Report - hauser-marketing.com/

Report Overview

Submitted URL
hauser-marketing.com/
IP
104.21.72.95
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-28 03:00:52
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
78

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	1.7 kB	143.204.55.105
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	36 kB	104.17.24.14
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	604 B	710 B	142.251.1.154
hauserart.co.il	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	33 kB	2.5 MB	195.238.120.200
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.35
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	29 kB	31.13.72.12
cdn.linkedin.oribi.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	990 B	982 B	54.230.111.112
px.ads.linkedin.com	522	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	950 B	2.3 kB	13.107.42.14
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	587 B	349 B	31.13.72.36
hauser-marketing.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	802 B	30 kB	172.67.179.200
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	69 kB	143.204.55.96
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	724 B	757 B	142.250.74.35
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	143.204.42.165
in.hotjar.com	1746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	23 kB	99.81.68.255
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	630 B	143.204.55.37
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	719 B	1.8 kB	142.250.74.34
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	81 kB	142.250.74.168
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	725 B	757 B	142.250.74.164
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.4 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.82.48.240
snap.licdn.com	1044	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	4.9 kB	23.36.76.210
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	21 kB	142.250.74.174
analytics.maskyoo.net	289712	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	941 B	656 B	82.166.96.25
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.5 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-28	medium	hauser-marketing.com/	Phishing
2022-11-28	medium	hauser-marketing.com/	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css?ver=1.2.5	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.4.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.4.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-rtl.min.css?ver=3.0.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.39	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/uploads/2019/12/Heebo-Regular.ttf	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/uploads/2019/12/Heebo-Bold.ttf	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4	Phishing
2022-11-28	medium	hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (48)

	URL	Size	First Seen	Last Seen
	hauserart.co.il/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4	6.4 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-04-16 13:01:53 Times Seen1792 Hash d1c2e97eeca08ca067ccf2c5736f0390 5281985542fcc8c5a651d1991296e12c39bfcb82 0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3 Loading...

	hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1	32 kB	2023-03-07	2023-11-19
Pretty URL hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:48 Last Seen2023-11-19 10:54:46 Times Seen6 Hash d06edeae4155555cc43145335be71a22 d1361007bb39d9b6a38bc36c191160efd7705754 6b0ae6f3f3b3c3347007278c1df06607288ee379a210e3453668d08172ff97b0 Loading...

	hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9	8.5 kB	2023-03-07	2024-01-30
Pretty URL hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:47 Last Seen2024-01-30 20:16:28 Times Seen28 Hash bdb89c23157e96ce0a6978293ce0ebfa b4d7c5d9fae848643fb9b283d424626a71d50d01 047370a77f43b356cc417afaf4b959e9b2c47f7dcff73271a99efac3f25e665c Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NNSZDXT	241 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NNSZDXT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 51452dc4aa42986e375bf5741ce3d166 c39812a54d037b02b867f0b52b7ee1b15d160b02 ffc5c998cfbe20929e8feebe77670046a2e6ee5e9cb6b25940a29a02994d4d3a Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-16 14:20:16 Times Seen23100 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	hauserart.co.il/wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1	81 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 28d1ac9aa1af4555cd35f48a1f46f154 79008439f572d828bc71ad56c73a9af0d21cba9f faa45aaa406aa90c1627ff82887ed16a8854cb7c14977a1ef4a3d81465dcfe48 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	static.hotjar.com/c/hotjar-1623972.js?sv=7	8.0 kB	2023-03-11	2023-03-11
Pretty URL static.hotjar.com/c/hotjar-1623972.js?sv=7 IP 143.204.55.37 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 7272ada7c3ab19a564b402d2b50c3d87 c6fcd4721d9b9248263dc3c63eb4d270a68caada b86d91737a569e8c530aa6879c771472b60bbc83f0b9c0d93b1e116306d406ab Loading...

	hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0	21 kB	2023-03-07	2024-02-24
Pretty URL hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:48 Last Seen2024-02-24 09:49:01 Times Seen15 Hash 61ee94a46db07b5d0addd2f1cb20af10 513e714a9fa59acbbe436ea70eae7ec8dd5b87c1 340cb3133fd2998435b655096b9ddfc1f24db65d66f296a7369643c4256273b9 Loading...

	hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2	32 kB	2023-03-07	2023-08-01
Pretty URL hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:48 Last Seen2023-08-01 04:59:12 Times Seen6 Hash 30809d889d2630a1553225b75524c2e7 208f512d9758060a5ff93deec2c5743dd0d40c43 ab39887cc317a2287d745daf38bf8615ed2dd6479efc117158cc3cd06d8162ca Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11	120 kB	2023-03-08	2024-03-26
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:21 Last Seen2024-03-26 17:23:50 Times Seen90 Hash d48fccb736e0fc2babec6714fa6cf761 2a7fdcb628612b97c8896a40d5316faa5806f51d b09c98645afb557a865ee0ab55a00a75e4e833e0a121673480a909a2b3cfca3a Loading...

	hauserart.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1	57 kB	2023-03-07	2024-02-24
Pretty URL hauserart.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:37:42 Last Seen2024-02-24 09:49:01 Times Seen29 Hash 8b85968c4783744c9b35dbc0d0f1d4d5 6c3d648597435e62fd29c23532ecc208fe7ca6ee c5ae1ba409532397df113d9085ec517e93dab5fca0c6fa74c1c542723d75de5b Loading...

	hauserart.co.il/	55 B	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:28 Last Seen2024-04-16 01:06:37 Times Seen360 Hash 616befb0e453be2fcbe850f2700499ec bd0ba3e6c1c1a3be64c5340ca6d40f483fe7b277 e49c2bf41cb34c1bf7ac6bf8ddf75cd0ad25921949cfe98bee6cba28b672a874 Loading...

	hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11	1.4 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-16 10:51:58 Times Seen6851 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	hauserart.co.il/	423 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash a1ba7a672334d2a2217c35e34749099f ff62ed13a4842ad5372aba124cc37adc934f1342 923b3680d84e8a15c51ba9689fb35b892752a718967a14ac2a30d4fcc51777e4 Loading...

	s3.eu-central-1.amazonaws.com/maskyoo-cdn/msq.tracker.js	23 kB	2023-03-09	2023-05-22
Pretty URL s3.eu-central-1.amazonaws.com/maskyoo-cdn/msq.tracker.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:38:46 Last Seen2023-05-22 10:45:02 Times Seen8 Hash 65d9aac866133f55f407cb1aefccf390 f180c3331a37f9d43fe77b49c24e977f1940852d c6f5a6603a808d9f5d5c66f880a1245eee87b78dd5869ed36cee8bd0f99492ca Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

	hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5	14 kB	2023-03-11	2024-02-24
Pretty URL hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2024-02-24 09:49:01 Times Seen5 Hash eb3e94f36dd0f7bbab7dbb41dc92ff1c 0712adc2da41807faadf2198e50ecdcee9e1b61c 66f5d29bb3cc63b3354fe2dd26ea54d7972c1ca28630038bb7d591eac3c514b7 Loading...

	hauserart.co.il/	341 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 61741211a95676dd03fe79bb02e1b77f f28e65174e94c0bd29c4cbee588657eeabe2e0d4 218fe5df54a9e60530f386d1c5103b0dac74320fc9813b07cfe5184ac72c70db Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11	2.6 kB	2023-03-07	2024-04-11
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-11 16:40:22 Times Seen4607 Hash 9bb8540493a7fe11b229870eb37be165 d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e 4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580 Loading...

	hauserart.co.il/	1.5 kB	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 7eb98ab2724e02d17136346daa2f723d 7d4a63038de8004096e6e8a9261f7aad178c93ee 99b64451b6f883294d7464f9cb05302f6b22406d43b7adbdabfbf47c054a80e9 Loading...

	hauserart.co.il/	190 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 2a28af9904cd1dbb524f258c5b5d1b50 db1d00a1e3151897c5396aa5061afd168be837c6 7388410655701fca649ee831855e5c681151cf40878006fb55739034a2bc9d2e Loading...

	hauserart.co.il/	318 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 481786cb9386a90642c129bfc31ff1de fd44017487119983dbaf8efdb518cdbfb73f837a 0e19fbc1767b46f39dd17a4b8ffd3a47f967b504b0b8e6705793440054150efe Loading...

	hauserart.co.il/	236 B	2023-03-11	2023-08-07
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-08-07 23:05:32 Times Seen2 Hash 3f4a3bc779369c0292803d075e4a9778 6f5363185640566a3fce55e5b71321bf835324eb 690ee37186bb7de7d61e77c9727d6d5bacbcffd5e8b8b5da9c90d233482d41c8 Loading...

	hauserart.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5	172 kB	2023-03-07	2024-03-26
Pretty URL hauserart.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:39 Last Seen2024-03-26 17:23:50 Times Seen318 Hash 64a17e19546a8eaeb7449982967cfa69 b777ff3056a8dd8c79f93c0125f21ec3909c9802 65115988f62e8284ebc9bbd735c7de493f47ed8ea5a266fddb4c86d4997472fb Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-08	2023-03-12
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:40 Last Seen2023-03-12 12:54:15 Times Seen1 Hash 795b6295a518e0a829d7b29695163231 9cada4433e63280a008cbb0a2a0bdb5af5e57206 641153b2ad78e5d095645419060a4ea0854b1b3ec5ff27e99644c9f8d461610c Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4	2.0 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 01ee3a79a3abf896f86d9bc2d874874e 9f3f0b321849cbf597c5388bba75c3f7521052ec afa5e0bb472af1794929279546f09de9ef800e989139bc6286e281ad3492005f Loading...

	hauserart.co.il/	2.1 kB	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 9bb527d70296abb3a436b64e085a37ed 508406d81a58910a70344786be5b03d932f06258 515c9ba7cdb485b61f47fe56748f866fb1964d0bc89f368ef92260005b4547e9 Loading...

	unknown	0 B	2023-03-07	2024-04-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-16 21:50:21 Times Seen36905405 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5	6.6 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-16 13:01:53 Times Seen4068 Hash e16a8821e5f099c3a619889ea7cf0399 a38e0c736aaf0b019b29b63b00e68c1381502217 a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473 Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1	11 kB	2023-03-07	2024-04-11
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-11 16:40:24 Times Seen3490 Hash 58baf0f238d7afc7ab926b8d51e5b559 8515e5f578269e29c048450f78c107935d325dff 2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb Loading...

	hauserart.co.il/wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0	14 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-04-16 09:36:50 Times Seen1546 Hash 7b7d9c2344ec7bb776c95e6d9144470f f9e83481831a2618b30e8f38471ae8d16c2a6f21 06ec6b51daffe18a33b502f14fac6674eea1490c3677a06d054635a6d78676ce Loading...

	hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0	2.7 kB	2023-03-07	2024-04-12
Pretty URL hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-12 14:33:54 Times Seen257 Hash b6a39bacaedbeeac4c21501785f16182 65aea0a92e26e880dc42409b46db280b1d5b3f78 c476e6f50bcdac993f7866f8c656be00c28ab8e0b58822b57851c96ba7ecb1b9 Loading...

	hauserart.co.il/	1.9 kB	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash e97b347dcc13d72acfc50fac42d494d2 ba9db02042a57d9db8ff7b17bc3c4bdb6a8f6cc4 8f21ed5348e7c539c6b1d12534be1df6ad54439941fe27f619ac7f029d90f6b2 Loading...

	hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0	8.1 kB	2023-03-07	2024-02-26
Pretty URL hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-02-26 05:01:56 Times Seen50 Hash 77e53718c3a717f1c89075b4522256b4 ac62d7365a719641dd592a45a5f5495696ee3327 b777c80f6e184851cb448f1d7aae6f7402d0944a2d4b1f87bad53f24b6bdf5c8 Loading...

	hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11	14 kB	2023-03-07	2024-04-15
Pretty URL hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-15 07:08:20 Times Seen3525 Hash 878184c5d285d4d52d926d36ef19b718 dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847 Loading...

	hauserart.co.il/	1.5 kB	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 654b457553aee9431a679ff199b522d4 7249c667ddce72f772e6c942ffd274cee87e140a cd3b668cdf469fdc106db45663b1dbca9e934d789b71285b208b542007df060d Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-15 19:32:36 Times Seen1507 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	hauserart.co.il/	304 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash c9e4b24c5dee1b5a22983112009d1d42 e1e853fa0088297ee4542462bcb8513197e2e09b 07a2435f434cff02ba1561a06ead28cd472ed1454e20343e6889ff2f660f8ca5 Loading...

	hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-16 15:25:17 Times Seen16520 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-16 19:12:13 Times Seen52335 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	hauserart.co.il/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39	75 kB	2023-03-08	2023-11-21
Pretty URL hauserart.co.il/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:30:42 Last Seen2023-11-21 06:28:03 Times Seen9 Hash f02b3aa8ea7b9d708a768babca7a4b4d 89ae9aec05699dbd3e557236e19f9aa41a389163 81fa992855ae0d441d865cfd74e45bae6ce4184d9c0fb8460d734eae1b25228a Loading...

	hauserart.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-16
Pretty URL hauserart.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-16 13:01:55 Times Seen17688 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11	64 kB	2023-03-08	2024-03-26
Pretty URL hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:21 Last Seen2024-03-26 17:23:50 Times Seen86 Hash 3497f59151064fcf7587fa76212a1eb3 1b8276316bb322915ff74ed756ad58519ca57213 ccf725ce07c3a39a2e42e06bf3e5c2b870543ff83b18c067f3593265392b9ccf Loading...

	hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1	1.1 kB	2023-03-07	2024-03-24
Pretty URL hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1 IP 195.238.120.200 ASN #201660 Jetserver Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-03-24 06:56:26 Times Seen606 Hash 40635054e327b749517fbfc876906d27 ed913a5402b9eefb57bf8c869f6746bdc1d264a9 c499a934a3a4111346993c847d1b0ecd309295fb2d3f0e57b9d44ecaac732e17 Loading...

	hauserart.co.il/	1.3 kB	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 9f74d997b35aac8cc9f52ac016f7ca2d 6470771be088fa72be41eff4cb446da70848961a 4f2a9c535ab87fc60a1bc2856bd3a0852393adb68b954732a16f18a7a3c1bd2f Loading...

	hauserart.co.il/	116 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 206276e2f8954f7edb84cb5a43bf0851 5bc340ec339a87c7f6e9cb0863c50963fbeec4bb 9683bdbb1bf6725b0906467e1e32c4932f7511a7dc1d2b43291b5c005bdf1622 Loading...

	hauserart.co.il/	118 B	2023-03-11	2023-03-11
Pretty URL hauserart.co.il/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:41:21 Last Seen2023-03-11 21:41:21 Times Seen1 Hash 5e37a923d7e7917744f20cf2fdeed6fa 30695acd082412ac515e102ef9849de596e2a673 c21c2ae211b536e59522c5e741a7eb5902765ded3ae36753787882cb3193494c Loading...

HTTP Transactions (132)

URL IP Response Size

hauser-marketing.com/

172.67.179.200

301 Moved Permanently

323 B

URL HTTP/1.1
hauser-marketing.com/
IP
172.67.179.200:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
323 B (323 bytes)
Hash
667809aac4b12b869e4995373da4f6a8
df6eb1fa9531299f50f8da197aae2463b67ad1bd
43874c8876b00bb7a5fd14eca29a6cfc0692dd7ab304ccedd9e7dbe95002d088

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: hauser-marketing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 03:00:41 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://hauser-marketing.com/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kHJxby%2BAAVAMM0Mkem9BGdSsarz3i%2BGM58kSBqpaMlkPEWCIBtAczfavLri1xqn2asHqOFXFd%2BskAAQ9U2pFOwQShstUXdWt6OUXmeBMwVuG9fo3fvaidwJPeZr3JdLEnGSAxGVkdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 770fdacd18770b69-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10327
Expires: Mon, 28 Nov 2022 05:52:48 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: max-age=118456
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:41 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:54:57 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 02:17:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2576
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12992
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 3Th73xGXoAG68bZ7bdCSfp6N0oyZ0FJxQ6+iqxov99ZdhnBhwDVRDCrOSBZqiZgorA3FJrdCL18=
x-amz-request-id: 70DN0ZD22HTNP1GW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 02:41:53 GMT
age: 1128
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 03:00:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
8cb1bf0c9efcf85603ada0abc6afceab
8d6c034c471f4969bbef8ce33d6bceb5dc9cd6d7
5083eac97783456f96e570c9da3f4c1fd85167346919d0dcbe16565ad1470cea

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5083EAC97783456F96E570C9DA3F4C1FD85167346919D0DCBE16565AD1470CEA"
Last-Modified: Mon, 28 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Mon, 28 Nov 2022 09:00:35 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
8cb1bf0c9efcf85603ada0abc6afceab
8d6c034c471f4969bbef8ce33d6bceb5dc9cd6d7
5083eac97783456f96e570c9da3f4c1fd85167346919d0dcbe16565ad1470cea

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5083EAC97783456F96E570C9DA3F4C1FD85167346919D0DCBE16565AD1470CEA"
Last-Modified: Mon, 28 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Mon, 28 Nov 2022 09:00:35 GMT
Date: Mon, 28 Nov 2022 03:00:41 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 02:11:12 GMT
cache-control: public,max-age=3600
age: 2970
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5765
Cache-Control: max-age=114135
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:42:57 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

hauser-marketing.com/

172.67.179.200

301 Moved Permanently

29 kB

URL HTTP/2
hauser-marketing.com/
IP
172.67.179.200:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
29 kB (28611 bytes)
Hash
38747e5a003ac1b7203f7c35c1167aa1
cb220cdeadb2d3146c1894dd3d1eb1798e968604
e55792b5dd50a16ab69cbc284e276ee994a9628acae5ce48eb871384785a78e9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: hauser-marketing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Mon, 28 Nov 2022 03:00:41 GMT
content-type: text/html; charset=iso-8859-1
location: https://hauserart.co.il/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HdLdiFqlMJpZ3UpLxhT0hiitNtcWN6zU%2BodCZoMlMiMG8QCZrzvhvfvpSOi1g0fdrY8quyH1oZLMFCcrgyo54ghIb3FuSgd86EoaGi%2B9YyoCskj1sm3m8xE7MAX9XQov2iIHNcXe6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770fdad0483f1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

hauserart.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.5.11

195.238.120.200

200 OK

7.4 kB

URL HTTP/2
hauserart.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.5.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (53734), with no line terminators
Size
7.4 kB (7406 bytes)
Hash
0bc418c363b7ac76808902dfb8535e62
630b75a8c8c137e871d41820e8e6ae7a4a6d030d
34b38f3e857ed2df6402485fc8902dddcb2fad8a03bde64eb5b970340445cc7c

HTTP Headers

GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.5.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Mon, 19 Oct 2020 07:47:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7406
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2

195.238.120.200

200 OK

5.2 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (43590)
Size
5.2 kB (5187 bytes)
Hash
ed7978d25a247ac7f86fe86e8f6bf3d6
45c278fada1b946c7fe41c46297abac463e665be
adf3dd8e7c261b0155e8322e846c2890d86bd03e01474224428721703522ad9c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-engine/assets/css/frontend.css?ver=2.5.2 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 14:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5187
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0

195.238.120.200

200 OK

1.3 kB

URL HTTP/2
hauserart.co.il/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (5231), with no line terminators
Size
1.3 kB (1257 bytes)
Hash
8035c3787aa7fae092f9e18690b438b5
294c97613ad4e2e3caeebcb83d9e49661edea71f
06c809abb277e168bbf361674c70f715741941fdaffaadb433df3129869c58f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1257
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0

195.238.120.200

200 OK

291 B

URL HTTP/2
hauserart.co.il/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
291 B (291 bytes)
Hash
881fa129e096c858c4674ac9125d0657
70ae406f91ce7d6916f48f8739546c8843cd27cd
9fe21befa97e92ad8211c6abf8d65f550102a216d74010c9bd0df499c3e6e492

HTTP Headers

GET /wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0

195.238.120.200

200 OK

2.0 kB

URL HTTP/2
hauserart.co.il/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (5829)
Size
2.0 kB (2023 bytes)
Hash
207cc655945ae41749768065cae6d79a
2448c0a1103491a9365cbc1ebaaddc6226ee8993
fceb83abbde7514721e92ca3e4df4866ee1a8824544cd468b138d40c88e14885

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.2.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2023
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1

195.238.120.200

200 OK

2.1 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (15939)
Size
2.1 kB (2070 bytes)
Hash
a5ef075e3aa937418ebe77f53c000df2
81c17ee9eba23d017dfef780c41c4aa5b82385e4
5f934979bed7f1bfde90e05ea8c3283a0fcd6221d76849e278d72272575d9cad

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-popup/assets/css/jet-popup-frontend.css?ver=1.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 14:57:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2070
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css?ver=1.2.5

195.238.120.200

200 OK

4.1 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css?ver=1.2.5
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (41990)
Size
4.1 kB (4100 bytes)
Hash
28206f6946cfb38257952deadfb0b64e
a32a4816f87f980425a003fbeea95c6844401778
6d82c81715ff54d7da5241b712a6aba26829ffb99bd23ab6dc8c178aa9d47382

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-blocks/assets/css/jet-blocks-rtl.css?ver=1.2.5 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 14:57:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4100
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1903
Cache-Control: max-age=150966
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 20:56:48 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

35.82.48.240

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.82.48.240:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ynrUnTrtOVm1rv1G6DKWlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cgv4dgHVGoXcG0gTiVLUHO4EwPY=

cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js

104.17.24.14

200 OK

35 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32037)
Size
35 kB (34868 bytes)
Hash
8ec306b76e7dc20e47d5f986b68d5932
6bc2204b8061f8d54f416b0d1df1343c2f42521a
9b623920be3228e50eabb5af38e599acdbdc4fce6b2f1d7eb884cf3bb0245d7c

HTTP Headers

GET /ajax/libs/gsap/2.1.3/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:00:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 34868
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-1c604"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2712424
expires: Sat, 18 Nov 2023 03:00:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EhpUZW4I5tz4z28VfvWQafyztZceqnJI9tLvo2le67fmEJXiPjoJoWy45PFf8U6476lZPpTzk5nrukIKoRNVm9M%2FTIRZ0yStzbrzl%2Bspdm0wFM%2Bq7QJZFkASDKzG3WDadORubl%2BB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770fdad4dc87b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.4.1

195.238.120.200

200 OK

19 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
19 kB (19358 bytes)
Hash
f25a06500b8b3e969a228dc8e615f870
8f5d2f95ed6c93743b202a2311992ca629118a53
7d44cf516a6c136fa776266d7884afe3cedddb1404fd00d396af27b25385bb61

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements.css?ver=2.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19358
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.4.1

195.238.120.200

200 OK

753 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (4281)
Size
753 B (753 bytes)
Hash
0b31121616e6a30985386a2f95402350
dbcc1d6d16873946e3620d5bf41f3ba6dd3cac65
ce3438df86119db283ad6b8473b9b715477eaf65209abb8fb809293f8584851e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements-rtl.css?ver=2.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 753
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.4.1

195.238.120.200

200 OK

2.7 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (17381)
Size
2.7 kB (2652 bytes)
Hash
1cf6583735443eb1b4ccf7c343f8ece8
bc83af5e506956cba9c89dcbc273ca47de4614c4
1de02670d851980e096d0de4e2bceb0b22b9b0a53a0aceae56502231b0a2d1af

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/css/jet-elements-skin.css?ver=2.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2652
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1

195.238.120.200

200 OK

3.2 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (16591)
Size
3.2 kB (3186 bytes)
Hash
4c744fcb7f1ce80fc89fc4822a19a7ec
4452abc6a2a3122148bcd4ffa6a4f21a58d3ad94
fbce79917462085f52052891924b7400f949c294bfa5e1a74f87f04090c1faca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3186
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.11

195.238.120.200

200 OK

2.4 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (10019)
Size
2.4 kB (2442 bytes)
Hash
d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-legacy-rtl.min.css?ver=3.0.11

195.238.120.200

200 OK

446 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-legacy-rtl.min.css?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (3815)
Size
446 B (446 bytes)
Hash
385f0211935603beaf0cfe02c0eaa219
76b00ea187e51e945e0d0bb94a6cb4626dcb8080
b08c444bcab408e2f6b3d9d6915037c1a2df5729d2bf92fcc883c2e9fe5bd556

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy-rtl.min.css?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 446
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-rtl.min.css?ver=3.0.11

195.238.120.200

200 OK

15 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/css/frontend-rtl.min.css?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65496)
Size
15 kB (14810 bytes)
Hash
3c4a02dbf9f7ad363e35d8ea6bcd3e66
9c9f9f5c50f698842b647f6c796666b274199e15
e30594b7582aae01436b83c9f4a4ca47d68b5b0aeba940d9641bdab73d113a88

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-rtl.min.css?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14810
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9

195.238.120.200

200 OK

7.7 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
7.7 kB (7706 bytes)
Hash
caca6d269df16abfd6d99daa87d0529f
a3b0f78c2671f48f8514735876ea28961cf0c655
7f3d5d6471647b3b2ac4a8e51da454d141ac5fbf38597dc647411e9924042a59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-blog/assets/css/jet-blog.css?ver=2.2.9 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7706
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.2.9

195.238.120.200

200 OK

424 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.2.9
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (1773)
Size
424 B (424 bytes)
Hash
0445393f7f93a81a5ce2dcf7b99306d5
6861c4db79d027fd773936fb52f1813bbdc90101
d08b872120184166d6a89e97c09eb85ef79ea9ecb29bc52ead12df77f7a34b67

HTTP Headers

GET /wp-content/plugins/jet-blog/assets/css/jet-blog-rtl.css?ver=2.2.9 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 424
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.3.0

195.238.120.200

200 OK

2.5 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.3.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (21755)
Size
2.5 kB (2508 bytes)
Hash
29e53092975483e0f75ce451657df4d1
f2670557ce6faea27714c1eca67862640b6a6838
15086590b560239a1328a68ce6ee43384711aea6a6d368d7e36d93ec14a58d3e

HTTP Headers

GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.3.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 14:57:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2508
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1903
Cache-Control: max-age=150966
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 20:56:48 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.39

195.238.120.200

200 OK

1.2 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.39
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
1.2 kB (1153 bytes)
Hash
eb5c4ffafc78f7294b97e68561f2c2e8
a7362629127fc2f168e99a32bec7658e4e37e60a
38ffc2f178257688359636180382091aae9d1667640bf6966e689d3effd0af4d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.39 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1153
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0

195.238.120.200

200 OK

12 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (55567)
Size
12 kB (11671 bytes)
Hash
77caa9a27dd432b0aaed9ebc222f86d9
df246c8ccfd81ac8d679c97f79257e50eed18f29
103fdf457f74ff838ad9a8bd8d80bbd7e54489cf14c6a4834dd0ac477c4ab608

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11671
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0

195.238.120.200

200 OK

286 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (482)
Size
286 B (286 bytes)
Hash
1a7b33fe535e228387e069a8d20b0f84
3d85c429ac46c7b727805dd7b01b0d973688f64d
4408d67c7abc6c487d492d3913ef369a6291514decad20419d6d986c978d9ed7

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0

195.238.120.200

200 OK

278 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (475)
Size
278 B (278 bytes)
Hash
13fcc2ca024ea81758d42fcd8a2d3c52
e1595b8216ac1d12a242108bcba1a45d517edaa6
81f193acad74c624459877c3c671d191da848ec383dc01a2245ef5f0a49f7138

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 278
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1

195.238.120.200

200 OK

521 B

URL HTTP/2
hauserart.co.il/wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
521 B (521 bytes)
Hash
01aad6282b865307d67b9739bc3ccf90
f63d80bea0004dde5f1ca30da5e8262398a7e4ec
9f06c1399fc71b51c739ec33507ffe7c4c251849e4d2a82b6210cd8ab64015a0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-theme-child-master/js/fitText.js?ver=1.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1

195.238.120.200

200 OK

81 B

URL HTTP/2
hauserart.co.il/wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
81 B (81 bytes)
Hash
28d1ac9aa1af4555cd35f48a1f46f154
79008439f572d828bc71ad56c73a9af0d21cba9f
faa45aaa406aa90c1627ff82887ed16a8854cb7c14977a1ef4a3d81465dcfe48

HTTP Headers

GET /wp-content/themes/hello-theme-child-master/js/script.js?ver=1.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-length: 81
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11

195.238.120.200

200 OK

663 B

URL HTTP/2
hauserart.co.il/wp-includes/js/wp-embed.min.js?ver=5.5.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (1391)
Size
663 B (663 bytes)
Hash
992198ff853eb696f88bb0ec8586d015
a6262428de1b6c68cccf617d2a503f5a3bd3aecd
ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.5.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 06:28:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

195.238.120.200

200 OK

6.9 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (25115)
Size
6.9 kB (6935 bytes)
Hash
e8d8c6e4997a420abc51e5fa8c1caa8b
39ae930f057de725cff8549eed82f31f8d0816c1
730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5

195.238.120.200

200 OK

1.8 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (6595), with no line terminators
Size
1.8 kB (1767 bytes)
Hash
bc7ad49bba8c6fece75cf20e318bde6d
329866570ac3995fb33f1f6b55e6ea3d3c85d25b
479c4099528678e6689805bc618a02c300d62a0f5b41800672c57fb1a458a50e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.5 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1767
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4

195.238.120.200

200 OK

2.3 kB

URL HTTP/2
hauserart.co.il/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (6217)
Size
2.3 kB (2302 bytes)
Hash
6105300334553de6c32933aa6e78f2f5
582dca69df30cd3995c109f3fdaf2255f3153c40
b43425e9720c0375eb0043035d1e07b6d94792fdd4ec82e240b5605a1f3a06ea

HTTP Headers

GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 06:28:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2302
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1

195.238.120.200

200 OK

3.3 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (10725)
Size
3.3 kB (3331 bytes)
Hash
8c5a95ea30259ea6dc50f9f1357dc31a
be1fd6dc96f6ba018bbfa49a058390700ead5bf0
914c938c132cd311967ed71676397704bf8d95abf2c51c79937f43be35030a70

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

195.238.120.200

200 OK

2.9 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (12198), with no line terminators
Size
2.9 kB (2867 bytes)
Hash
869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11

195.238.120.200

200 OK

1.0 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (2577)
Size
1.0 kB (1023 bytes)
Hash
f5c8273175207966436fe071db580974
643680fc9a1703cb3bc469bfbb3dbcbf6425e38a
8b0897055f6baa5de94adb95e824af4afd1dced496711c905c8b7c09738aa4de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1023
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5

195.238.120.200

200 OK

4.0 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (14207), with no line terminators
Size
4.0 kB (4039 bytes)
Hash
f63e598235d5e4e1f5b62563c76b17f1
ad27f34475969f5f763aa6f54e2bf88f10b76e2e
adb027ddeb6e0c4a09550f5d35d741e0c3232f17823e3903e07be81f424bbecb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-blocks/assets/js/jet-blocks.min.js?ver=1.2.5 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Sun, 18 Oct 2020 14:57:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4039
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0

195.238.120.200

200 OK

5.9 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (547)
Size
5.9 kB (5923 bytes)
Hash
7a3f6ba5188c0f71035821a235be855c
9c1dd96896a9fd858fe02929257a606290050f54
0f501001aa81d10a4876a04af2f0a682d3f76e99b75969be8dbea55a19279e1d

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/lib/anime-js/anime.min.js?ver=2.2.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5923
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1

195.238.120.200

200 OK

5.7 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
5.7 kB (5698 bytes)
Hash
c481962afb3146e483bebb27dc30978b
aac3780eef88efa51be0e9649899ce8414d956a5
84a2beaec975ecc21b18b75752497b905153af2a5c8177683c4a756c100e47ac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-popup/assets/js/jet-popup-frontend.js?ver=1.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Sun, 18 Oct 2020 14:57:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5698
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0

195.238.120.200

200 OK

4.2 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
4.2 kB (4182 bytes)
Hash
600e1bf3ee47d7b841a2851fe104c136
ad1dd17ba8bfd9634ccb07879c531dd596458dfb
23cfa9e00228fa9c32e9b73cfd7a57303a13c82aac5f851e3b62347b6c3a8610

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.3.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Sun, 18 Oct 2020 14:57:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4182
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9

195.238.120.200

200 OK

2.5 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (8501), with no line terminators
Size
2.5 kB (2474 bytes)
Hash
b85e576e1a1a396aad8219ef580d1e13
595d7b3d3ee12e185b80698c7f8ccf440e3d2fce
da87637c653a1a8c95703cb32066e383436ef8b966a014f059c6c780c6535627

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-blog/assets/js/jet-blog.min.js?ver=2.2.9 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Tue, 25 Aug 2020 07:59:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2474
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2

195.238.120.200

200 OK

6.8 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text
Size
6.8 kB (6807 bytes)
Hash
6997ea5fe4096d94bf21d12ec59bdfb9
9866e7c544c78aae73f4b3c7cf77fbebaafbb134
554ab8165a891b7018a52025acc3fa6b51c84b905156130548872ada9845da8e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-engine/assets/js/frontend.js?ver=2.5.2 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Sun, 18 Oct 2020 14:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6807
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39

195.238.120.200

200 OK

17 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (31960)
Size
17 kB (16819 bytes)
Hash
798db516ac35eafcbfb2628565626656
93be253e4f6675617acb191424f3b93906601b02
2ed1b415798bd9ac086d672e657772c67be85a49ebdc22294e684158f417cc80

HTTP Headers

GET /wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.39 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16819
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0

195.238.120.200

200 OK

814 B

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (2696), with no line terminators
Size
814 B (814 bytes)
Hash
612d48adc15e439f66079c3ab31342ae
42dafc5d8acb78be70182f299b05149d9a87152d
cecf71b29e8421d77a161f8bcaeb6a47dad34448807d0220d6c67529cf0f9269

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 814
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0

195.238.120.200

200 OK

2.1 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (8139), with no line terminators
Size
2.1 kB (2128 bytes)
Hash
e91dd8241f0873ca5b74baebad43d22a
8ed9aa3d136efaae79df981ccfb6b097c97aea2d
4a4c64bb9a3c25f4d272a837f537d5c9c34aeec91c8333926ce300e6962db892

HTTP Headers

GET /wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2128
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-pro/assets/css/frontend-rtl.min.css?ver=3.0.5

195.238.120.200

200 OK

22 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-pro/assets/css/frontend-rtl.min.css?ver=3.0.5
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65493)
Size
22 kB (21727 bytes)
Hash
32cc76ee4ee898a4ca23646ef097beb5
eff6ea98725706ec647c932d7d1d1c72781ebd3f
33c19804778778a7b57cb973fe0d7ec0528c984fa6858f8417c0beb50fe06ee5

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-rtl.min.css?ver=3.0.5 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21727
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-extras/assets/css/frontend-rtl.min.css?ver=2.2.39

195.238.120.200

200 OK

24 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-extras/assets/css/frontend-rtl.min.css?ver=2.2.39
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (23528 bytes)
Hash
db242d95fca205c1e4db1a1738c60840
7e85807cd06392c1965b0dc50183ff774f48da07
bbd3e430825bd426c4f9eec89d8c91683c535c312c1deafaf17d34cce921d471

HTTP Headers

GET /wp-content/plugins/elementor-extras/assets/css/frontend-rtl.min.css?ver=2.2.39 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 08:34:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23528
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

195.238.120.200

200 OK

33 kB

URL HTTP/2
hauserart.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (31997)
Size
33 kB (32853 bytes)
Hash
a95303ca3b1a9372809d72ffa31bca40
65130bca144d3b49d5f97387173c423b9b4abfe3
c5d914b6693616fcf2c61bc363660dcc5f6ea7de5a25b1d6a5a2a95f39846565

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Tue, 25 Aug 2020 07:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32853
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11

195.238.120.200

200 OK

18 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Unicode text, UTF-8 text, with very long lines (47304), with LF, NEL line terminators
Size
18 kB (17538 bytes)
Hash
09002a8a6be6935535db86f378c2f7d0
89dab0ef4c072538deebc4f7f2468331d189475b
8d1418695c37b3214a48ad4bde5387b2001af4cd94eebc131d1ff4c99b1da68a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17538
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5

195.238.120.200

200 OK

40 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Unicode text, UTF-8 text, with very long lines (39674), with LF, NEL line terminators
Size
40 kB (40402 bytes)
Hash
3961dec87dcf6774eab3faa49808c919
f09a546606b6e5b0f800ac1921069201c28a98d3
f7bd3702c3fa89c386f6291a513f8833ece5cd01df902723156781e36e8acd05

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.5 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40402
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

195.238.120.200

200 OK

34 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (65280)
Size
34 kB (34004 bytes)
Hash
83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11

195.238.120.200

200 OK

31 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Unicode text, UTF-8 text, with very long lines (47239), with LF, NEL line terminators
Size
31 kB (30839 bytes)
Hash
99c48fb7f5ff91210c0236e46ee336b8
aa3e8cd66a704dde0523fdd5a86ff2ec96cb3097
b0ddbf4f9e168d5bd7e11f418c2979c2c551e898e014d6038efeb86708aa2f7e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 01 Oct 2020 08:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30839
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1

195.238.120.200

200 OK

18 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (57042), with no line terminators
Size
18 kB (18222 bytes)
Hash
b9bbb6d7d056c0cd88325cef28e8a4d6
c0c83fc95c8304a45788b8d909a0c019e2489c42
b5b999d0827d8f68dee82ca2d84b4d0b4e7aa16219b6204a47335bbf150f7d24

HTTP Headers

GET /wp-content/plugins/jet-elements/assets/js/jet-elements.min.js?ver=2.4.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Mon, 19 Oct 2020 07:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18222
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11

195.238.120.200

200 OK

4.3 kB

URL HTTP/2
hauserart.co.il/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
ASCII text, with very long lines (11272)
Size
4.3 kB (4316 bytes)
Hash
cbe8cb2fedf8a769a95b7fb14607cb1f
bd8a18991728b257e9eefb89ba6ea9058860983a
0be8d8f894d47080f1723551cb8adf6c158249dc6f99fb06639ee9e5d332be4f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 06:28:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4316
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/08/ball.png

195.238.120.200

200 OK

1.9 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/ball.png
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
PNG image data, 86 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1948 bytes)
Hash
f0e5d7ded53a284748f66a3113c4f95f
5be90ca7f014932290af8ff2fd23907b9e4fc786
34c797bcad1cc8be2670843f6c8ada533b8939295b892b5ce7ea4121b589a2f4

HTTP Headers

GET /wp-content/uploads/2020/08/ball.png HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:42 GMT
content-type: image/png
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
accept-ranges: bytes
content-length: 1948
date: Mon, 28 Nov 2022 03:00:42 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-NNSZDXT

142.250.74.168

200 OK

81 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-NNSZDXT
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (23016)
Size
81 kB (80577 bytes)
Hash
c476d28ca07d3dbcbe1efe9ee327cec2
e784e9d2e2f31e5e39df42198f0de6a04330dabf
c956de891ddb830cc4554368391f370315a7796bba47316a116b17cfd3f77e41

HTTP Headers

GET /gtm.js?id=GTM-NNSZDXT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 03:00:43 GMT
expires: Mon, 28 Nov 2022 03:00:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hauserart.co.il/wp-content/uploads/2020/01/benleumi.jpg

195.238.120.200

200 OK

12 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/01/benleumi.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
12 kB (11786 bytes)
Hash
f27b59ded1b29862dc855dc42e9a0717
e1456fe747520191078a849e835557777a893c46
b985185293eb038da75e7a178b23cb7b9b5656176f885065c543fc18c7a2946f

HTTP Headers

GET /wp-content/uploads/2020/01/benleumi.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 11786
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2019/01/menora-1.jpg

195.238.120.200

200 OK

29 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2019/01/menora-1.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
29 kB (29077 bytes)
Hash
8a076bc4780b09f41deb9579d3cd09f1
ff2bb9371e4357e59ce75f7ee4c535f72224c3bd
8c4049d43509b0f7c122ab08524cd3acc248f04a8e83a95eae4f33c29bd0ff93

HTTP Headers

GET /wp-content/uploads/2019/01/menora-1.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Mon, 14 Dec 2020 09:09:31 GMT
accept-ranges: bytes
content-length: 29077
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/01/postal2.jpg

195.238.120.200

200 OK

25 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/01/postal2.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
25 kB (24834 bytes)
Hash
b70e9ee06c2c42a28917ddeeaa57ea00
257ec7487af4204bacb92e1126f3ea1d7bdcd96b
5e1014a945e11ad657b5cf4fce286b864a16e317ddace7a5ae960aac99328715

HTTP Headers

GET /wp-content/uploads/2020/01/postal2.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 24834
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/05/tamir.jpg

195.238.120.200

200 OK

40 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/05/tamir.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
40 kB (39862 bytes)
Hash
6ef67a49b605b01ce465d48e61f365d3
6fa643f4f9b3659e5000981283a5d6b3e3109b50
598b12853da31946bd766d34b082ff029c629a6e003916b05cf0e6a4edd77ff4

HTTP Headers

GET /wp-content/uploads/2020/05/tamir.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:56 GMT
accept-ranges: bytes
content-length: 39862
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2019/01/avshalom.jpg

195.238.120.200

200 OK

118 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2019/01/avshalom.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
118 kB (117871 bytes)
Hash
f097fab50bf33d988a96d171031c53b4
b05b4b3cebc69cdd98de3bc7e1c7107671d1bf65
03b6fd2fc6222c72c495ae643f823630a73f68fa77f68d83c37242170560f1ac

HTTP Headers

GET /wp-content/uploads/2019/01/avshalom.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Mon, 14 Dec 2020 08:46:44 GMT
accept-ranges: bytes
content-length: 117871
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/01/ELI_7406-_-HR-%D7%A9.%D7%92.jpg

195.238.120.200

200 OK

44 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/01/ELI_7406-_-HR-%D7%A9.%D7%92.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
44 kB (43604 bytes)
Hash
5a0b1496b1e4abdc05a6bf2aea6c9974
8805d410d8c897ba8a699502a139b276c8301963
01ebab21d0a2895dad663dd07f0f53d9f6a441fbc0a470ce1ec12a38cf7c18a9

HTTP Headers

GET /wp-content/uploads/2020/01/ELI_7406-_-HR-%D7%A9.%D7%92.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 43604
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2019/12/Heebo-Regular.ttf

195.238.120.200

200 OK

32 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2019/12/Heebo-Regular.ttf
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.HeeboRegular2.001;UKWN;Heebo-RegularHeebo-RegularVersio\012- data
Size
32 kB (31891 bytes)
Hash
a6a6bbf822b877bb21f03d8e67564674
730e6c1051f9de8a3fcaf8544a74d7a3462511fd
5b066df2d1f9431faa68306a97762e86aea891443ba2163356bf25447a081406

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/12/Heebo-Regular.ttf HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: font/ttf
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31891
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

195.238.120.200

200 OK

76 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Size
76 kB (76084 bytes)
Hash
f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: font/woff2
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 76084
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2019/12/Heebo-Bold.ttf

195.238.120.200

200 OK

32 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2019/12/Heebo-Bold.ttf
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.HeeboBold2.001;UKWN;Heebo-BoldHeebo BoldVersion 2.001; \012- data
Size
32 kB (31566 bytes)
Hash
0cfb0d9ecaa16fbce414f86ef7267e7b
f3c10cd8008152e2b6fa394d46ebafeffdd414d1
9921118966ecfa71d77b1745618fc8a249bff274e7c328300205a50e2e40bdac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/12/Heebo-Bold.ttf HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: font/ttf
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31566
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

195.238.120.200

200 OK

76 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Size
76 kB (75936 bytes)
Hash
822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: font/woff2
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 75936
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/01/massad.jpg

195.238.120.200

200 OK

35 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/01/massad.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
35 kB (35319 bytes)
Hash
476454354e7981d39b4d929e271c550f
2a786d69bf55f2a3ecaf92ad701f7fd05c24ee1d
028e6e692428ec2bccb3162b11c08878ba660bd3a7d72a2bfce9ac88ccc2b9af

HTTP Headers

GET /wp-content/uploads/2020/01/massad.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 35319
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/09/Benleumi-hadmaya-12_1460x1000px.jpg

195.238.120.200

200 OK

38 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/09/Benleumi-hadmaya-12_1460x1000px.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1460x1000, components 3\012- data
Size
38 kB (37750 bytes)
Hash
b5849eb2dc517c776d3d79b4ff5957cd
66981826fb22b056b8e14e2740d78f0ab5b6e080
614f6f1cf47fa6068e3fdd0ab9f936d2fc36a5b8ce1fa363c8a8c6ff49a21379

HTTP Headers

GET /wp-content/uploads/2020/09/Benleumi-hadmaya-12_1460x1000px.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Mon, 21 Sep 2020 09:51:06 GMT
accept-ranges: bytes
content-length: 37750
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/01/masait-migdal.jpg

195.238.120.200

200 OK

52 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/01/masait-migdal.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
52 kB (51478 bytes)
Hash
9c19e76d21ce8cf8edb997f989e5b432
50e0743dffd795a2b4081ea6d1dccc5cbba6e007
04f0b43ba1ec235a0af6cd9c47219f0fe7001dde2ed27bf918ccb62aa93be57c

HTTP Headers

GET /wp-content/uploads/2020/01/masait-migdal.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:55 GMT
accept-ranges: bytes
content-length: 51478
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/05/hakeren-leydidut.jpg

195.238.120.200

200 OK

83 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/05/hakeren-leydidut.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 620x400, components 3\012- data
Size
83 kB (83166 bytes)
Hash
c387c440f114cf5539fa70d1890e1d9f
1cb8029114e6b468f0d4dd884972030fa0f160b5
1b079ecc880d6932311bf428f44a1cab53c46107d01138da8e419a6b5aa37f6b

HTTP Headers

GET /wp-content/uploads/2020/05/hakeren-leydidut.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:56 GMT
accept-ranges: bytes
content-length: 83166
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2019/01/DAF-1.jpg

195.238.120.200

200 OK

540 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2019/01/DAF-1.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1460x1000, components 3\012- data
Size
540 kB (540391 bytes)
Hash
ca17a041e1902f470b64a73acbdc2cfe
3723f4a6a6c95f5b710462084250e74bac620872
1fe0015fa36c17202104a9d3b54305c6cdcb8b7220ebc41b401361ad6fdcdfc3

HTTP Headers

GET /wp-content/uploads/2019/01/DAF-1.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Mon, 14 Dec 2020 08:44:15 GMT
accept-ranges: bytes
content-length: 540391
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/12/shutterstock_583565059-scaled.jpg

195.238.120.200

200 OK

294 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/12/shutterstock_583565059-scaled.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 2560x1500, components 3\012- data
Size
294 kB (293723 bytes)
Hash
69045a5ada76bf235761b6faa4791277
b0f4c97141c50fd85bdcd857af1972688696e2dc
aef17bb30148a226c94fb17ba2729a016c9d2a588f06e5db8a26e1c667c3afe1

HTTP Headers

GET /wp-content/uploads/2020/12/shutterstock_583565059-scaled.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Mon, 07 Dec 2020 09:28:44 GMT
accept-ranges: bytes
content-length: 293723
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/08/Briuta_1460x1000px-landing-mailer.jpg

195.238.120.200

200 OK

462 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/Briuta_1460x1000px-landing-mailer.jpg
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4167, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=6084], baseline, precision 8, 1460x1000, components 3\012- data
Size
462 kB (462212 bytes)
Hash
43c805a8c49d44c4272afb3e35f22c23
c95e26e42b14a30b634310f683d759e3ce351b3b
dfece7b0a6415843f4b8546ce784125c7a61ad96d911298696a2a1cb914721ed

HTTP Headers

GET /wp-content/uploads/2020/08/Briuta_1460x1000px-landing-mailer.jpg HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/jpeg
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
accept-ranges: bytes
content-length: 462212
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/02/logo-hauser.png

195.238.120.200

200 OK

1.8 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/02/logo-hauser.png
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
PNG image data, 300 x 100, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1837 bytes)
Hash
c236c48f9fe30c2fdd0da23cfb500d2b
9a4a5af03f6b2be43bbd3c12a1fed846fbc9d04f
16d346d24f567bf70c0ed3d60243047fb63852f0bae8b24e00a8a03c4e350433

HTTP Headers

GET /wp-content/uploads/2020/02/logo-hauser.png HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/png
last-modified: Sun, 06 Dec 2020 09:59:54 GMT
accept-ranges: bytes
content-length: 1837
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1

195.238.120.200

200 OK

84 kB

URL HTTP/2
hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
Web Open Font Format (Version 2), TrueType, length 84384, version 1.0\012- data
Size
84 kB (84384 bytes)
Hash
39c01512d658d563a264041101fc48cf
d58f4484f3d5ce3179766030978e26c1ce805f96
592ae329d50413fb8f61112a94ac638ee7e1dd07ce079b660bf9ab1fd5d49b31

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hauserart.co.il/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
Cookie: pll_language=he
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: font/woff2
last-modified: Thu, 01 Oct 2020 08:36:29 GMT
accept-ranges: bytes
content-length: 84384
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7768
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:00:43 GMT
Connection: keep-alive

hauserart.co.il/wp-content/uploads/2020/08/cropped-Untitled-1-192x192.png

195.238.120.200

200 OK

14 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/cropped-Untitled-1-192x192.png
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14095 bytes)
Hash
cc89473f313199dafe84c3b21baf01bb
17b082bbb4c120301ef7c72822592c2ee76c1b67
9ee91ae662d1709619f66d478c3fbaaa93e70c1051b98d419ec7986e190b6ab2

HTTP Headers

GET /wp-content/uploads/2020/08/cropped-Untitled-1-192x192.png HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/png
last-modified: Tue, 25 Aug 2020 07:35:57 GMT
accept-ranges: bytes
content-length: 14095
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/08/cropped-Untitled-1-32x32.png

195.238.120.200

200 OK

1.3 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/cropped-Untitled-1-32x32.png
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1299 bytes)
Hash
69f4adf6601302f61035a7416527556c
73a8a7f612c16de1a3543a8ead407dd70d2d0f87
ad888067c27fe671c9aa23e4b7b0209047e599a20fb5ddce0aecee508372984c

HTTP Headers

GET /wp-content/uploads/2020/08/cropped-Untitled-1-32x32.png HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 03:00:43 GMT
content-type: image/png
last-modified: Tue, 25 Aug 2020 07:35:57 GMT
accept-ranges: bytes
content-length: 1299
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15639 bytes)
Hash
0a4e0bb1e2748bdce6bbf685a910f0fc
5b97bfd787afcb912cdbef0f137f78a059082992
a7bc9adeb22cb57675e907bd961a6f554e6b7a46414ed782bcc9b53d68b1c328

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15639
x-amzn-requestid: 98e846b4-287f-4698-9529-25bcc2727a4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78dGReoAMFiDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e9-62c41b2717bd8e6f3b3797da;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AhbL-wXc_eYsgxdjf0DIEJD7Z3XfXMjXwDC52Bz_SnvmmWAhl3g99A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:38 GMT
age: 18545
etag: "5b97bfd787afcb912cdbef0f137f78a059082992"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7556 bytes)
Hash
7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 70UuQl2XCoplrZYENrKleE2mcvB-xP9zZGs8Tuh21NidSiHvA97sXw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 18574
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10119 bytes)
Hash
15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 18543
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4708 bytes)
Hash
4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6FSZ3Zw-s95LlrU3skAr5_g6m36c9SQ9_6vA3HFbMKYTTFzJRBJ76w==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:26:43 GMT
age: 16440
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5989 bytes)
Hash
fa848cb85e85df184b078fe7aa95ae52
21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A5n6y1-hpgr4vynnRXkEZNvCvjlNGH6brl7eYMsdN1MST7YoD2BPgA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:13 GMT
age: 18570
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10813 bytes)
Hash
005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3ggibSv4guzAQjW77yMg7HTp5JCBi1B9dxXi-Zy_-Vw0b6lP1PAGyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 18574
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4

195.238.120.200

301 Moved Permanently

707 B

URL HTTP/1.1
hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/08/Render-1080p_3-1.mp4 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
location: https://hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

4.6 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (12961)
Size
4.6 kB (4581 bytes)
Hash
c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=49146
date: Mon, 28 Nov 2022 03:00:44 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 02:41:08 GMT
expires: Mon, 28 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 1176
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6180
Cache-Control: max-age=164239
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:38:03 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

googleads.g.doubleclick.net/pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4

142.250.74.34

200 OK

893 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1989), with no line terminators
Size
893 B (893 bytes)
Hash
dd4d90e170403af1da1c0f224aab2496
6e5fc23be5ed883e4b616ab50b2fdcc6e90fac38
3b10c346e9bd080d58fd635e82c9ce9fa19641cada152e8daf505920a928cdb4

HTTP Headers

GET /pagead/viewthroughconversion/479138964/?random=1669604443394&cv=11&fst=1669604443394&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 893
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 03:15:44 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: QKTWHOsEgAwWsl3U7n8SLsrjZoOfJMuJSbec5UNr/I5T/ZFSHOVo/qdo0BoHdBMPI3SPAPRF/S+VPxq+PwA1+w==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 03:00:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6180
Cache-Control: max-age=164239
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:38:03 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html

143.204.55.105

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d

HTTP Headers

GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: koWudy311nUK6V-sG1FgUmrksCIt_TpbMf7tKh2nqmnEkgYJFhuMxg==
age: 395438
X-Firefox-Spdy: h2

script.hotjar.com/modules.e1bdbadbcc63daea6270.js

143.204.55.96

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.e1bdbadbcc63daea6270.js
IP
143.204.55.96:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
69 kB (68720 bytes)
Hash
53db6c810ee48127f87a9c79e206fc67
aa53e521ba10b23524afc519c6e6ba8d1eb5147c
f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd

HTTP Headers

GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JIt8PCyATc9UArjartVxZyIjvbQBFCYJDoqq1yAz7FpQ6ksjTdEv3w==
age: 327098
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135071161-1&cid=1183344706.1669604444&jid=2125616103&gjid=1784831859&_gid=517822912.1669604444&_u=YGBAgAABAAAAAE~&z=1618768003

142.251.1.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135071161-1&cid=1183344706.1669604444&jid=2125616103&gjid=1784831859&_gid=517822912.1669604444&_u=YGBAgAABAAAAAE~&z=1618768003
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135071161-1&cid=1183344706.1669604444&jid=2125616103&gjid=1784831859&_gid=517822912.1669604444&_u=YGBAgAABAAAAAE~&z=1618768003 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://hauserart.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/2001641/domain/hauserart.co.il/token

54.230.111.112

200 OK

0 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/2001641/domain/hauserart.co.il/token
IP
54.230.111.112:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /partner/2001641/domain/hauserart.co.il/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://hauserart.co.il/
Origin: https://hauserart.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 0
date: Sun, 27 Nov 2022 06:04:58 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Lefo8VJcrM3_XwPdPKcnAo75pGDsIXCRmzZ3VESk6Fm3UX_LwRe2Q==
age: 75346
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=1&ipr=y

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=1&ipr=y
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/479138964/?random=1669604443394&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhauserart.co.il%2F&tiba=%D7%A2%D7%9E%D7%95%D7%93%20%D7%94%D7%91%D7%99%D7%AA%20-%20%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95%20%D7%94%D7%90%D7%95%D7%96%D7%A8&fmt=3&is_vtc=1&random=960816102&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:00:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2001641%26time%3D1669604443620%26url%3Dhttps%253A%252F%252Fhauserart.co.il%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJVmEQCe-3rBAAAAYS8LgkWzQLwaSR1gQOnWpCd_U4lw9fsCpRPyycoG-vGJ_xqpTfp9jaoU66LYw; Max-Age=2592000; Expires=Wed, 28 Dec 2022 03:00:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKnPZsWUE65HQAAAYS8LgkWWf2yodzGmYiceDrG_gV6znolrEH_Ahr6tkxvWzIYFVpLzENxV-_rZRbQsxo2NA; Max-Age=2592000; Expires=Wed, 28 Dec 2022 03:00:44 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b0d46ab9-7729-43dd-8e76-e899e3d340c5"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 28-Nov-2023 03:00:44 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669604444:t=1669690844:v=2:sig=AQHq7OneHZnGYLYraZDmpwg4sZOSTH5S"; Expires=Tue, 29 Nov 2022 03:00:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXufxPTYphnqAXYDk1tQg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3ED6C7A035E5406E98D67AAD5B427CB1 Ref B: OSL30EDGE0510 Ref C: 2022-11-28T03:00:44Z
date: Mon, 28 Nov 2022 03:00:43 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:00:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4

195.238.120.200

206 Partial Content

22 kB

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type
data
Size
22 kB (22532 bytes)
Hash
19e0824bb25fdda428287d4f80f812ce
a36dbd33db162aa3547abafa19d7534c64b30fb2
884f8217dcb2bf62e45e73e0d3ac6d1c343037f65210bf674758a80756c73fc7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/08/Render-1080p_3-1.mp4 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=4587520-
Connection: keep-alive
Referer: https://hauserart.co.il/
Cookie: pll_language=he
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
content-range: bytes 4587520-4610051/4610052
content-length: 22532
date: Mon, 28 Nov 2022 03:00:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/2001641/domain/hauserart.co.il/token

54.230.111.112

200 OK

62 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/2001641/domain/hauserart.co.il/token
IP
54.230.111.112:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
62 B (62 bytes)
Hash
d39abb34da93ec5faa48669ac4788977
cc2627a86b99e91540251b6fb7e17a9b1faa1ee7
b329d16bd7e06de93beac4a9e4d67b8be6d1c944b7b8e398b929460f73b7c4ce

HTTP Headers

GET /partner/2001641/domain/hauserart.co.il/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
date: Mon, 28 Nov 2022 02:06:26 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DbvN-lu4xAev-kucogafH-1bQHzi1bn8dXQ9Yaj6v3VfAqgulRgjsg==
age: 3258
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=2815464011886856&ev=PageView&dl=https%3A%2F%2Fhauserart.co.il%2F&rl=&if=false&ts=1669604444135&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1669604444135.1543168923&it=1669604443746&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=2815464011886856&ev=PageView&dl=https%3A%2F%2Fhauserart.co.il%2F&rl=&if=false&ts=1669604444135&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1669604444135.1543168923&it=1669604443746&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=2815464011886856&ev=PageView&dl=https%3A%2F%2Fhauserart.co.il%2F&rl=&if=false&ts=1669604444135&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1669604444135.1543168923&it=1669604443746&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 28 Nov 2022 03:00:44 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
089955bb623e5b17b8cea050fca2ae7f
648a28d3e625c8810cfc1d8ed2d7f0be532c7205
74c93173ae5af1cbabb1e12ba2b87fae7b0c41c50012a0994e03862b4dff4086

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136263
Date: Mon, 28 Nov 2022 03:00:44 GMT
Etag: "6383815e-1d7"
Expires: Tue, 29 Nov 2022 16:51:47 GMT
Last-Modified: Sun, 27 Nov 2022 15:25:18 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PGE06ab3vDxUUPnOXvPEzVftHhA3Pnrh7SVYIbcH6I9qo8QPqfPRqA==
Age: 5189

px.ads.linkedin.com/collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=2001641&time=1669604443620&url=https%3A%2F%2Fhauserart.co.il%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hauserart.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4a1f8bc6-4cec-4480-810c-03055b66dd2d"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 28-Nov-2023 03:00:44 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669604444:t=1669690844:v=2:sig=AQHq7OneHZnGYLYraZDmpwg4sZOSTH5S"; Expires=Tue, 29 Nov 2022 03:00:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXufxPYjIDGHSNSS5jxiQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B4431F947662469BA2DD1D2B6EB4BA5F Ref B: OSL30EDGE0510 Ref C: 2022-11-28T03:00:44Z
date: Mon, 28 Nov 2022 03:00:43 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
502956e7eb02a97cd96e3f8ce71da326
0e78570e161cebb30a60d731c200107d1297f628
796288f90b9f3180a0304b885697dedfc641986a0c89867ffd66bc082dc28089

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166757
Date: Mon, 28 Nov 2022 03:00:45 GMT
Etag: "63840146-1d7"
Expires: Wed, 30 Nov 2022 01:20:02 GMT
Last-Modified: Mon, 28 Nov 2022 00:31:02 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ivU_OXsQpQSzYKvoYLzAtAQhBr2MiL6TCkAhSJVEflL3rdlZmemt7w==
Age: 2940

in.hotjar.com/api/v2/client/sites/1623972/visit-data?sv=7

99.81.68.255

200 OK

23 kB

URL HTTP/2
in.hotjar.com/api/v2/client/sites/1623972/visit-data?sv=7
IP
99.81.68.255:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
23 kB (23155 bytes)
Hash
5946d78e8c55155c50ded955f3646440
376d19af8211e36f3dfe0d46d0258906f8b42b28
6465d19b9d8bad0804f063bd50f85b7bc0c5cddb61edbfc52cd9b15c8b0f353b

HTTP Headers

POST /api/v2/client/sites/1623972/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://hauserart.co.il
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:00:44 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
fd3c35b459a4167aa10a69dd3dd83dc2
d07ab67207f4c760c8ec8fa9e004c7961ece01a7
616c39b178cfacb9b3fb9198d998ab279fbcbad1909d36038eccb6626f2465ff

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:00:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 00:51:47 GMT
Expires: Mon, 05 Dec 2022 00:51:46 GMT
Etag: "d07ab67207f4c760c8ec8fa9e004c7961ece01a7"
Cache-Control: max-age=596460,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770fdae7ec39b51b-OSL

analytics.maskyoo.net/json_pixel.php?r=301656965&nv=t&p=%5B%7B%22maskyoo%22%3A%221669604442%22%7D%2C%7B%22maskyoo%22%3A%2235610265%22%7D%2C%7B%22maskyoo%22%3A%229723561026%22%7D%2C%7B%22maskyoo%22%3A%222815464011%22%7D%5D&ttl=1000&tid=UA-135071161-1&cid=1183344706.1669604444&ga_tid=UA-135071161-1&ga_cid=1183344706.1669604444&fbq_client=fb.2.1669604444135.1543168923&fbq_account=2815464011886856&fbq_time=1669604444737&cd1=%D7%A2%D7%9E%D7%95%D7%93+%D7%94%D7%91%D7%99%D7%AA+-+%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95+%D7%94%D7%90%D7%95%D7%96%D7%A8&cd2=https%3A%2F%2Fhauserart.co.il%2F&cd3=

82.166.96.25

200 OK

95 B

URL HTTP/1.1
analytics.maskyoo.net/json_pixel.php?r=301656965&nv=t&p=%5B%7B%22maskyoo%22%3A%221669604442%22%7D%2C%7B%22maskyoo%22%3A%2235610265%22%7D%2C%7B%22maskyoo%22%3A%229723561026%22%7D%2C%7B%22maskyoo%22%3A%222815464011%22%7D%5D&ttl=1000&tid=UA-135071161-1&cid=1183344706.1669604444&ga_tid=UA-135071161-1&ga_cid=1183344706.1669604444&fbq_client=fb.2.1669604444135.1543168923&fbq_account=2815464011886856&fbq_time=1669604444737&cd1=%D7%A2%D7%9E%D7%95%D7%93+%D7%94%D7%91%D7%99%D7%AA+-+%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95+%D7%94%D7%90%D7%95%D7%96%D7%A8&cd2=https%3A%2F%2Fhauserart.co.il%2F&cd3=
IP
82.166.96.25:0
ASN
#1680 Cellcom Fixed Line Communication L.P.

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
95 B (95 bytes)
Hash
71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517

HTTP Headers

GET /json_pixel.php?r=301656965&nv=t&p=%5B%7B%22maskyoo%22%3A%221669604442%22%7D%2C%7B%22maskyoo%22%3A%2235610265%22%7D%2C%7B%22maskyoo%22%3A%229723561026%22%7D%2C%7B%22maskyoo%22%3A%222815464011%22%7D%5D&ttl=1000&tid=UA-135071161-1&cid=1183344706.1669604444&ga_tid=UA-135071161-1&ga_cid=1183344706.1669604444&fbq_client=fb.2.1669604444135.1543168923&fbq_account=2815464011886856&fbq_time=1669604444737&cd1=%D7%A2%D7%9E%D7%95%D7%93+%D7%94%D7%91%D7%99%D7%AA+-+%D7%A1%D7%98%D7%95%D7%93%D7%99%D7%95+%D7%94%D7%90%D7%95%D7%96%D7%A8&cd2=https%3A%2F%2Fhauserart.co.il%2F&cd3= HTTP/1.1
Host: analytics.maskyoo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:00:45 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
x-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: strict-origin
Public-Key-Pins: pin-sha256="base64+primary=="; pin-sha256="base64+backup=="; max-age=5184000; includeSubDomains
Feature-Policy: geolocation 'none'; payment 'none'; camera 'none'; autoplay 'none'; fullscreen 'none'; microphone 'self'
Content-Length: 95
Connection: close
Content-Type: image/png

hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4

195.238.120.200

206 Partial Content

0 B

URL HTTP/2
hauserart.co.il/wp-content/uploads/2020/08/Render-1080p_3-1.mp4
IP
195.238.120.200:0
ASN
#201660 Jetserver Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/08/Render-1080p_3-1.mp4 HTTP/1.1
Host: hauserart.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Connection: keep-alive
Cookie: pll_language=he
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Tue, 25 Aug 2020 07:35:58 GMT
content-range: bytes 0-4610051/4610052
content-length: 4610052
date: Mon, 28 Nov 2022 03:00:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-1623972.js?sv=7

143.204.55.37

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-1623972.js?sv=7
IP
143.204.55.37:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-1623972.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hauserart.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 03:00:44 GMT
cache-control: max-age=60
etag: W/7272ada7c3ab19a564b402d2b50c3d87
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dORwiagqipCcQHwY6_xXdkUbqQDIQs82RCXkH3zaw20xo1Ud5tvc4w==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (48)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations