Overview

URLhauser-marketing.com/
IP 104.21.72.95 ()
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 03:00:52 UTC
StatusLoading report..
IDS alerts0
Blocklist alert39
urlquery alerts No alerts detected
Tags None

Domain Summary (30)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
stats.g.doubleclick.net (1) 96 2013-06-10 20:21:11 UTC 2022-11-27 19:15:13 UTC 142.251.1.154
px.ads.linkedin.com (2) 522 2018-06-15 11:29:56 UTC 2019-09-20 11:09:24 UTC 13.107.42.14
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-27 05:29:56 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-27 05:29:57 UTC 34.117.237.239
ocsp.pki.goog (9) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-27 15:24:12 UTC 142.250.74.174
e1.o.lencr.org (2) 6159 No data No data 23.36.76.226
hauserart.co.il (73) 0 No data No data 195.238.120.200 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-11-27 14:32:16 UTC 143.204.55.105
script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-11-27 16:27:57 UTC 143.204.55.96
cdn.linkedin.oribi.io (2) 0 2022-10-19 14:36:39 UTC 2022-11-22 13:10:54 UTC 54.230.111.112 Domain (oribi.io) ranked at: 21988
hauser-marketing.com (2) 0 No data No data 172.67.179.200 Unknown ranking
r3.o.lencr.org (7) 344 No data No data 23.36.76.226
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-27 17:49:59 UTC 142.250.74.168
googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-11-27 22:03:48 UTC 142.250.74.34
analytics.maskyoo.net (1) 289712 No data No data 82.166.96.25
ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
in.hotjar.com (1) 1746 2018-10-22 17:15:59 UTC 2020-11-20 16:45:40 UTC 99.81.68.255
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2020-04-26 08:32:02 UTC 143.204.55.37
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.82.48.240
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-27 16:50:08 UTC 142.250.74.164
www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 31.13.72.36
cdnjs.cloudflare.com (1) 235 2015-04-17 20:46:33 UTC 2022-11-27 12:10:24 UTC 104.17.24.14
snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2020-04-10 04:11:37 UTC 23.36.76.210
connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 31.13.72.12
www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-11-27 22:42:42 UTC 142.250.74.35

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 hauser-marketing.com/ Phishing
2022-11-28 2 hauser-marketing.com/ Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2 Phishing
2022-11-28 2 hauserart.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0 Phishing
2022-11-28 2 hauserart.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0 Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-popup/assets/css/jet-popup-frontend. (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements.css (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elemento (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/animations/animatio (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-rtl.min.cs (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9 Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/nicons/css/n (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/br (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1 Phishing
2022-11-28 2 hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11 Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.s (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.j (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-li (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?v (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.j (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9 Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2 Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gal (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.j (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver= (...) Phishing
2022-11-28 2 hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 Phishing
2022-11-28 2 hauserart.co.il/wp-content/uploads/2019/12/Heebo-Regular.ttf Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfon (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/uploads/2019/12/Heebo-Bold.ttf Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfon (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons (...) Phishing
2022-11-28 2 hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4 Phishing
2022-11-28 2 hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4 Phishing
2022-11-28 2 hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.72.95
Date UQ / IDS / BL URL IP
2023-01-19 03:01:40 +0000 0 - 2 - 4 pzfxxjq.cn/luluhypermarket-xh/tb.php?mo=ky167 (...) 104.21.72.95
2023-01-13 06:57:13 +0000 0 - 4 - 0 boyhilnasi.tk/ 104.21.72.95
2022-12-08 18:11:04 +0000 0 - 0 - 3 edu.log.ng/USA 104.21.72.95
2022-12-08 04:11:03 +0000 0 - 0 - 2 edu.log.ng/miami 104.21.72.95
2022-11-28 03:00:52 +0000 0 - 0 - 39 hauser-marketing.com/ 104.21.72.95


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-01-30 19:05:18 +0000 0 - 2 - 1 goodxstore.com/fajar/dating.html 172.67.186.144
2023-01-30 19:05:05 +0000 0 - 0 - 2 r1.aheryngrant.com/ 104.21.76.195
2023-01-30 19:04:23 +0000 0 - 1 - 1 www.sms.studio/s/y7FS45?did=363 104.26.1.95
2023-01-30 19:03:29 +0000 0 - 0 - 9 www.usbfund.com/?utm_source=bayengage&utm_med (...) 104.21.95.53
2023-01-30 19:03:31 +0000 0 - 3 - 0 nopy.to/50jvQgg0/Those_days-Patreon-v0.9-pc.zip 104.21.234.27


Last 1 reports on domain: hauser-marketing.com
Date UQ / IDS / BL URL IP
2022-11-28 03:00:52 +0000 0 - 0 - 39 hauser-marketing.com/ 104.21.72.95


No other reports with similar screenshot

JavaScript

Executed Scripts (48)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (132)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: hauser-marketing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.179.200
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 28 Nov 2022 03:00:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://hauser-marketing.com/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kHJxby%2BAAVAMM0Mkem9BGdSsarz3i%2BGM58kSBqpaMlkPEWCIBtAczfavLri1xqn2asHqOFXFd%2BskAAQ9U2pFOwQShstUXdWt6OUXmeBMwVuG9fo3fvaidwJPeZr3JdLEnGSAxGVkdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 770fdacd18770b69-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   323
Md5:    667809aac4b12b869e4995373da4f6a8
Sha1:   df6eb1fa9531299f50f8da197aae2463b67ad1bd
Sha256: 43874c8876b00bb7a5fd14eca29a6cfc0692dd7ab304ccedd9e7dbe95002d088

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10327
Expires: Mon, 28 Nov 2022 05:52:48 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5024
Cache-Control: max-age=118456
Date: Mon, 28 Nov 2022 03:00:41 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:54:57 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 02:17:45 GMT
cache-control: public,max-age=3600
age: 2576
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12992
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 3Th73xGXoAG68bZ7bdCSfp6N0oyZ0FJxQ6+iqxov99ZdhnBhwDVRDCrOSBZqiZgorA3FJrdCL18=
x-amz-request-id: 70DN0ZD22HTNP1GW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 02:41:53 GMT
age: 1128
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 03:00:41 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "5083EAC97783456F96E570C9DA3F4C1FD85167346919D0DCBE16565AD1470CEA"
Last-Modified: Mon, 28 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Mon, 28 Nov 2022 09:00:35 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "5083EAC97783456F96E570C9DA3F4C1FD85167346919D0DCBE16565AD1470CEA"
Last-Modified: Mon, 28 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Mon, 28 Nov 2022 09:00:35 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 02:11:12 GMT
cache-control: public,max-age=3600
age: 2970
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5765
Cache-Control: max-age=114135
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:42:57 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: hauser-marketing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.179.200
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Mon, 28 Nov 2022 03:00:41 GMT
location: https://hauserart.co.il/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HdLdiFqlMJpZ3UpLxhT0hiitNtcWN6zU%2BodCZoMlMiMG8QCZrzvhvfvpSOi1g0fdrY8quyH1oZLMFCcrgyo54ghIb3FuSgd86EoaGi%2B9YyoCskj1sm3m8xE7MAX9XQov2iIHNcXe6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770fdad0483f1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   28611
Md5:    38747e5a003ac1b7203f7c35c1167aa1
Sha1:   cb220cdeadb2d3146c1894dd3d1eb1798e968604
Sha256: e55792b5dd50a16ab69cbc284e276ee994a9628acae5ce48eb871384785a78e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.5.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:47:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7406
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (53734), with no line terminators
Size:   7406
Md5:    0bc418c363b7ac76808902dfb8535e62
Sha1:   630b75a8c8c137e871d41820e8e6ae7a4a6d030d
Sha256: 34b38f3e857ed2df6402485fc8902dddcb2fad8a03bde64eb5b970340445cc7c
                                        
                                            GET /wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5187
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43590)
Size:   5187
Md5:    ed7978d25a247ac7f86fe86e8f6bf3d6
Sha1:   45c278fada1b946c7fe41c46297abac463e665be
Sha256: adf3dd8e7c261b0155e8322e846c2890d86bd03e01474224428721703522ad9c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1257
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5231), with no line terminators
Size:   1257
Md5:    8035c3787aa7fae092f9e18690b438b5
Sha1:   294c97613ad4e2e3caeebcb83d9e49661edea71f
Sha256: 06c809abb277e168bbf361674c70f715741941fdaffaadb433df3129869c58f6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   291
Md5:    881fa129e096c858c4674ac9125d0657
Sha1:   70ae406f91ce7d6916f48f8739546c8843cd27cd
Sha256: 9fe21befa97e92ad8211c6abf8d65f550102a216d74010c9bd0df499c3e6e492
                                        
                                            GET /wp-content/themes/hello-elementor/style.min.css?ver=2.2.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2023
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5829)
Size:   2023
Md5:    207cc655945ae41749768065cae6d79a
Sha1:   2448c0a1103491a9365cbc1ebaaddc6226ee8993
Sha256: fceb83abbde7514721e92ca3e4df4866ee1a8824544cd468b138d40c88e14885

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2070
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15939)
Size:   2070
Md5:    a5ef075e3aa937418ebe77f53c000df2
Sha1:   81c17ee9eba23d017dfef780c41c4aa5b82385e4
Sha256: 5f934979bed7f1bfde90e05ea8c3283a0fcd6221d76849e278d72272575d9cad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css?ver=1.2.5 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4100
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (41990)
Size:   4100
Md5:    28206f6946cfb38257952deadfb0b64e
Sha1:   a32a4816f87f980425a003fbeea95c6844401778
Sha256: 6d82c81715ff54d7da5241b712a6aba26829ffb99bd23ab6dc8c178aa9d47382

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1903
Cache-Control: max-age=150966
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 20:56:48 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ynrUnTrtOVm1rv1G6DKWlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.82.48.240
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cgv4dgHVGoXcG0gTiVLUHO4EwPY=

                                        
                                            GET /ajax/libs/gsap/2.1.3/TweenMax.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 28 Nov 2022 03:00:42 GMT
content-length: 34868
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-1c604"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2712424
expires: Sat, 18 Nov 2023 03:00:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EhpUZW4I5tz4z28VfvWQafyztZceqnJI9tLvo2le67fmEJXiPjoJoWy45PFf8U6476lZPpTzk5nrukIKoRNVm9M%2FTIRZ0yStzbrzl%2Bspdm0wFM%2Bq7QJZFkASDKzG3WDadORubl%2BB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770fdad4dc87b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32037)
Size:   34868
Md5:    8ec306b76e7dc20e47d5f986b68d5932
Sha1:   6bc2204b8061f8d54f416b0d1df1343c2f42521a
Sha256: 9b623920be3228e50eabb5af38e599acdbdc4fce6b2f1d7eb884cf3bb0245d7c
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19358
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   19358
Md5:    f25a06500b8b3e969a228dc8e615f870
Sha1:   8f5d2f95ed6c93743b202a2311992ca629118a53
Sha256: 7d44cf516a6c136fa776266d7884afe3cedddb1404fd00d396af27b25385bb61

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 753
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4281)
Size:   753
Md5:    0b31121616e6a30985386a2f95402350
Sha1:   dbcc1d6d16873946e3620d5bf41f3ba6dd3cac65
Sha256: ce3438df86119db283ad6b8473b9b715477eaf65209abb8fb809293f8584851e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2652
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17381)
Size:   2652
Md5:    1cf6583735443eb1b4ccf7c343f8ece8
Sha1:   bc83af5e506956cba9c89dcbc273ca47de4614c4
Sha256: 1de02670d851980e096d0de4e2bceb0b22b9b0a53a0aceae56502231b0a2d1af
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3186
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16591)
Size:   3186
Md5:    4c744fcb7f1ce80fc89fc4822a19a7ec
Sha1:   4452abc6a2a3122148bcd4ffa6a4f21a58d3ad94
Sha256: fbce79917462085f52052891924b7400f949c294bfa5e1a74f87f04090c1faca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   2442
Md5:    d2db71c82a8f672aea59a3e050cd8cd7
Sha1:   af626566f94b3164e4310288cfb142431e8349a6
Sha256: bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-legacy-rtl.min.css?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 446
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3815)
Size:   446
Md5:    385f0211935603beaf0cfe02c0eaa219
Sha1:   76b00ea187e51e945e0d0bb94a6cb4626dcb8080
Sha256: b08c444bcab408e2f6b3d9d6915037c1a2df5729d2bf92fcc883c2e9fe5bd556
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-rtl.min.css?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14810
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65496)
Size:   14810
Md5:    3c4a02dbf9f7ad363e35d8ea6bcd3e66
Sha1:   9c9f9f5c50f698842b647f6c796666b274199e15
Sha256: e30594b7582aae01436b83c9f4a4ca47d68b5b0aeba940d9641bdab73d113a88

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7706
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   7706
Md5:    caca6d269df16abfd6d99daa87d0529f
Sha1:   a3b0f78c2671f48f8514735876ea28961cf0c655
Sha256: 7f3d5d6471647b3b2ac4a8e51da454d141ac5fbf38597dc647411e9924042a59

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.2.9 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 424
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1773)
Size:   424
Md5:    0445393f7f93a81a5ce2dcf7b99306d5
Sha1:   6861c4db79d027fd773936fb52f1813bbdc90101
Sha256: d08b872120184166d6a89e97c09eb85ef79ea9ecb29bc52ead12df77f7a34b67
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.3.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2508
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21755)
Size:   2508
Md5:    29e53092975483e0f75ce451657df4d1
Sha1:   f2670557ce6faea27714c1eca67862640b6a6838
Sha256: 15086590b560239a1328a68ce6ee43384711aea6a6d368d7e36d93ec14a58d3e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1903
Cache-Control: max-age=150966
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 20:56:48 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.39 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1153
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1153
Md5:    eb5c4ffafc78f7294b97e68561f2c2e8
Sha1:   a7362629127fc2f168e99a32bec7658e4e37e60a
Sha256: 38ffc2f178257688359636180382091aae9d1667640bf6966e689d3effd0af4d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11671
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55567)
Size:   11671
Md5:    77caa9a27dd432b0aaed9ebc222f86d9
Sha1:   df246c8ccfd81ac8d679c97f79257e50eed18f29
Sha256: 103fdf457f74ff838ad9a8bd8d80bbd7e54489cf14c6a4834dd0ac477c4ab608
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (482)
Size:   286
Md5:    1a7b33fe535e228387e069a8d20b0f84
Sha1:   3d85c429ac46c7b727805dd7b01b0d973688f64d
Sha256: 4408d67c7abc6c487d492d3913ef369a6291514decad20419d6d986c978d9ed7
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 278
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (475)
Size:   278
Md5:    13fcc2ca024ea81758d42fcd8a2d3c52
Sha1:   e1595b8216ac1d12a242108bcba1a45d517edaa6
Sha256: 81f193acad74c624459877c3c671d191da848ec383dc01a2245ef5f0a49f7138

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   521
Md5:    01aad6282b865307d67b9739bc3ccf90
Sha1:   f63d80bea0004dde5f1ca30da5e8262398a7e4ec
Sha256: 9f06c1399fc71b51c739ec33507ffe7c4c251849e4d2a82b6210cd8ab64015a0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-length: 81
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   81
Md5:    28d1ac9aa1af4555cd35f48a1f46f154
Sha1:   79008439f572d828bc71ad56c73a9af0d21cba9f
Sha256: faa45aaa406aa90c1627ff82887ed16a8854cb7c14977a1ef4a3d81465dcfe48
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.5.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 15 Apr 2021 06:28:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   663
Md5:    992198ff853eb696f88bb0ec8586d015
Sha1:   a6262428de1b6c68cccf617d2a503f5a3bd3aecd
Sha256: ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25115)
Size:   6935
Md5:    e8d8c6e4997a420abc51e5fa8c1caa8b
Sha1:   39ae930f057de725cff8549eed82f31f8d0816c1
Sha256: 730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1767
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6595), with no line terminators
Size:   1767
Md5:    bc7ad49bba8c6fece75cf20e318bde6d
Sha1:   329866570ac3995fb33f1f6b55e6ea3d3c85d25b
Sha256: 479c4099528678e6689805bc618a02c300d62a0f5b41800672c57fb1a458a50e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 15 Apr 2021 06:28:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2302
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6217)
Size:   2302
Md5:    6105300334553de6c32933aa6e78f2f5
Sha1:   582dca69df30cd3995c109f3fdaf2255f3153c40
Sha256: b43425e9720c0375eb0043035d1e07b6d94792fdd4ec82e240b5605a1f3a06ea
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10725)
Size:   3331
Md5:    8c5a95ea30259ea6dc50f9f1357dc31a
Sha1:   be1fd6dc96f6ba018bbfa49a058390700ead5bf0
Sha256: 914c938c132cd311967ed71676397704bf8d95abf2c51c79937f43be35030a70

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2867
Md5:    869caa171b68cbec9fee5abbfb944ee8
Sha1:   f237e485e41f88b77384cfdb880f9d5a8f46eac8
Sha256: 25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1023
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2577)
Size:   1023
Md5:    f5c8273175207966436fe071db580974
Sha1:   643680fc9a1703cb3bc469bfbb3dbcbf6425e38a
Sha256: 8b0897055f6baa5de94adb95e824af4afd1dced496711c905c8b7c09738aa4de

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4039
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14207), with no line terminators
Size:   4039
Md5:    f63e598235d5e4e1f5b62563c76b17f1
Sha1:   ad27f34475969f5f763aa6f54e2bf88f10b76e2e
Sha256: adb027ddeb6e0c4a09550f5d35d741e0c3232f17823e3903e07be81f424bbecb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5923
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (547)
Size:   5923
Md5:    7a3f6ba5188c0f71035821a235be855c
Sha1:   9c1dd96896a9fd858fe02929257a606290050f54
Sha256: 0f501001aa81d10a4876a04af2f0a682d3f76e99b75969be8dbea55a19279e1d
                                        
                                            GET /wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5698
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5698
Md5:    c481962afb3146e483bebb27dc30978b
Sha1:   aac3780eef88efa51be0e9649899ce8414d956a5
Sha256: 84a2beaec975ecc21b18b75752497b905153af2a5c8177683c4a756c100e47ac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4182
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4182
Md5:    600e1bf3ee47d7b841a2851fe104c136
Sha1:   ad1dd17ba8bfd9634ccb07879c531dd596458dfb
Sha256: 23cfa9e00228fa9c32e9b73cfd7a57303a13c82aac5f851e3b62347b6c3a8610

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2474
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8501), with no line terminators
Size:   2474
Md5:    b85e576e1a1a396aad8219ef580d1e13
Sha1:   595d7b3d3ee12e185b80698c7f8ccf440e3d2fce
Sha256: da87637c653a1a8c95703cb32066e383436ef8b966a014f059c6c780c6535627

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Sun, 18 Oct 2020 14:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6807
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   6807
Md5:    6997ea5fe4096d94bf21d12ec59bdfb9
Sha1:   9866e7c544c78aae73f4b3c7cf77fbebaafbb134
Sha256: 554ab8165a891b7018a52025acc3fa6b51c84b905156130548872ada9845da8e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16819
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31960)
Size:   16819
Md5:    798db516ac35eafcbfb2628565626656
Sha1:   93be253e4f6675617acb191424f3b93906601b02
Sha256: 2ed1b415798bd9ac086d672e657772c67be85a49ebdc22294e684158f417cc80
                                        
                                            GET /wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 814
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2696), with no line terminators
Size:   814
Md5:    612d48adc15e439f66079c3ab31342ae
Sha1:   42dafc5d8acb78be70182f299b05149d9a87152d
Sha256: cecf71b29e8421d77a161f8bcaeb6a47dad34448807d0220d6c67529cf0f9269

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2128
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8139), with no line terminators
Size:   2128
Md5:    e91dd8241f0873ca5b74baebad43d22a
Sha1:   8ed9aa3d136efaae79df981ccfb6b097c97aea2d
Sha256: 4a4c64bb9a3c25f4d272a837f537d5c9c34aeec91c8333926ce300e6962db892
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/frontend-rtl.min.css?ver=3.0.5 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21727
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65493)
Size:   21727
Md5:    32cc76ee4ee898a4ca23646ef097beb5
Sha1:   eff6ea98725706ec647c932d7d1d1c72781ebd3f
Sha256: 33c19804778778a7b57cb973fe0d7ec0528c984fa6858f8417c0beb50fe06ee5
                                        
                                            GET /wp-content/plugins/elementor-extras/assets/css/frontend-rtl.min.css?ver=2.2.39 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23528
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23528
Md5:    db242d95fca205c1e4db1a1738c60840
Sha1:   7e85807cd06392c1965b0dc50183ff774f48da07
Sha256: bbd3e430825bd426c4f9eec89d8c91683c535c312c1deafaf17d34cce921d471
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32853
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   32853
Md5:    a95303ca3b1a9372809d72ffa31bca40
Sha1:   65130bca144d3b49d5f97387173c423b9b4abfe3
Sha256: c5d914b6693616fcf2c61bc363660dcc5f6ea7de5a25b1d6a5a2a95f39846565
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17538
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47304), with LF, NEL line terminators
Size:   17538
Md5:    09002a8a6be6935535db86f378c2f7d0
Sha1:   89dab0ef4c072538deebc4f7f2468331d189475b
Sha256: 8d1418695c37b3214a48ad4bde5387b2001af4cd94eebc131d1ff4c99b1da68a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40402
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (39674), with LF, NEL line terminators
Size:   40402
Md5:    3961dec87dcf6774eab3faa49808c919
Sha1:   f09a546606b6e5b0f800ac1921069201c28a98d3
Sha256: f7bd3702c3fa89c386f6291a513f8833ece5cd01df902723156781e36e8acd05
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   34004
Md5:    83a90323ac82b98062b4b2c8ac8c5051
Sha1:   d7d376677e3546b756b4fec6219be72b85c4f8f5
Sha256: 7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30839
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47239), with LF, NEL line terminators
Size:   30839
Md5:    99c48fb7f5ff91210c0236e46ee336b8
Sha1:   aa3e8cd66a704dde0523fdd5a86ff2ec96cb3097
Sha256: b0ddbf4f9e168d5bd7e11f418c2979c2c551e898e014d6038efeb86708aa2f7e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18222
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57042), with no line terminators
Size:   18222
Md5:    b9bbb6d7d056c0cd88325cef28e8a4d6
Sha1:   c0c83fc95c8304a45788b8d909a0c019e2489c42
Sha256: b5b999d0827d8f68dee82ca2d84b4d0b4e7aa16219b6204a47335bbf150f7d24
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Thu, 15 Apr 2021 06:28:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4316
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11272)
Size:   4316
Md5:    cbe8cb2fedf8a769a95b7fb14607cb1f
Sha1:   bd8a18991728b257e9eefb89ba6ea9058860983a
Sha256: 0be8d8f894d47080f1723551cb8adf6c158249dc6f99fb06639ee9e5d332be4f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/08/ball.png HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
accept-ranges: bytes
content-length: 1948
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 86 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size:   1948
Md5:    f0e5d7ded53a284748f66a3113c4f95f
Sha1:   5be90ca7f014932290af8ff2fd23907b9e4fc786
Sha256: 34c797bcad1cc8be2670843f6c8ada533b8939295b892b5ce7ea4121b589a2f4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-NNSZDXT HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 03:00:43 GMT
expires: Mon, 28 Nov 2022 03:00:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23016)
Size:   80577
Md5:    c476d28ca07d3dbcbe1efe9ee327cec2
Sha1:   e784e9d2e2f31e5e39df42198f0de6a04330dabf
Sha256: c956de891ddb830cc4554368391f370315a7796bba47316a116b17cfd3f77e41
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/01/benleumi.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 11786
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   11786
Md5:    f27b59ded1b29862dc855dc42e9a0717
Sha1:   e1456fe747520191078a849e835557777a893c46
Sha256: b985185293eb038da75e7a178b23cb7b9b5656176f885065c543fc18c7a2946f
                                        
                                            GET /wp-content/uploads/2019/01/menora-1.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Mon, 14 Dec 2020 09:09:31 GMT
accept-ranges: bytes
content-length: 29077
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   29077
Md5:    8a076bc4780b09f41deb9579d3cd09f1
Sha1:   ff2bb9371e4357e59ce75f7ee4c535f72224c3bd
Sha256: 8c4049d43509b0f7c122ab08524cd3acc248f04a8e83a95eae4f33c29bd0ff93
                                        
                                            GET /wp-content/uploads/2020/01/postal2.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 24834
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   24834
Md5:    b70e9ee06c2c42a28917ddeeaa57ea00
Sha1:   257ec7487af4204bacb92e1126f3ea1d7bdcd96b
Sha256: 5e1014a945e11ad657b5cf4fce286b864a16e317ddace7a5ae960aac99328715
                                        
                                            GET /wp-content/uploads/2020/05/tamir.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:56 GMT
accept-ranges: bytes
content-length: 39862
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   39862
Md5:    6ef67a49b605b01ce465d48e61f365d3
Sha1:   6fa643f4f9b3659e5000981283a5d6b3e3109b50
Sha256: 598b12853da31946bd766d34b082ff029c629a6e003916b05cf0e6a4edd77ff4
                                        
                                            GET /wp-content/uploads/2019/01/avshalom.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Mon, 14 Dec 2020 08:46:44 GMT
accept-ranges: bytes
content-length: 117871
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   117871
Md5:    f097fab50bf33d988a96d171031c53b4
Sha1:   b05b4b3cebc69cdd98de3bc7e1c7107671d1bf65
Sha256: 03b6fd2fc6222c72c495ae643f823630a73f68fa77f68d83c37242170560f1ac
                                        
                                            GET /wp-content/uploads/2020/01/ELI_7406-_-HR-%D7%A9.%D7%92.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 43604
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   43604
Md5:    5a0b1496b1e4abdc05a6bf2aea6c9974
Sha1:   8805d410d8c897ba8a699502a139b276c8301963
Sha256: 01ebab21d0a2895dad663dd07f0f53d9f6a441fbc0a470ce1ec12a38cf7c18a9
                                        
                                            GET /wp-content/uploads/2019/12/Heebo-Regular.ttf HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: font/ttf
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31891
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.HeeboRegular2.001;UKWN;Heebo-RegularHeebo-RegularVersio\012- data
Size:   31891
Md5:    a6a6bbf822b877bb21f03d8e67564674
Sha1:   730e6c1051f9de8a3fcaf8544a74d7a3462511fd
Sha256: 5b066df2d1f9431faa68306a97762e86aea891443ba2163356bf25447a081406

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 76084
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Size:   76084
Md5:    f6121be597a72928f54e7ab5b95512a1
Sha1:   b2c74520c3f506efbfefca867918e5ae28bd5222
Sha256: 787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/12/Heebo-Bold.ttf HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: font/ttf
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31566
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.HeeboBold2.001;UKWN;Heebo-BoldHeebo BoldVersion 2.001; \012- data
Size:   31566
Md5:    0cfb0d9ecaa16fbce414f86ef7267e7b
Sha1:   f3c10cd8008152e2b6fa394d46ebafeffdd414d1
Sha256: 9921118966ecfa71d77b1745618fc8a249bff274e7c328300205a50e2e40bdac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 75936
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Size:   75936
Md5:    822d94f19fe57477865209e1242a3c63
Sha1:   f356aa2e4d9b7245985d312d3bfba180f774e3b7
Sha256: 8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/01/massad.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 35319
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   35319
Md5:    476454354e7981d39b4d929e271c550f
Sha1:   2a786d69bf55f2a3ecaf92ad701f7fd05c24ee1d
Sha256: 028e6e692428ec2bccb3162b11c08878ba660bd3a7d72a2bfce9ac88ccc2b9af
                                        
                                            GET /wp-content/uploads/2020/09/Benleumi-hadmaya-12_1460x1000px.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Mon, 21 Sep 2020 09:51:06 GMT
accept-ranges: bytes
content-length: 37750
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1460x1000, components 3\012- data
Size:   37750
Md5:    b5849eb2dc517c776d3d79b4ff5957cd
Sha1:   66981826fb22b056b8e14e2740d78f0ab5b6e080
Sha256: 614f6f1cf47fa6068e3fdd0ab9f936d2fc36a5b8ce1fa363c8a8c6ff49a21379
                                        
                                            GET /wp-content/uploads/2020/01/masait-migdal.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 51478
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   51478
Md5:    9c19e76d21ce8cf8edb997f989e5b432
Sha1:   50e0743dffd795a2b4081ea6d1dccc5cbba6e007
Sha256: 04f0b43ba1ec235a0af6cd9c47219f0fe7001dde2ed27bf918ccb62aa93be57c
                                        
                                            GET /wp-content/uploads/2020/05/hakeren-leydidut.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:56 GMT
accept-ranges: bytes
content-length: 83166
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size:   83166
Md5:    c387c440f114cf5539fa70d1890e1d9f
Sha1:   1cb8029114e6b468f0d4dd884972030fa0f160b5
Sha256: 1b079ecc880d6932311bf428f44a1cab53c46107d01138da8e419a6b5aa37f6b
                                        
                                            GET /wp-content/uploads/2019/01/DAF-1.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Mon, 14 Dec 2020 08:44:15 GMT
accept-ranges: bytes
content-length: 540391
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1460x1000, components 3\012- data
Size:   540391
Md5:    ca17a041e1902f470b64a73acbdc2cfe
Sha1:   3723f4a6a6c95f5b710462084250e74bac620872
Sha256: 1fe0015fa36c17202104a9d3b54305c6cdcb8b7220ebc41b401361ad6fdcdfc3
                                        
                                            GET /wp-content/uploads/2020/12/shutterstock_583565059-scaled.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Mon, 07 Dec 2020 09:28:44 GMT
accept-ranges: bytes
content-length: 293723
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 2560x1500, components 3\012- data
Size:   293723
Md5:    69045a5ada76bf235761b6faa4791277
Sha1:   b0f4c97141c50fd85bdcd857af1972688696e2dc
Sha256: aef17bb30148a226c94fb17ba2729a016c9d2a588f06e5db8a26e1c667c3afe1
                                        
                                            GET /wp-content/uploads/2020/08/Briuta_1460x1000px-landing-mailer.jpg HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
accept-ranges: bytes
content-length: 462212
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4167, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=6084], baseline, precision 8, 1460x1000, components 3\012- data
Size:   462212
Md5:    43c805a8c49d44c4272afb3e35f22c23
Sha1:   c95e26e42b14a30b634310f683d759e3ce351b3b
Sha256: dfece7b0a6415843f4b8546ce784125c7a61ad96d911298696a2a1cb914721ed
                                        
                                            GET /wp-content/uploads/2020/02/logo-hauser.png HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Sun, 06 Dec 2020 09:59:54 GMT
accept-ranges: bytes
content-length: 1837
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 100, 8-bit colormap, non-interlaced\012- data
Size:   1837
Md5:    c236c48f9fe30c2fdd0da23cfb500d2b
Sha1:   9a4a5af03f6b2be43bbd3c12a1fed846fbc9d04f
Sha256: 16d346d24f567bf70c0ed3d60243047fb63852f0bae8b24e00a8a03c4e350433
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
Cookie: pll_language=he
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 84384
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 84384, version 1.0\012- data
Size:   84384
Md5:    39c01512d658d563a264041101fc48cf
Sha1:   d58f4484f3d5ce3179766030978e26c1ce805f96
Sha256: 592ae329d50413fb8f61112a94ac638ee7e1dd07ce079b660bf9ab1fd5d49b31

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/uploads/2020/08/cropped-Untitled-1-192x192.png HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:57 GMT
accept-ranges: bytes
content-length: 14095
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   14095
Md5:    cc89473f313199dafe84c3b21baf01bb
Sha1:   17b082bbb4c120301ef7c72822592c2ee76c1b67
Sha256: 9ee91ae662d1709619f66d478c3fbaaa93e70c1051b98d419ec7986e190b6ab2
                                        
                                            GET /wp-content/uploads/2020/08/cropped-Untitled-1-32x32.png HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
last-modified: Tue, 25 Aug 2020 07:35:57 GMT
accept-ranges: bytes
content-length: 1299
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1299
Md5:    69f4adf6601302f61035a7416527556c
Sha1:   73a8a7f612c16de1a3543a8ead407dd70d2d0f87
Sha256: ad888067c27fe671c9aa23e4b7b0209047e599a20fb5ddce0aecee508372984c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 15639
x-amzn-requestid: 98e846b4-287f-4698-9529-25bcc2727a4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78dGReoAMFiDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e9-62c41b2717bd8e6f3b3797da;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AhbL-wXc_eYsgxdjf0DIEJD7Z3XfXMjXwDC52Bz_SnvmmWAhl3g99A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:38 GMT
age: 18545
etag: "5b97bfd787afcb912cdbef0f137f78a059082992"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   15639
Md5:    0a4e0bb1e2748bdce6bbf685a910f0fc
Sha1:   5b97bfd787afcb912cdbef0f137f78a059082992
Sha256: a7bc9adeb22cb57675e907bd961a6f554e6b7a46414ed782bcc9b53d68b1c328
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 70UuQl2XCoplrZYENrKleE2mcvB-xP9zZGs8Tuh21NidSiHvA97sXw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 18574
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7556
Md5:    7e5051d8c06f69e1842a9295ce256a36
Sha1:   1a542a53ba0b1cd0fb23257ebed8166555f16dfb
Sha256: a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 18543
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10119
Md5:    15bd53848c7082464273007e010c54e0
Sha1:   9a3ca698ca1aeae695923277ed2244465e01a1ea
Sha256: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6FSZ3Zw-s95LlrU3skAr5_g6m36c9SQ9_6vA3HFbMKYTTFzJRBJ76w==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:43 GMT
age: 16440
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4708
Md5:    4060284252d32701c42e2df4a83970a0
Sha1:   a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
Sha256: 53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A5n6y1-hpgr4vynnRXkEZNvCvjlNGH6brl7eYMsdN1MST7YoD2BPgA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:13 GMT
age: 18570
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5989
Md5:    fa848cb85e85df184b078fe7aa95ae52
Sha1:   21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
Sha256: 37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3ggibSv4guzAQjW77yMg7HTp5JCBi1B9dxXi-Zy_-Vw0b6lP1PAGyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 18574
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10813
Md5:    005e5ba3c9588cf389a58195001b64e3
Sha1:   238a7439d887fb3aa7f1302eeb43fce62f08441a
Sha256: d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
                                        
                                            GET /wp-content/uploads/2020/08/Render-1080p_3-1.mp4 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive

search
                                         195.238.120.200
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
location: https://hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.76.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=49146
date: Mon, 28 Nov 2022 03:00:44 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12961)
Size:   4581
Md5:    c1a25b303b61b25e995516f5559bcdea
Sha1:   3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
Sha256: 2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 02:41:08 GMT
expires: Mon, 28 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 1176
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6180
Cache-Control: max-age=164239
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:38:03 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.34
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 893
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 03:15:44 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1989), with no line terminators
Size:   893
Md5:    dd4d90e170403af1da1c0f224aab2496
Sha1:   6e5fc23be5ed883e4b616ab50b2fdcc6e90fac38
Sha256: 3b10c346e9bd080d58fd635e82c9ce9fa19641cada152e8daf505920a928cdb4
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: QKTWHOsEgAwWsl3U7n8SLsrjZoOfJMuJSbec5UNr/I5T/ZFSHOVo/qdo0BoHdBMPI3SPAPRF/S+VPxq+PwA1+w==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 03:00:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   27340
Md5:    44ecaa3c2a4929a40141edc4540aaf84
Sha1:   f29a573182333b2500d41bfc389d6c5232dfb348
Sha256: 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6180
Cache-Control: max-age=164239
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:38:03 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.105
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: koWudy311nUK6V-sG1FgUmrksCIt_TpbMf7tKh2nqmnEkgYJFhuMxg==
age: 395438
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size:   1035
Md5:    e0652b84b7b3b650769c759fc520c3f8
Sha1:   0b55d6e28613350c7f41b88f19e726e6751ad03b
Sha256: 94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
                                        
                                            GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.96
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JIt8PCyATc9UArjartVxZyIjvbQBFCYJDoqq1yAz7FpQ6ksjTdEv3w==
age: 327098
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   68720
Md5:    53db6c810ee48127f87a9c79e206fc67
Sha1:   aa53e521ba10b23524afc519c6e6ba8d1eb5147c
Sha256: f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135071161-1&cid=1183344706.1669604444&jid=2125616103&gjid=1784831859&_gid=517822912.1669604444&_u=YGBAgAABAAAAAE~&z=1618768003 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.251.1.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://hauserart.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            OPTIONS /partner/2001641/domain/hauserart.co.il/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://hauserart.co.il/
Origin: https://hauserart.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.112
HTTP/2 200 OK
                                        
content-length: 0
date: Sun, 27 Nov 2022 06:04:58 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Lefo8VJcrM3_XwPdPKcnAo75pGDsIXCRmzZ3VESk6Fm3UX_LwRe2Q==
age: 75346
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2001641%26time%3D1669604443620%26url%3Dhttps%253A%252F%252Fhauserart.co.il%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJVmEQCe-3rBAAAAYS8LgkWzQLwaSR1gQOnWpCd_U4lw9fsCpRPyycoG-vGJ_xqpTfp9jaoU66LYw; Max-Age=2592000; Expires=Wed, 28 Dec 2022 03:00:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQKnPZsWUE65HQAAAYS8LgkWWf2yodzGmYiceDrG_gV6znolrEH_Ahr6tkxvWzIYFVpLzENxV-_rZRbQsxo2NA; Max-Age=2592000; Expires=Wed, 28 Dec 2022 03:00:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&b0d46ab9-7729-43dd-8e76-e899e3d340c5"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 28-Nov-2023 03:00:44 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669604444:t=1669690844:v=2:sig=AQHq7OneHZnGYLYraZDmpwg4sZOSTH5S"; Expires=Tue, 29 Nov 2022 03:00:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXufxPTYphnqAXYDk1tQg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3ED6C7A035E5406E98D67AAD5B427CB1 Ref B: OSL30EDGE0510 Ref C: 2022-11-28T03:00:44Z
date: Mon, 28 Nov 2022 03:00:43 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/08/Render-1080p_3-1.mp4 HTTP/1.1 
Host: hauserart.co.il
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=4587520-
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         195.238.120.200
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
content-range: bytes 4587520-4610051/4610052
content-length: 22532
date: Mon, 28 Nov 2022 03:00:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   22532
Md5:    19e0824bb25fdda428287d4f80f812ce
Sha1:   a36dbd33db162aa3547abafa19d7534c64b30fb2
Sha256: 884f8217dcb2bf62e45e73e0d3ac6d1c343037f65210bf674758a80756c73fc7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /partner/2001641/domain/hauserart.co.il/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.230.111.112
HTTP/2 200 OK
content-type: application/json
                                        
date: Mon, 28 Nov 2022 02:06:26 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DbvN-lu4xAev-kucogafH-1bQHzi1bn8dXQ9Yaj6v3VfAqgulRgjsg==
age: 3258
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   62
Md5:    d39abb34da93ec5faa48669ac4788977
Sha1:   cc2627a86b99e91540251b6fb7e17a9b1faa1ee7
Sha256: b329d16bd7e06de93beac4a9e4d67b8be6d1c944b7b8e398b929460f73b7c4ce
                                        
                                            GET /tr/?id=2815464011886856&ev=PageView&dl=https%3A%2F%2Fhauserart.co.il%2F&rl=&if=false&ts=1669604444135&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1669604444135.1543168923&it=1669604443746&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 28 Nov 2022 03:00:44 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136263
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383815e-1d7"
Expires: Tue, 29 Nov 2022 16:51:47 GMT
Last-Modified: Sun, 27 Nov 2022 15:25:18 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PGE06ab3vDxUUPnOXvPEzVftHhA3Pnrh7SVYIbcH6I9qo8QPqfPRqA==
Age: 5189

                                        
                                            GET /collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hauserart.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
                                        
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&4a1f8bc6-4cec-4480-810c-03055b66dd2d"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 28-Nov-2023 03:00:44 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669604444:t=1669690844:v=2:sig=AQHq7OneHZnGYLYraZDmpwg4sZOSTH5S"; Expires=Tue, 29 Nov 2022 03:00:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXufxPYjIDGHSNSS5jxiQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B4431F947662469BA2DD1D2B6EB4BA5F Ref B: OSL30EDGE0510 Ref C: 2022-11-28T03:00:44Z
date: Mon, 28 Nov 2022 03:00:43 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166757
Date: Mon, 28 Nov 2022 03:00:45 GMT
Etag: "63840146-1d7"
Expires: Wed, 30 Nov 2022 01:20:02 GMT
Last-Modified: Mon, 28 Nov 2022 00:31:02 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ivU_OXsQpQSzYKvoYLzAtAQhBr2MiL6TCkAhSJVEflL3rdlZmemt7w==
Age: 2940

                                        
                                            POST /api/v2/client/sites/1623972/visit-data?sv=7 HTTP/1.1 
Host: in.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         99.81.68.255
HTTP/2 200 OK
content-type: application/json
                                        
date: Mon, 28 Nov 2022 03:00:44 GMT
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   23155
Md5:    5946d78e8c55155c50ded955f3646440
Sha1:   376d19af8211e36f3dfe0d46d0258906f8b42b28
Sha256: 6465d19b9d8bad0804f063bd50f85b7bc0c5cddb61edbfc52cd9b15c8b0f353b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 03:00:45 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 00:51:47 GMT
Expires: Mon, 05 Dec 2022 00:51:46 GMT
Etag: "d07ab67207f4c760c8ec8fa9e004c7961ece01a7"
Cache-Control: max-age=596460,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770fdae7ec39b51b-OSL


--- Additional Info ---
Magic:  data
Size:   472
Md5:    fd3c35b459a4167aa10a69dd3dd83dc2