ImcI_gxRSfii_wqbTxQiztR5N6K-mqGFOS0CqU76HsvjwJhy8w-q34FmAiogghMLhPp5Q9M84w=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.9 kB URL GET HTTP/2 yt3.ggpht.com/ImcI_gxRSfii_wqbTxQiztR5N6K-mqGFOS0CqU76HsvjwJhy8w-q34FmAiogghMLhPp5Q9M84w=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintE9:43:A2:2D:EB:A2:E1:09:B0:36:19:CF:E3:9C:F0:37:52:4F:DB:7A
ValidityMon, 08 May 2023 08:24:36 GMT - Mon, 31 Jul 2023 08:24:35 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 1b5f2a2c9693a50b74dde54cbb9976de
0d1ae60827272f475fe58b94f02312c139e54df6
1674e3e555d75cb72cdef0180c08d839afac27e2f95237d265f21c0dffd7c02e
GET /ImcI_gxRSfii_wqbTxQiztR5N6K-mqGFOS0CqU76HsvjwJhy8w-q34FmAiogghMLhPp5Q9M84w=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 30 May 2023 13:11:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
date: Mon, 29 May 2023 13:11:10 GMT
server: fife
content-length: 2874
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e202444f49089fa6735f57e2f885afc1
b43c6fef9149614a86afb99c181201b13b33559e
69602a4c6fcac3fe2c73366b48d5998f803bd55e9ea83645e8dccdc2f1349fab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 13:11:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.78200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1685365871711
Content-Type: application/json
X-Goog-Visitor-Id: CgttSkpfU2hiQ3RNWSjtyNKjBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230523.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1685365868973&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C576%2C324&vis=1&wgl=true&ca_type=image
Content-Length: 14907
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 29 May 2023 13:11:12 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+004; expires=Wed, 28-May-2025 13:11:12 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 29 May 2023 13:11:12 GMT
cache-control: private
www.tel-bar.co.il/wp-content/uploads/2022/04/ziv.b197b0.webp
88.218.117.143200 OK 3.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/ziv.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc4d051d3fe9f2f7b4ec33ed166cd77e
56b7734ffaf1907e42185e310234688fab521855
ae726d8b4ab1aaa8b84ac53eed80178863b2d1921cfa4d401956acaeec07561f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/ziv.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:12 GMT
content-type: image/webp
content-length: 3292
last-modified: Mon, 19 Dec 2022 07:00:21 GMT
etag: "63a00c05-cdc"
expires: Mon, 05 Jun 2023 13:11:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.78200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1685365885217
Content-Type: application/json
X-Goog-Visitor-Id: CgttSkpfU2hiQ3RNWSjtyNKjBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230523.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1685365868973&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C576%2C324&vis=1&wgl=true&ca_type=image
Content-Length: 646
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 29 May 2023 13:11:25 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+410; expires=Wed, 28-May-2025 13:11:25 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 29 May 2023 13:11:25 GMT
cache-control: private
www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.3.1
88.218.117.143200 OK 118 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.3.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 118 kB (117703 bytes)
Hash 27c8d6b519e59de0ca4b401c5b1d2f8e
85097034fa487abf82247959c92fab459bdd7918
0e6e754a832cc98b6450f4965f312932fbe0eff18ba7a658c016a6f9ff0e52c0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.3.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Thu, 01 Dec 2022 07:37:16 GMT
vary: Accept-Encoding
etag: W/"638859ac-1cbc7"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net/bid/auth/create
13.107.237.53200 OK 17 B URL GET HTTP/2 clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net/bid/auth/create
IP 13.107.237.53:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.tel-bar.co.il/
Certificate IssuerMicrosoft Corporation
Subject*.azurefd.net
FingerprintC3:A5:D1:B7:85:B4:6D:14:1B:2A:4F:A6:96:15:BA:C7:6F:BE:62:76
ValidityFri, 28 Apr 2023 23:17:44 GMT - Mon, 22 Apr 2024 23:17:44 GMT
File type ASCII text, with no line terminators
Hash 135c25ad939ff84404fc750b3c1dca81
f342d87ed4efa4e1d5f319656bd13d4855429584
de8ebb0efe50ec93c6f468169f8997aa909550d4ef8a78f53234b6de46487f68
GET /bid/auth/create HTTP/1.1
Host: clalitcdntest-dehwduepf6gxefg4.z01.azurefd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-encoding: gzip
etag: W/"11-80LYftTvpOHV8xlla9E9SFVClYQ"
vary: Origin,Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: last-modified, etag, x-log-token, x-log-hash
request-context: appId=cid-v1:a46bf99c-618b-4f38-b184-fb1ad329ff9b
x-log-hash: dd588593d550b27ff33b145a5e06ae715543f302
x-log-token: 1685365868435
x-powered-by: Express
x-cache: CONFIG_NOCACHE
access-control-allow-methods: GET, OPTIONS, POST, HEAD
access-control-allow-headers: x-v2, x-log-token, x-log-hash, if-modified-since, if-none-match, content-type
x-azure-ref: 0bKR0ZAAAAACnMXfNJuN9RJLm95PMSelEU1ZHMjBFREdFMDYwNgA4M2ZlNjI3OS1mODFjLTRjN2UtOWM4MC04NmVjMzA1MTcxMmE=
date: Mon, 29 May 2023 13:11:08 GMT
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/post-7.css?ver=1684651299
88.218.117.143200 OK 13 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/post-7.css?ver=1684651299
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (12575), with no line terminators
Hash d231256f4c9e4aacc07fea0867076eff
ce13675352c8558ea2dc145b4d92b7b7b2ab6769
072c66cfb0226e0bbd49f6ea96ce84026cb25293587c8baa653c5849db479e5c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-7.css?ver=1684651299 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:39 GMT
vary: Accept-Encoding
etag: W/"6469bd23-311f"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.20.0
88.218.117.143200 OK 19 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.20.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (19396)
Hash ea327e2f7ad5d617a50a3a23b1f48146
fbb5e404bf5c04605f4f45b40359cd7e0a660963
a0c3e823a07498a845daa25db9e85afdb4a985866f00b4cf1518f363336cd030
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.20.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-4bf3"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:25:28 GMT
expires: Thu, 23 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 477938
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
88.218.117.143200 OK 10 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
Hash 8cd696505481e74ffee89b4995f37379
ee9aad199ef2bc60a3460f4c52f37d22907b2ec9
01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:07:14 GMT
vary: Accept-Encoding
etag: W/"63620912-27f6"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.9
88.218.117.143200 OK 77 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.9
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4f3fbe72481d3b99a034479a89493ce0
c0864407ecbd85887d042e9d73bf55a9d2440c68
930b1e1e7d00de0070e78fc78efb4bd6d43cb553355b6b99a088f2b076b5498b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.6.9 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 09:04:13 GMT
vary: Accept-Encoding
etag: W/"6419730d-12cdd"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/hp-news.jpg
88.218.117.143200 OK 155 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/hp-news.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 788x774, components 3\012- data
Size 155 kB (155296 bytes)
Hash b7d28e62cd5f6d5c61b0fee5247f3424
365e94db433f905d249aaca7954ae4580ca89ff5
700da53c05ff801186e1702964ef6e3151bff44480e28795e22a66de36c85f29
GET /wp-content/uploads/2022/12/hp-news.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/wp-content/uploads/elementor/css/post-471.css?ver=1684651302
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: image/jpeg
content-length: 155296
last-modified: Thu, 01 Dec 2022 09:08:46 GMT
etag: "63886f1e-25ea0"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
88.218.117.143200 OK 25 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (25115)
Hash 046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-6272"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js
88.218.117.143200 OK 432 B URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (439), with no line terminators
Hash b34de8af62d24301901de1d56780292e
2011ea0ad54afb3cf45707ad847c3d671beb385f
8746c234b72906cd06a5c3b4a7a816a004dea509eb170bf1bda8bc135389a538
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-1b0"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
88.218.117.143200 OK 139 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-21f91"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/SHOHAM.b197b0.webp
88.218.117.143200 OK 5.9 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/SHOHAM.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c22ae0500a7283c763967275fdc82ce0
e51dfa0702ecfe5162158bf8cd9e9b6c1902a38f
9a51ea27d5223ecae7e2ede4a7c39d0462cae20659de391866806af11c184bf2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/SHOHAM.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 5908
last-modified: Mon, 19 Dec 2022 07:00:16 GMT
etag: "63a00c00-1714"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.13.1
88.218.117.143200 OK 3.7 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.13.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (3874), with no line terminators
Hash dbb377a939f8df891edcf27a367d5c3f
b2fc25024ed8e53ca4b93429c46bee198a44e401
780eef9b0bd499d2f86178e1ed8b653268abe27d49e3e5b9a2cd0f2b140139a9
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.13.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-e89"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9E%D7%90%D7%99%D7%A8.b197b0.webp
88.218.117.143200 OK 2.5 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%9E%D7%90%D7%99%D7%A8.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6998aa3a0b43e73ee5437d3d20b09d13
753b8fd66f78d8820e6c662e932f2f4bbc72b872
7598f6987c02009d0391a3100d84f08e98972c96e9a2b4c9135330590ddc6579
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%9E%D7%90%D7%99%D7%A8.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2476
last-modified: Mon, 19 Dec 2022 07:00:32 GMT
etag: "63a00c10-9ac"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.13.1
88.218.117.143200 OK 5.5 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.13.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (5614), with no line terminators
Hash 9aea6b2c1f6e1e4e598b94a968929d9f
a193ef065e5edf3eb7ec86ea53987b2948480723
a6e55ba62203f9a322a53e84ace674820fe299af9ee859e15d141225448127f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.13.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-156d"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.13.2
88.218.117.143200 OK 5.0 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.13.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (5055), with no line terminators
Hash 63267d4904f062cc586f7b92f4c444ff
03fb39f52d261abdc760fea3073b6e13764ba956
03eb770ef12c5bd527b2d62833fdc2cbc0bc4250a0d5805133811bef3dd616df
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.13.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-135e"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/05/main-3.jpg
88.218.117.143200 OK 312 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/05/main-3.jpg
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 312 kB (312337 bytes)
Hash 791c9fa0ca2af06bb8c1683e988b3362
1cdfa75af5d9d4d7c8a9d566207a8913686fb8e4
dfb1f45b330afd8ed8a8cd12cd527d23c6082912d35d1c3f02f3237b57d02eac
GET /wp-content/uploads/2022/05/main-3.jpg HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/jpeg
content-length: 312337
last-modified: Tue, 24 May 2022 06:27:25 GMT
etag: "628c7acd-4c411"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
qprivacycllcdn240423.blob.core.windows.net/sdk-files/v273/websdk2.js
20.38.118.132200 OK 48 kB URL GET HTTP/1.1 qprivacycllcdn240423.blob.core.windows.net/sdk-files/v273/websdk2.js
IP 20.38.118.132:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.tel-bar.co.il/
Certificate IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
Fingerprint2D:D1:D0:CF:F2:DD:8D:CC:98:A2:CB:2A:10:40:CF:80:AD:1E:0D:A4
ValidityWed, 22 Mar 2023 05:37:42 GMT - Fri, 22 Mar 2024 05:37:42 GMT
File type ASCII text, with very long lines (47164)
Hash b20f73a2ffbed7f3d78b474ca05ea1e1
bec58aee82a8e107424890473b6eaf4d4e68cac2
416184237b958d9796de1d5e1a0e6b34429c3105bc9a45412ada485895656489
GET /sdk-files/v273/websdk2.js HTTP/1.1
Host: qprivacycllcdn240423.blob.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 48038
Content-Type: text/javascript
Content-MD5: sg9zov++1/PXi0dMoF6h4Q==
Last-Modified: Mon, 24 Apr 2023 15:15:44 GMT
ETag: 0x8DB44D6C646A780
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bdd98591-f01e-0037-462f-922d3b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Access-Control-Allow-Origin: *
Date: Mon, 29 May 2023 13:11:07 GMT
www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-frontend-lite-rtl.min.css?ver=1684651299
88.218.117.143200 OK 84 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-frontend-lite-rtl.min.css?ver=1684651299
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 156e452de257886c68d9ae52ff1afacd
cef0adeb6247fa4f479fe39b9c8efb3b2fdfa462
dc38b1fd56d5d326ac8815425dc3799b61afbfebca8895bb2f65243d80fc1cf0
GET /wp-content/uploads/elementor/css/custom-frontend-lite-rtl.min.css?ver=1684651299 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:39 GMT
vary: Accept-Encoding
etag: W/"6469bd23-14714"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.13.2
88.218.117.143200 OK 18 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.13.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.13.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-4824"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/nav-menu.3347cc64f9b3d71f7f0c.bundle.min.js
88.218.117.143200 OK 4.7 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/nav-menu.3347cc64f9b3d71f7f0c.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (4768), with no line terminators
Hash 70c45370a6792c43bc6c051d5b525293
c5514ba2288a4e1acd960b564a12f04bc94c2c91
aef6c2a2bc98b0f4548e4a14509d0aecc10d9c9d676baa3f78ea6b9decb7da55
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3347cc64f9b3d71f7f0c.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-1231"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.13.2
88.218.117.143200 OK 46 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.13.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.13.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-b263"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.13.2
88.218.117.143200 OK 41 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.13.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (40585)
Hash 134f1d642265e802b7429622b1dda12f
c8bca23447c226c55fcd866a37bb35be3274e01d
f25567e7b8a0698486afcba5bc45a909e308e0e161d906c63a570b46734751a7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.13.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-9eb1"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%94%D7%A8%D7%A6%D7%A4%D7%9C%D7%93.b197b0.webp
88.218.117.143200 OK 2.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%94%D7%A8%D7%A6%D7%A4%D7%9C%D7%93.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6c81bc08aa34612b5079eee52a3aaa62
bb282b31df14751e5516c64f468137f0b9c68a72
1bde14beff148f62cdcd9e58b8efcc0c7193e13e276f5568982b33e0bac7f9a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%94%D7%A8%D7%A6%D7%A4%D7%9C%D7%93.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 2582
last-modified: Mon, 19 Dec 2022 07:00:26 GMT
etag: "63a00c0a-a16"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/imagesloaded.min.js?ver=4.1.4
88.218.117.143200 OK 5.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (5734), with no line terminators
Hash 1dda7be32d909ff3dd78ba7420c70ad9
25b565675b390118e460d5841a18dc8bfca9f1da
196458b44851dc116932b65c48ab21694fcdba403d3ba3d76ba4b7eba747b0cd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 14:13:58 GMT
vary: Accept-Encoding
etag: W/"625437a6-15fd"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
88.218.117.143200 OK 12 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-2fa6"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
88.218.117.143200 OK 13 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: font/woff2
content-length: 13276
last-modified: Sun, 21 May 2023 06:05:40 GMT
etag: "6469b4b4-33dc"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
88.218.117.143200 OK 1.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (1391), with no line terminators
Hash ec88d73dd0053dae202e963235a9bed3
06a3cefe30e61dc582571fc5908a1e340894ff90
9559526ac9363d2820138c542676e9c6c70a53a773ea990138b6181e33795777
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-550"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
88.218.117.143200 OK 6.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (6777), with no line terminators
Hash 4b5583c1e3d9c4f85089eebae5b0ea63
8f1a4ba1dabf9fb35cfc2a2ebd08b93a91c0923b
4c4ee791f1baebfe9e127c3341a2eda8e6e8a5debf27d91fae8c04cd2adb1527
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-19cf"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
88.218.117.143200 OK 4.9 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (4987), with no line terminators
Hash e444768b3714d28b26a18c3bec1bc79e
d5fdbb62fa29e5e683a025c1ad9defb6ed8825cb
f84cea9ee397e7d7c6a05e5a2700470a37b5e08cae8a16977f46a7f9a7192e51
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 23:25:15 GMT
vary: Accept-Encoding
etag: W/"628d695b-132e"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WLLRS7H
142.250.74.40200 OK 107 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WLLRS7H
IP 142.250.74.40:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (2271)
Size 107 kB (107002 bytes)
Hash 84f53303104e20c3e8cd61fd6e3a96d2
b024e12e66fdf5dd19a0150509f400e7c1257330
9c75d80194fea39169bb248be98376701948156a61c8e85ba88ff0a62932c7cc
GET /gtm.js?id=GTM-WLLRS7H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 29 May 2023 13:11:07 GMT
expires: Mon, 29 May 2023 13:11:07 GMT
cache-control: private, max-age=900
last-modified: Mon, 29 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41856
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-skin-rtl.css?ver=2.6.9
88.218.117.143200 OK 18 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-skin-rtl.css?ver=2.6.9
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (17807)
Hash ec904e3fac3fe8b09ecd90a929276f70
088fccd9e566250e58a40e35ad4cb7b9ff7f2c02
425cc1705e123784e85e07a8b7c82e00842237b72626bc952d1fec06b6aaa08b
GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin-rtl.css?ver=2.6.9 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Tue, 21 Mar 2023 09:04:13 GMT
vary: Accept-Encoding
etag: W/"6419730d-4590"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%90%D7%A8%D7%9B%D7%99%D7%95%D7%9F.d110a0.webp
88.218.117.143200 OK 2.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%90%D7%A8%D7%9B%D7%99%D7%95%D7%9F.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 11114ebcf2f61d388ecdb75f44e376ed
b83c0dca6e02dd5efd934c0e167b65b133e0af88
0a954030c0be67e4f263f972fe74db38a02870009cacb1809064306cc2afe4b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A9%D7%99%D7%A8%D7%95%D7%AA%D7%99-%D7%90%D7%A8%D7%9B%D7%99%D7%95%D7%9F.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 2284
last-modified: Mon, 19 Dec 2022 06:59:29 GMT
etag: "63a00bd1-8ec"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%91%D7%99%D7%AA-%D7%A8%D7%91%D7%A7%D7%94.d110a0.webp
88.218.117.143200 OK 8.4 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%91%D7%99%D7%AA-%D7%A8%D7%91%D7%A7%D7%94.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 672x374, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e4f3338641000947455fc69ed118b157
839cce5e99c9ebea293888723eb11f5b8ced9f99
971aaba3064048430eaac3e05371403aea56d1848e7906b3203e982a998ebff3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%91%D7%99%D7%AA-%D7%A8%D7%91%D7%A7%D7%94.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:08 GMT
content-type: image/webp
content-length: 8362
last-modified: Mon, 19 Dec 2022 07:00:24 GMT
etag: "63a00c08-20aa"
expires: Mon, 05 Jun 2023 13:11:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
88.218.117.143200 OK 18 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:07:14 GMT
vary: Accept-Encoding
etag: W/"63620912-459f"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H0TbFzsQ.woff2
142.250.74.35200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H0TbFzsQ.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 11764, version 1.0\012- data
Hash 271271faf099fdfab30e2b7560c2f3a8
5c3fbf8ea016ce4eb80e75ea09875fab0ef24846
e83a43067942e341ebb7319116315855d2c24e463c9f0eda69f1a4b5f66ded18
GET /s/heebo/v21/NGS6v5_NC0k9P9H0TbFzsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:28:55 GMT
expires: Thu, 23 May 2024 00:28:55 GMT
cache-control: public, max-age=31536000
age: 477732
last-modified: Mon, 11 Jul 2022 20:35:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/04/schneider.b197b0.webp
88.218.117.143200 OK 6.8 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/04/schneider.b197b0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d50b6663b673f44ba9dbbbe1b76055c0
32d2d862f346d1b513f492b5630705a289f9f690
9e6b105c0f0af139467a9b4a91b4c5272916245e5a73486f011328488dbb8ca5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/04/schneider.b197b0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 6834
last-modified: Mon, 19 Dec 2022 06:59:42 GMT
etag: "63a00bde-1ab2"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
88.218.117.143200 OK 13 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (12876), with no line terminators
Hash bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f
GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:05:40 GMT
vary: Accept-Encoding
etag: W/"6469b4b4-324c"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2
142.250.74.35200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2
IP 142.250.74.35:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 27116, version 1.0\012- data
Hash 13c1ac7fc8f934e169620e81471a3a54
d111242b230c54204e9ec061537869f8ce20cb53
b38977ea35fde92fe200fa14ac7cc55e2edce54b998ce9a08734ba1dd9053fed
GET /s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tel-bar.co.il
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 06:20:55 GMT
expires: Fri, 24 May 2024 06:20:55 GMT
cache-control: public, max-age=31536000
age: 370212
last-modified: Mon, 11 Jul 2022 20:35:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/load-more.c9f6aac03af905f4e206.bundle.min.js
88.218.117.143200 OK 5.6 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/load-more.c9f6aac03af905f4e206.bundle.min.js
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (5698), with no line terminators
Hash 25bcce86f1475812e44482bcde22112d
3bf517bbcc69bb66e3d13dee26222043f63d950d
44a9957f0e7c3eee590c7a98bda3e80827d51caa5d5c905ad13f87566bff07e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/load-more.c9f6aac03af905f4e206.bundle.min.js HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-15eb"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
88.218.117.143200 OK 21 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-53be"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.13.1
88.218.117.143200 OK 30 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.13.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (29591)
Hash 3146e4ba38dc30e27f5172d192d4b8ee
43f8aa2705b5ef282d61587390f7e9956975e15e
c2a57e72f6430ea09c331789ed0d8e2b9b36dc11965b8e29629a7b7e4cbbec01
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.13.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-73c3"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%A2%D7%A7%D7%AA-%D7%9E%D7%A1%D7%9E%D7%9B%D7%99%D7%9D.d110a0.webp
88.218.117.143200 OK 3.1 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%A2%D7%A7%D7%AA-%D7%9E%D7%A1%D7%9E%D7%9B%D7%99%D7%9D.d110a0.webp
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c64059a26e6708112221cf647421e48c
11aa6f6ec5eb459bc5f9a08eefb20d932d70e177
e2d8c7a252e3f398dcc8e33a1229442322e79ac5acf8c1ecb9561f66a1b902ee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/%D7%A1%D7%A8%D7%A2%D7%A7%D7%AA-%D7%9E%D7%A1%D7%9E%D7%9B%D7%99%D7%9D.d110a0.webp HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: image/webp
content-length: 3080
last-modified: Mon, 19 Dec 2022 06:59:37 GMT
etag: "63a00bd9-c08"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-pro-frontend-lite-rtl.min.css?ver=1684651299
88.218.117.143200 OK 11 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/uploads/elementor/css/custom-pro-frontend-lite-rtl.min.css?ver=1684651299
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (11294), with no line terminators
Hash f5b11abc5968ae320bb41d7fa90aaa71
6198964fc1b3a53dacdc5217457d006783cd194b
95e3ad1c4981f13a77e8844d0ac00e16430bb89891a76ea5c1391c9d7a797198
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/custom-pro-frontend-lite-rtl.min.css?ver=1684651299 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: text/css
last-modified: Sun, 21 May 2023 06:41:39 GMT
vary: Accept-Encoding
etag: W/"6469bd23-2c1e"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.20.0
88.218.117.143200 OK 94 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.20.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type Web Open Font Format (Version 2), TrueType, length 94248, version 1.0\012- data
Hash 70b583383c40d630c2240724f36bb422
94c986e25bb264461d294b3b86265b07a4af2552
e90e0d9376b600c05481203d9e81c73aea72d73d160892edd3ec6f52a1cd8a31
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.20.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.20.0
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:07 GMT
content-type: font/woff2
content-length: 94248
last-modified: Sun, 21 May 2023 06:05:40 GMT
etag: "6469b4b4-17028"
expires: Mon, 05 Jun 2023 13:11:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
142.250.74.78200 OK 74 kB URL GET HTTP/3 www.youtube.com/embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1
IP 142.250.74.78:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/JMdyngCanWs?controls=1&rel=0&playsinline=0&modestbranding=0&autoplay=0&enablejsapi=1&origin=https%3A%2F%2Fwww.tel-bar.co.il&widgetid=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 13:11:09 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=axFYwo2G4M4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=mJJ_ShbCtMY; Domain=.youtube.com; Expires=Sat, 25-Nov-2023 13:11:09 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+508; expires=Wed, 28-May-2025 13:11:09 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.tel-bar.co.il/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0
88.218.117.143200 OK 5.3 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (5442), with no line terminators
Hash 59a7d95a0b998f7857ddc7134681842d
81f77ca35b6fa4449f56dbfc4292d88625577a4e
46ea3871fe673669c8802726b15caac8ebb5a416eaa8ce2226d32bb343695f9e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 11:30:17 GMT
vary: Accept-Encoding
etag: W/"64199549-14c1"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/js/lib/slick/slick.min.js?ver=1.8.1
88.218.117.143200 OK 43 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/jet-blog/assets/js/lib/slick/slick.min.js?ver=1.8.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (42862)
Hash d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jet-blog/assets/js/lib/slick/slick.min.js?ver=1.8.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 07:37:16 GMT
vary: Accept-Encoding
etag: W/"638859ac-a76f"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
88.218.117.143200 OK 8.2 kB URL GET HTTP/2 www.tel-bar.co.il/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (8365), with no line terminators
Hash 08e6714eaf3cfe8f3c7839f22d90ba4e
94fdad68854d0d3482b877aef7ba7c2eb265c621
e424039d5a737a1bda8a5ded60919e5067085729310762eebb09c20e07d249c8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:48:25 GMT
vary: Accept-Encoding
etag: W/"64251499-1feb"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.13.1
88.218.117.143200 OK 24 kB URL GET HTTP/2 www.tel-bar.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.13.1
IP 88.218.117.143:443
Requested by https://www.tel-bar.co.il/
Certificate IssuerLet's Encrypt
Subjecttel-bar.co.il
FingerprintC4:98:73:9D:99:9B:A7:FF:5E:96:D1:01:3C:34:41:87:3F:60:D1:BF
ValidityThu, 11 May 2023 20:33:36 GMT - Wed, 09 Aug 2023 20:33:35 GMT
File type ASCII text, with very long lines (24336)
Hash 073dd5178e415ff99eb381cf4a72f815
d27ad50a0e459dcdfd6121138d628e1e1d566248
a9eba9cdd7058e2a7ad28937e19dc6820a079e11ed1728903ceb27a42ffcc9ba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.13.1 HTTP/1.1
Host: www.tel-bar.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tel-bar.co.il/
Cookie: TS01a42730=01465a598c5429570ae830a91c4bdd5f49d745b5b2b224b0152030e5d5a072a3933a4316ed5713e76fa63bc94cf91e45e3ca22db0c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 13:11:06 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 06:41:29 GMT
vary: Accept-Encoding
etag: W/"6469bd19-5f3c"
expires: Mon, 05 Jun 2023 13:11:06 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2