aerocom.co.il/bm/com/sys
212.115.111.178301 Moved Permanently 240 B IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 55973802bfbb5ce3feb3670ecd0b54ad
decf53226e917655f4784804db2aca441b939196
b5ab74dec59c6370baf3cb258c35c612181c27049455bba041851dff18864958
Analyzer Verdict Alert openphish Altice
fortinet Phishing
GET /bm/com/sys HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 16 Feb 2023 03:21:07 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 240
Connection: keep-alive
Location: http://aerocom.co.il/bm/com/sys/
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9b39c3955aa73765d5c9cbe0d4c52f83
b13bf774f0189207d90d846b86b68fcf2f64f868
f6fea261b800d26e329ced17006c9f5d10b6c490dac3b2276cc7b0e2aa38316c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6FEA261B800D26E329CED17006C9F5D10B6C490DAC3B2276CC7B0E2AA38316C"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5459
Expires: Thu, 16 Feb 2023 04:52:07 GMT
Date: Thu, 16 Feb 2023 03:21:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 584dc97b4a725bab46f43b0c52ea2f21
4c7d5484aca5c64746185fa7a1e6103672fd6beb
726714a5ebdaa8dda3c669eedad6503ffd2a822cfd0bbdf5eb8a1d8ad43ad5bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "726714A5EBDAA8DDA3C669EEDAD6503FFD2A822CFD0BBDF5EB8A1D8AD43AD5BD"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13678
Expires: Thu, 16 Feb 2023 07:09:06 GMT
Date: Thu, 16 Feb 2023 03:21:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 16 Feb 2023 02:37:28 GMT
content-type: application/json
age: 2620
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e4879878d8594ad779e96e43ceadae35
e81c37ddd67123e47ea15707896b807a306d8d7e
c50069d7380586c743cddc2678baab9bb04400c70c28c3102650264ef806319c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C50069D7380586C743CDDC2678BAAB9BB04400C70C28C3102650264EF806319C"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15025
Expires: Thu, 16 Feb 2023 07:31:33 GMT
Date: Thu, 16 Feb 2023 03:21:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7Hoo4WyJalENP2UeLsYafbAynRATObedFXHP8+dVlgvgk0Hp7zKrl6u5EIOfA4CSpdXNNV4HXUU=
x-amz-request-id: G8AM8KA3F6NN4N5W
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 16 Feb 2023 03:16:41 GMT
age: 267
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 16 Feb 2023 03:21:08 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aerocom.co.il/bm/com/sys/
212.115.111.178200 OK 50 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (793), with CRLF line terminators
Hash 8279e80a1d7a67dab6585ff519005398
4794d8cd8e4e5083f93969960a7cc1ef7a832ca9
692de60fa48eb35ab4a861c53bcbf4cacf643a1c347967833460ef41b96d77be
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/ HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Cache-Status: EXPIRED
X-Server-Powered-By: Engintron
Content-Encoding: gzip
assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/satelliteLib-289abbccdc9b89be454207f3720d91de531f3315.js
2.18.172.233200 OK 38 kB URL HTTP/1.1 assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/satelliteLib-289abbccdc9b89be454207f3720d91de531f3315.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32757)
Hash 7a435195a5d92401c6b44e73e00a66d1
79f773804d5138935cef1980b6d0cb9c04d58372
5402121720252a2c6d175d3ad7f3652b4635473e11c505c8fe075eb6b8f008cc
GET /0101e7930286426309b1a3d069d34bc7de99096f/satelliteLib-289abbccdc9b89be454207f3720d91de531f3315.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "2a8cae712b80ce1321df15181158967a:1593015936.458885"
Last-Modified: Wed, 24 Jun 2020 16:25:36 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Thu, 16 Feb 2023 04:21:08 GMT
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Length: 37572
Connection: keep-alive
Access-Control-Allow-Origin: http://aerocom.co.il
Timing-Allow-Origin: *
aerocom.co.il/vendor.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/vendor.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /vendor.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/js/onetmotionpoint.js
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/js/onetmotionpoint.js
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/js/onetmotionpoint.js HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/js/liveperson.js
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/js/liveperson.js
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/js/liveperson.js HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/js/modernizr.custom.28587.min.js
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/js/modernizr.custom.28587.min.js
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/js/modernizr.custom.28587.min.js HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/css/page.css?202005190427
212.115.111.178200 OK 4.8 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/css/page.css?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type ASCII text, with very long lines (29000), with no line terminators
Hash eaf3cd6fe261ff0c43f5bbcc42fa891b
c7455d159318038ace75a4580287489b35f183c6
ae76ad6d49d33db038452cde582fcf869fdde73241b2dad8cd9fd5c1c23ad2c1
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/css/page.css?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 04 Oct 2020 06:51:06 GMT
Expires: Sat, 18 Mar 2023 03:21:08 GMT
Cache-Control: max-age=2592000
Pragma: public
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/css/fa/css/font-awesome.min.css
212.115.111.178200 OK 7.1 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/css/fa/css/font-awesome.min.css
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type ASCII text, with very long lines (30837)
Hash f529ce613d8baf3f3cccfd46f03a084d
84ef851e9885ccc24911e5c03f1cc0d094959cd3
ad0cc939bf160d744317828d29614b37cde0ba0ef08365d8f8b919fe89df3caf
GET /bm/com/sys/css/fa/css/font-awesome.min.css HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 04 Oct 2020 11:35:30 GMT
Expires: Sat, 18 Mar 2023 03:21:08 GMT
Cache-Control: max-age=2592000
Pragma: public
Content-Encoding: gzip
aerocom.co.il/main.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/main.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /main.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/home/home.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/home/home.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /home/home.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/css/core-and-parts_page_1.css?202005190427
212.115.111.178200 OK 48 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/css/core-and-parts_page_1.css?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
Hash 497e3bd62b05bcd49a034a85995595fe
55ed13745553bc0b6a2de6717321ebdd10e68e38
c589468e220a2b9937ec4369775eb3d6866acd1c345acf0c459a3971ed29ad36
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/css/core-and-parts_page_1.css?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 04 Oct 2020 06:58:36 GMT
Expires: Sat, 18 Mar 2023 03:21:08 GMT
Cache-Control: max-age=2592000
Pragma: public
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/css/core-and-parts_page_2.css?202005190427
212.115.111.178200 OK 23 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/css/core-and-parts_page_2.css?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
Hash 55e0254e17edd0572eec24a6bdc9142e
e6aea59aa7ff7a5b305093435c5e308c8df85813
f200690117f90b161f827345897be62d60ecf29e3d6b9cc60b5ec75984a82183
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/css/core-and-parts_page_2.css?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 04 Oct 2020 06:16:56 GMT
Expires: Sat, 18 Mar 2023 03:21:08 GMT
Cache-Control: max-age=2592000
Pragma: public
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e3675a92ccc1d95283507610660f335b
2e8bb4388bdb8d163887af93472fbdc219b199c5
f15db56e9489c51f1b69082f3543ddd159f828e178f4a29018efbd1773219331
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 14 Feb 2023 02:32:12 GMT
Expires: Tue, 21 Feb 2023 02:32:11 GMT
Etag: "2e8bb4388bdb8d163887af93472fbdc219b199c5"
Cache-Control: max-age=428462,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c69840b509-OSL
aerocom.co.il/bm/com/sys/js/liveperson.js
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/js/liveperson.js
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/js/liveperson.js HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/support/outage/outage.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/support/outage/outage.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /support/outage/outage.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 439be41333604681301057ca33a17e2a
1b831e94afda8077647b7c75e5b452ea83290a59
455a60888a3f489285513e5f8951630653f9019d4b599b20187d76681ffdc498
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 12 Feb 2023 20:51:42 GMT
Expires: Sun, 19 Feb 2023 20:51:41 GMT
Etag: "1b831e94afda8077647b7c75e5b452ea83290a59"
Cache-Control: max-age=321632,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c70864b509-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3b409d3f378999350b95b765588be20a
cea993a481b3e52667f3a64153cd8fd3cd88e3d8
e131fe24ed3c0a7870dca734afe05ac85220c8619326f6034b16c04ddc913961
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 15 Feb 2023 03:43:24 GMT
Expires: Wed, 22 Feb 2023 03:43:23 GMT
Etag: "cea993a481b3e52667f3a64153cd8fd3cd88e3d8"
Cache-Control: max-age=519134,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c62e79b4f9-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3b409d3f378999350b95b765588be20a
cea993a481b3e52667f3a64153cd8fd3cd88e3d8
e131fe24ed3c0a7870dca734afe05ac85220c8619326f6034b16c04ddc913961
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 15 Feb 2023 03:43:24 GMT
Expires: Wed, 22 Feb 2023 03:43:23 GMT
Etag: "cea993a481b3e52667f3a64153cd8fd3cd88e3d8"
Cache-Control: max-age=519134,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c63b29b512-OSL
aerocom.co.il/bm/com/sys/js/modernizr.custom.28587.min.js
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/js/modernizr.custom.28587.min.js
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/js/modernizr.custom.28587.min.js HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e3675a92ccc1d95283507610660f335b
2e8bb4388bdb8d163887af93472fbdc219b199c5
f15db56e9489c51f1b69082f3543ddd159f828e178f4a29018efbd1773219331
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 14 Feb 2023 02:32:12 GMT
Expires: Tue, 21 Feb 2023 02:32:11 GMT
Etag: "2e8bb4388bdb8d163887af93472fbdc219b199c5"
Cache-Control: max-age=428461,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c69b52b512-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e3675a92ccc1d95283507610660f335b
2e8bb4388bdb8d163887af93472fbdc219b199c5
f15db56e9489c51f1b69082f3543ddd159f828e178f4a29018efbd1773219331
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 14 Feb 2023 02:32:12 GMT
Expires: Tue, 21 Feb 2023 02:32:11 GMT
Etag: "2e8bb4388bdb8d163887af93472fbdc219b199c5"
Cache-Control: max-age=428461,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79a326c69b440b06-OSL
espanol.optimum.net/mpel/mpel.js
52.200.14.111200 OK 1.3 kB URL HTTP/2 espanol.optimum.net/mpel/mpel.js
IP 52.200.14.111:0
File type ASCII text, with CRLF line terminators
Hash 870ad827896070136c316f8399bcdff5
c6b30d3f898f816ebf804407a0a8accdec89a41b
51877b456b91a1eddd423728b7e1957ec3d3213aab587ade6268c5957961a55f
GET /mpel/mpel.js HTTP/1.1
Host: espanol.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: application/javascript
content-length: 1321
last-modified: Thu, 27 Aug 2020 21:25:40 GMT
etag: "5f4824d4-529"
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/mbox-contents-79b590323e7adaeec30443f5a4c2e15206f4e993.js
2.18.172.233200 OK 12 kB URL HTTP/1.1 assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/mbox-contents-79b590323e7adaeec30443f5a4c2e15206f4e993.js
IP 2.18.172.233:0
File type C source, ASCII text, with very long lines (40952), with no line terminators
Hash 98733b4e1687e98b9bf1d31147a1005c
c36883c069a3ce6ce64fd8fa035d86a7b62876cd
b75981d280b298b41a4a3b82caab039b5ae7ae7a7d7266364871b41c5e8abaab
GET /0101e7930286426309b1a3d069d34bc7de99096f/mbox-contents-79b590323e7adaeec30443f5a4c2e15206f4e993.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "2251a1ed24167a30d6de4d0157f5b3a9:1593015937.423236"
Last-Modified: Wed, 24 Jun 2020 16:25:37 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Thu, 16 Feb 2023 04:21:09 GMT
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Length: 11888
Connection: keep-alive
Access-Control-Allow-Origin: http://aerocom.co.il
Timing-Allow-Origin: *
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 16 Feb 2023 03:14:54 GMT
age: 375
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_chrome.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_chrome.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_chrome.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e811c05d7b791b98aea6b2fcb476f10e
22446c9850bfaad80e9a21ae5e12b6f08eab0322
f07288128edd8100435652b4323bea8c678afcfb5769f8a7ca00be962b8e989a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpm.demdex.net/id?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747
54.195.234.18302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747
IP 54.195.234.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://aerocom.co.il
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-03617f131.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: http://dpm.demdex.net/id/rd?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=25980426211359626001126431845654480857; Max-Age=15552000; Expires=Tue, 15 Aug 2023 03:21:09 GMT; Path=/; Domain=.demdex.net
Vary: Origin
X-TID: 8+ZQqkfqTQ8=
Content-Length: 0
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=DC-6868521
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-6868521
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 4fa15dcbadb82a68637744da152d92b4
cea7ab397595f80c4035c95fe2ccb903f7014105
c0754e114f4d41aa940e76ec1058cb4286a88cfa7a4237ec8eb2bf1ce36f976c
GET /gtag/js?id=DC-6868521 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 16 Feb 2023 03:21:09 GMT
expires: Thu, 16 Feb 2023 03:21:09 GMT
cache-control: private, max-age=900
last-modified: Thu, 16 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44392
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e811c05d7b791b98aea6b2fcb476f10e
22446c9850bfaad80e9a21ae5e12b6f08eab0322
f07288128edd8100435652b4323bea8c678afcfb5769f8a7ca00be962b8e989a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpm.demdex.net/id/rd?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747
54.195.234.18200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747
IP 54.195.234.18:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=2.0.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&ts=1676517668747 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://aerocom.co.il
Content-Type: application/x-www-form-urlencoded
Referer: http://aerocom.co.il/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://aerocom.co.il
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-0c9e579d2.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Vary: Origin
X-Error: 172
X-TID: qhx98zVCRow=
Content-Length: 124
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d146aa123635470cfd39942f1f25dcba
274574f078e959a423262a1b95344996299ea1cf
9e2c3a542626c68d479648479e09f9570564d4e1f954f63b6ce97ae939729a3d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E2C3A542626C68D479648479E09F9570564D4E1F954F63B6CE97AE939729A3D"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13602
Expires: Thu, 16 Feb 2023 07:07:51 GMT
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
cdn.tt.omtrdc.net/cdn/target.js
108.157.214.82200 OK 44 kB URL HTTP/1.1 cdn.tt.omtrdc.net/cdn/target.js
IP 108.157.214.82:0
File type ASCII text, with very long lines (43466)
Hash d94f7f548dc11d731f4f5949913bec75
57f396a039b461d4f03fca96cb52996694b14013
052ae5d7723241f0a1439298b26beb4db53772b707b58fb707dfc30d5a22c029
GET /cdn/target.js HTTP/1.1
Host: cdn.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 43693
Connection: keep-alive
Last-Modified: Tue, 27 Oct 2020 11:37:15 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 16 Feb 2023 03:03:36 GMT
Cache-Control: must-revalidate, max-age=3600
ETag: "d94f7f548dc11d731f4f5949913bec75"
X-Cache: Hit from cloudfront
Via: 1.1 3f25be8570bf62f8d4607f79984fccec.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: _qmMvDLnvijcIuZ6xbxQBbSH7edlGpOt8MFjxNM3KG_Q5nQUgE2O1w==
Age: 1212
aerocom.co.il/bm/com/sys/img/new-customer-experience.png
212.115.111.178200 OK 91 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/img/new-customer-experience.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type PNG image data, 694 x 574, 8-bit colormap, non-interlaced\012- data
Hash a58991dbc52aa6a4e3746fa9f3bfc0fd
60318b711b7b31603a9c05d839991f90f0a97072
5c5b79f5364d718738c59a29823a2cc4a6618ba27f90e642fbb8ae12773a37a3
GET /bm/com/sys/img/new-customer-experience.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: image/png
Content-Length: 90978
Connection: keep-alive
Last-Modified: Sun, 04 Oct 2020 06:49:26 GMT
Expires: Mon, 17 Apr 2023 03:21:08 GMT
Cache-Control: max-age=5184000
Pragma: public
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 4412917fc19f67f338f0629311bdd338
72cccd9f0f578d06d0bb7d573edd0d3fedabe113
e2e35933571108211338fcf49ec58b61924839e81b21041c27e542028ee30fe8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146014
Date: Thu, 16 Feb 2023 03:21:09 GMT
Etag: "63ed238f-1d7"
Expires: Fri, 17 Feb 2023 19:54:43 GMT
Last-Modified: Wed, 15 Feb 2023 18:25:19 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qimQxHOpGz_xBi9xub00QqeUV1FD9vhcYJB0EIsXECMw6iFkQ_T5ew==
Age: 5364
www.googletagmanager.com/gtm.js?id=GTM-MFVCV8
142.250.74.168302 Found 250 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-MFVCV8
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5c012cce34cd75122839f2ef11b13c02
3c113f62b045d9bb4a1279ae091601cf3430fc7b
9e29ca0c907885e7c5226bbcb48cc6f35c64f60805a67137b09accd3363b0488
GET /gtm.js?id=GTM-MFVCV8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-MFVCV8
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 250
X-XSS-Protection: 0
metrics.optimum.net/id?d_visid_ver=2.0.0&d_fieldgroup=MC&mcorgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&ts=1676517668924
15.236.125.10200 OK 48 B URL HTTP/1.1 metrics.optimum.net/id?d_visid_ver=2.0.0&d_fieldgroup=MC&mcorgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&ts=1676517668924
IP 15.236.125.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 702675f4d7c956e2f2b3040943707ad6
3241130aebc9ea4da7f7f2d4cf68d4059da12ae9
deaffba1bd8ba4b6560ed6e40fdc3b8a30d8bc774a51db201191b2ceae533330
GET /id?d_visid_ver=2.0.0&d_fieldgroup=MC&mcorgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&ts=1676517668924 HTTP/1.1
Host: metrics.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
access-control-allow-origin: http://aerocom.co.il
access-control-allow-credentials: true
date: Thu, 16 Feb 2023 03:21:09 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=0%7CMCMID%7C76088571155755361002458863156306362703; Path=/; Domain=optimum.net; Max-Age=63072000; Expires=Sat, 15 Feb 2025 03:21:21 GMT;
s_ecid=MCMID%7C76088571155755361002458863156306362703; Path=/; Domain=optimum.net; Max-Age=63072000; Expires=Sat, 15 Feb 2025 03:21:21 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_ie.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_firefox.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
lptag.liveperson.net/lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23403 Forbidden 318 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0dcdaef5555eec941815afc02585df1e
638346e170381f1b05100664f7ccacf55c40bf10
9aafaccf4cf8e74814436ee0bb1d96abbadee38f2667aa40511ce8a7d89a4c4a
GET /lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
aerocom.co.il/vendor.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/vendor.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /vendor.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
54.200.212.223101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.212.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bixSD6q5ARr1PFWkRlmzzw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3+ne2ORjOCYOn4Iylt2aIcZDaLU=
lptag.liveperson.net/tag/tag.js?site=38299855
178.249.101.23403 Forbidden 12 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=38299855
IP 178.249.101.23:0
Hash 973bf564fbab70ffb0aa5b427433bb59
56ba53ee9ac2f71aea6074042d974c2f9b4b05a2
79574ace1a5a47cacbeb8d0b3f03c6e5530eb252edf772247c625756a5e4196b
GET /tag/tag.js?site=38299855 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
aerocom.co.il/bm/com/sys/img/footer-logo-sprite.png
212.115.111.178200 OK 7.3 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/img/footer-logo-sprite.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type PNG image data, 732 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 682db3c014b48783b5d9a4153e33e6a4
b13fcdf4160b47e415e4d6c0518929b6e5110881
4b166d932365a063aa5d778648b12fe5bad409f6bde616cc446838d461459a74
GET /bm/com/sys/img/footer-logo-sprite.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/css/core-and-parts_page_1.css?202005190427
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: image/png
Content-Length: 7345
Connection: keep-alive
Last-Modified: Sun, 04 Oct 2020 06:57:38 GMT
Expires: Mon, 17 Apr 2023 03:21:09 GMT
Cache-Control: max-age=5184000
Pragma: public
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=G-Q99KNZFX8Z&l=dataLayer&cx=c
142.250.74.168302 Found 278 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=G-Q99KNZFX8Z&l=dataLayer&cx=c
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 601b20c3e1311893f5684b1baf3aa71e
1ea8252367fb371d6c0109f93a1e06192e7cbc21
93a3434cf6f694b305a5f050a992f8d4e4aee32aa69deb58805b5c5f0d4f6a99
GET /gtag/js?id=G-Q99KNZFX8Z&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-Q99KNZFX8Z&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 278
X-XSS-Protection: 0
aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/screen_map.png
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/cdn/static.tvlistings.optimum.net/ool/static/prod/images/screen_map.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/screen_map.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/css/core-and-parts_page_1.css?202005190427
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5e5e3a9276ff47a2edaf08ab9566ab13
99eb85488a2aee06a65cb3a9d749ab9d436ef604
e057a54a9d9d039afe0b2b30e61eb3a03c2b60ef9d8908ec9fee25f25b551774
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:09 GMT
Etag: "63ec19c9-1d7"
Server: ECS (amb/6B81)
Content-Length: 471
aerocom.co.il/main.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/main.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /main.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/
212.115.111.178200 OK 15 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
Hash 78f8e5ac29690d3e9e8d1254548310e4
383c42849019bc24f8d1dca0c0e1d1dcd043aef7
9f81ccfc8d5f9fdd8026413305e66eb1c78caeade9176655d62d9a313c4b5a56
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/ HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Cache-Status: EXPIRED
X-Server-Powered-By: Engintron
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/css/fa/fonts/fontawesome-webfont.woff2?v=4.7.0
212.115.111.178200 OK 77 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/css/fa/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/css/fa/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/css/fa/css/font-awesome.min.css
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: font/woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Sun, 04 Oct 2020 11:35:30 GMT
Expires: Mon, 17 Apr 2023 03:21:09 GMT
Cache-Control: max-age=5184000
Pragma: public
Accept-Ranges: bytes
lpcdn.lpsnmedia.net/le_re/3.40.0.0-release_5019/jsv2/overlay.js?_v=3.40.0.0-release_5019
178.249.97.98200 OK 3.0 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.40.0.0-release_5019/jsv2/overlay.js?_v=3.40.0.0-release_5019
IP 178.249.97.98:0
Hash 9fefbad96a5d968ee1228958f33306bb
7a5cde48fc05c3852a79b9486ada85446b18fe84
4e248d345874f5fc673b1d0a5b98f8504e4b1db6f88181abb143ba59b61b3b95
GET /le_re/3.40.0.0-release_5019/jsv2/overlay.js?_v=3.40.0.0-release_5019 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Feb 2020 19:28:51 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 16 Feb 2024 03:21:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=2.0.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&d_mid=76088571155755361002458863156306362703&ts=1676517669369
54.195.234.18200 OK 1.7 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=2.0.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&d_mid=76088571155755361002458863156306362703&ts=1676517669369
IP 54.195.234.18:0
File type JSON data\012- , ASCII text, with very long lines (5378), with no line terminators
Hash 74bf94130867ee3c773a649b6f7d262d
8a0d5845fb60f195e46d78710667b751e27923ec
c43d96a7eaa660c2997e6764f89e8000ca9fc0a9472bcfc26ce6b6bcfa94972c
GET /id?d_visid_ver=2.0.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=BBEC02BE53309F2E0A490D4C%40AdobeOrg&d_nsid=0&d_mid=76088571155755361002458863156306362703&ts=1676517669369 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://aerocom.co.il
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-0f6cf9230.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=76066677034825465172456708930533454334; Max-Age=15552000; Expires=Tue, 15 Aug 2023 03:21:09 GMT; Path=/; Domain=.demdex.net
Vary: Origin
X-TID: GdniPffET0g=
Content-Length: 1697
Connection: keep-alive
aerocom.co.il/home/home.min.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/home/home.min.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
Analyzer Verdict Alert fortinet Phishing
GET /home/home.min.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CMCMID%7C76088571155755361002458863156306362703%7CMCAID%7CNONE%7CMCOPTOUT-1676524869s%7CNONE%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669; AMCVS_BBEC02BE53309F2E0A490D4C%40AdobeOrg=1
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
aerocom.co.il/bm/com/sys/img/sprite_icons_altice.png
212.115.111.178200 OK 150 kB URL HTTP/1.1 aerocom.co.il/bm/com/sys/img/sprite_icons_altice.png
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type PNG image data, 408 x 714, 8-bit/color RGBA, non-interlaced\012- data
Size 150 kB (149745 bytes)
Hash 1a502e40f53567ad4e6ba3c85e324e1c
72419a7c7f573f5041152c0031fb25ba4ea3d41f
0fde4c9c87c9e7b45f2edee970396be68320f3762a1a7998aff4b7f7517fcfe4
GET /bm/com/sys/img/sprite_icons_altice.png HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/css/page.css?202005190427
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: image/png
Content-Length: 149745
Connection: keep-alive
Last-Modified: Sun, 04 Oct 2020 06:50:32 GMT
Expires: Mon, 17 Apr 2023 03:21:09 GMT
Cache-Control: max-age=5184000
Pragma: public
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5e5e3a9276ff47a2edaf08ab9566ab13
99eb85488a2aee06a65cb3a9d749ab9d436ef604
e057a54a9d9d039afe0b2b30e61eb3a03c2b60ef9d8908ec9fee25f25b551774
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159027
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:09 GMT
Etag: "63ed6b58-1d7"
Expires: Fri, 17 Feb 2023 23:31:36 GMT
Last-Modified: Wed, 15 Feb 2023 23:31:36 GMT
Server: nginx
Content-Length: 471
aerocom.co.il/support/outage/outage.js?202005190427
212.115.111.178404 Not Found 238 B URL HTTP/1.1 aerocom.co.il/support/outage/outage.js?202005190427
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /support/outage/outage.js?202005190427 HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
Cookie: AMCV_BBEC02BE53309F2E0A490D4C%40AdobeOrg=2096510701%7CMCIDTS%7C19405%7CMCMID%7C76088571155755361002458863156306362703%7CMCAID%7CNONE%7CMCOPTOUT-1676524869s%7CNONE%7CvVersion%7C2.0.0; mbox=check#true#1676517729|session#65cc4edc594344448f993f371e98f4b7#1676519529; _gcl_au=1.1.325780839.1676517669; AMCVS_BBEC02BE53309F2E0A490D4C%40AdobeOrg=1; _ga_Q99KNZFX8Z=GS1.1.1676517669.1.0.1676517669.0.0.0; _ga=GA1.1.809362338.1676517669
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
fast.cablevision.demdex.net/dest5.html?d_nsid=0
23.33.119.10200 OK 2.8 kB URL HTTP/1.1 fast.cablevision.demdex.net/dest5.html?d_nsid=0
IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash b8a1b21bd0651935d53a7bff0c2479d6
31527c952669b6d1d06c537eb50c9043f576e607
80888fb8b92d01d8dd990af664d273f6364b2917741b09911096099ce4eef1bd
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: fast.cablevision.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/html
ETag: "2c9c2ee145ee280b85a217ad7045fae5:1580750826.437238"
Last-Modified: Mon, 03 Feb 2020 17:27:06 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=21600
Date: Thu, 16 Feb 2023 03:21:09 GMT
Content-Length: 2785
Connection: keep-alive
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
www.optimum.net/assets/fonts/onet-icons/onet-icons.woff?20130621
167.206.237.230200 OK 18 kB URL HTTP/1.1 www.optimum.net/assets/fonts/onet-icons/onet-icons.woff?20130621
IP 167.206.237.230:0
File type Web Open Font Format, TrueType, length 17756, version 0.0\012- data
Hash 114c6bb1009c22a65d759a180a59e8fa
769e55be5a4db6cc27eb8f0b4a3fbd91cfb91ac2
ff0330100bf3ac267f71a74effde850fe2252e3e5c17db403a85365c602b229e
GET /assets/fonts/onet-icons/onet-icons.woff?20130621 HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff
ETag: "0114c6bb1009c22a65d759a180a59e8fa"
Last-Modified: Wed, 01 Feb 2023 11:28:26 GMT
Access-Control-Allow-Origin: *
Content-Length: 17756
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
www.optimum.net/assets/fonts/regular/Regular-Bold.woff
167.206.237.230200 OK 63 kB URL HTTP/1.1 www.optimum.net/assets/fonts/regular/Regular-Bold.woff
IP 167.206.237.230:0
File type Web Open Font Format, TrueType, length 62661, version 1.0\012- data
Hash 467d177910ed28d5c8fc03d88b6020b3
0c6183403f8fada1ea64ea856513d7e37ba864f5
6956ea2e1d93df622505b666c2987433a0f5546e4037f0a185c133b20a9a783b
GET /assets/fonts/regular/Regular-Bold.woff HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff
ETag: "0467d177910ed28d5c8fc03d88b6020b3"
Last-Modified: Wed, 01 Feb 2023 11:28:26 GMT
Access-Control-Allow-Origin: *
Content-Length: 62661
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
www.optimum.net/assets/fonts/regular/Regular-Medium.woff
167.206.237.230200 OK 62 kB URL HTTP/1.1 www.optimum.net/assets/fonts/regular/Regular-Medium.woff
IP 167.206.237.230:0
File type Web Open Font Format, TrueType, length 61533, version 1.0\012- data
Hash 4af555f6d24ac7c63f9b26a52373d6d1
b1505074914b54df213e392aa06b79fe253a071d
878a83f4ffa56c09d18f71c29755fdd6f93c2e9702845ec7c83c1da4754d2650
GET /assets/fonts/regular/Regular-Medium.woff HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff
ETag: "04af555f6d24ac7c63f9b26a52373d6d1"
Last-Modified: Wed, 01 Feb 2023 11:28:26 GMT
Access-Control-Allow-Origin: *
Content-Length: 61533
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
www.optimum.net/assets/fonts/regular/Regular-Semibold.woff
167.206.237.230200 OK 63 kB URL HTTP/1.1 www.optimum.net/assets/fonts/regular/Regular-Semibold.woff
IP 167.206.237.230:0
File type Web Open Font Format, TrueType, length 62797, version 1.0\012- data
Hash b4be2f55bb8d2a1366abcb8ef4abe139
91541e121a633a617d852b034057591ac80bcfa8
3bc82f691973445056a54968bdd860864cf27f8505f8a43a2b099e9b7acd5ac9
GET /assets/fonts/regular/Regular-Semibold.woff HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff
ETag: "0b4be2f55bb8d2a1366abcb8ef4abe139"
Last-Modified: Wed, 01 Feb 2023 11:28:26 GMT
Access-Control-Allow-Origin: *
Content-Length: 62797
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
www.optimum.net/assets/fonts/regular/Regular-Regular.woff
167.206.237.230200 OK 63 kB URL HTTP/1.1 www.optimum.net/assets/fonts/regular/Regular-Regular.woff
IP 167.206.237.230:0
File type Web Open Font Format, TrueType, length 62649, version 1.0\012- data
Hash b93ac8c84ffd39feff0f73e031ea7263
a7795477ce3aafefb4855cddc8d0b8bbaa84ed6a
5b85f5f5732534318102cd1b76600be50148a28b8ddf10bc845c43702f2a5fa5
GET /assets/fonts/regular/Regular-Regular.woff HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff
ETag: "0b93ac8c84ffd39feff0f73e031ea7263"
Last-Modified: Wed, 01 Feb 2023 11:28:26 GMT
Access-Control-Allow-Origin: *
Content-Length: 62649
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
region1.google-analytics.com/g/collect?v=2&tid=G-Q99KNZFX8Z>m=45je32f0&_p=2016737013&cid=809362338.1676517669&ul=en-us&sr=1280x1024&_s=1&sid=1676517669&sct=1&seg=0&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Q99KNZFX8Z>m=45je32f0&_p=2016737013&cid=809362338.1676517669&ul=en-us&sr=1280x1024&_s=1&sid=1676517669&sct=1&seg=0&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Q99KNZFX8Z>m=45je32f0&_p=2016737013&cid=809362338.1676517669&ul=en-us&sr=1280x1024&_s=1&sid=1676517669&sct=1&seg=0&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://aerocom.co.il
date: Thu, 16 Feb 2023 03:21:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Thu, 16 Feb 2023 01:49:32 GMT
Expires: Thu, 16 Feb 2023 03:49:32 GMT
Cache-Control: public, max-age=7200
Age: 5498
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a392518c9e8f5ffdba7781e5f7dfba0
05ee3907143e363f871288bd4a9f963d9874b328
abdc294c7e601efc16157d0329a19198f2178712c675fe9ad897912b968ff2ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=159762
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:10 GMT
Etag: "63ed54d1-1d7"
Expires: Fri, 17 Feb 2023 23:43:52 GMT
Last-Modified: Wed, 15 Feb 2023 21:55:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/s-code-contents-b31325c0a059845b5938857cf14407711525dabf.js
2.18.172.233200 OK 30 kB URL HTTP/1.1 assets.adobedtm.com/0101e7930286426309b1a3d069d34bc7de99096f/s-code-contents-b31325c0a059845b5938857cf14407711525dabf.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (1132)
Hash 6c40149a92d3e078412f2a05404644bb
c282ab5b21e4c7d8a2130beea7bb7631d3e92812
672af0fac74dd6f657b7f2e5babb1c1ef9b3578ab7921c9e691257ad85641865
GET /0101e7930286426309b1a3d069d34bc7de99096f/s-code-contents-b31325c0a059845b5938857cf14407711525dabf.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "a3fb2af96e72e86bd91b3ee7141edf22:1593015936.706741"
Last-Modified: Wed, 24 Jun 2020 16:25:36 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Thu, 16 Feb 2023 04:21:10 GMT
Date: Thu, 16 Feb 2023 03:21:10 GMT
Content-Length: 30083
Connection: keep-alive
Access-Control-Allow-Origin: http://aerocom.co.il
Timing-Allow-Origin: *
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: uffjtyvSR9JZFrcf6rRcSqsbR4QOThD0O3KFW4LnsauOfaMxK4bSrqQeGFKjqcDv9WLdeCxsUuk1o2XzoV4kcg==
content-length: 27843
x-fb-trip-id: 1904183273
date: Thu, 16 Feb 2023 03:21:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=76066677034825465172456708930533454334
18.203.152.154301 Moved Permanently 134 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=76066677034825465172456708930533454334
IP 18.203.152.154:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /cm/dd?d_uuid=76066677034825465172456708930533454334 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Thu, 16 Feb 2023 03:21:10 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://cm.everesttech.net:443/cm/dd?d_uuid=76066677034825465172456708930533454334
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a392518c9e8f5ffdba7781e5f7dfba0
05ee3907143e363f871288bd4a9f963d9874b328
abdc294c7e601efc16157d0329a19198f2178712c675fe9ad897912b968ff2ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=159762
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:10 GMT
Etag: "63ed54d1-1d7"
Expires: Fri, 17 Feb 2023 23:43:52 GMT
Last-Modified: Wed, 15 Feb 2023 21:55:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ab208ec30a5a6fe6b1981ec19c0881a
901236a8aa285f5b4f1aa486ef163b901f7660f8
10fc13142a5a02e85f4aeaf47aab2ff7b2eaae37917c84ef043a15ad90abea64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4094
Cache-Control: max-age=141859
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:10 GMT
Etag: "63ed184b-1d7"
Expires: Fri, 17 Feb 2023 18:45:29 GMT
Last-Modified: Wed, 15 Feb 2023 17:37:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
lpcdn.lpsnmedia.net/le_re/3.40.0.0-release_5019/jsv2/UISuite.js?_v=3.40.0.0-release_5019
178.249.97.98200 OK 12 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.40.0.0-release_5019/jsv2/UISuite.js?_v=3.40.0.0-release_5019
IP 178.249.97.98:0
File type ASCII text, with very long lines (30653)
Hash ec574275cada5b6bbe143bb12a5d5b28
caa12c8bef7a8a3b6530c8b9cb7bbac501d06eb3
933c5eb53ec1997b94e461407e88dd4de48f0a72642c0cad18861e3c30d10c0c
GET /le_re/3.40.0.0-release_5019/jsv2/UISuite.js?_v=3.40.0.0-release_5019 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: application/javascript
last-modified: Tue, 18 Feb 2020 19:28:51 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 16 Feb 2024 03:21:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
metrics.optimum.net/b/ss/cablevis-onet-prod/10/JS-1.6.4-D7QN/s34644840041649?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=16%2F1%2F2023%203%3A21%3A10%204%200&d.&nsid=0&jsonv=1&.d&sdid=398439A5ACFAF3E6-556D09758DE881D7&D=D%3D&mid=76088571155755361002458863156306362703&aamlh=6&ce=ISO-8859-1&ns=optimum&g=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&cc=USD&server=aerocom.co.il&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c4=Non%20Mobile&v7=dtm&v14=New&v15=1&v16=Cookies%20Not%20Supported&v17=10%3A00PM%7CWednesday%7CWeekday&v27=D%3Dg&c47=aerocom.co.il%2Fbm%2Fcom%2Fsys&c58=D%3DUser-Agent&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
15.236.125.10200 OK 5.3 kB URL HTTP/1.1 metrics.optimum.net/b/ss/cablevis-onet-prod/10/JS-1.6.4-D7QN/s34644840041649?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=16%2F1%2F2023%203%3A21%3A10%204%200&d.&nsid=0&jsonv=1&.d&sdid=398439A5ACFAF3E6-556D09758DE881D7&D=D%3D&mid=76088571155755361002458863156306362703&aamlh=6&ce=ISO-8859-1&ns=optimum&g=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&cc=USD&server=aerocom.co.il&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c4=Non%20Mobile&v7=dtm&v14=New&v15=1&v16=Cookies%20Not%20Supported&v17=10%3A00PM%7CWednesday%7CWeekday&v27=D%3Dg&c47=aerocom.co.il%2Fbm%2Fcom%2Fsys&c58=D%3DUser-Agent&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
File type ASCII text, with very long lines (5333)
Hash 696e3c8b9ac39deeb3b1ea489dcb4d8d
17e47a05d514b0e410c6b4b64c9568bbe0db6833
c55148734b8d825d321e03de6cd6c28ff5abf77e68c9358f14480d4d8b761293
GET /b/ss/cablevis-onet-prod/10/JS-1.6.4-D7QN/s34644840041649?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=16%2F1%2F2023%203%3A21%3A10%204%200&d.&nsid=0&jsonv=1&.d&sdid=398439A5ACFAF3E6-556D09758DE881D7&D=D%3D&mid=76088571155755361002458863156306362703&aamlh=6&ce=ISO-8859-1&ns=optimum&g=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&cc=USD&server=aerocom.co.il&events=event1&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c4=Non%20Mobile&v7=dtm&v14=New&v15=1&v16=Cookies%20Not%20Supported&v17=10%3A00PM%7CWednesday%7CWeekday&v27=D%3Dg&c47=aerocom.co.il%2Fbm%2Fcom%2Fsys&c58=D%3DUser-Agent&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: metrics.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/
HTTP/1.1 200 OK
access-control-allow-origin: *
date: Thu, 16 Feb 2023 03:21:10 GMT
expires: Wed, 15 Feb 2023 03:21:10 GMT
last-modified: Fri, 17 Feb 2023 03:21:10 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3600294283815911424-4619657636411400393
vary: *
dcs: dcs-prod-irl1-2-v046-068347ed8.edge-irl1.demdex.com 4 ms
x-aam-tid: oBubiLeKQA0=
content-type: application/x-javascript;charset=utf-8
content-length: 5334
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7579
Expires: Thu, 16 Feb 2023 05:27:29 GMT
Date: Thu, 16 Feb 2023 03:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7579
Expires: Thu, 16 Feb 2023 05:27:29 GMT
Date: Thu, 16 Feb 2023 03:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7579
Expires: Thu, 16 Feb 2023 05:27:29 GMT
Date: Thu, 16 Feb 2023 03:21:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F286b4e23-2f24-4932-bfd4-ba436c31684d.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F286b4e23-2f24-4932-bfd4-ba436c31684d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ea5cca15797e54167789b55364dfddf
0feaec0e29208860a9be0523af419363df2e4182
7e57d39f0d12002905d70eb92519995f4cf8839f57c1c79771626819ad46a3f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F286b4e23-2f24-4932-bfd4-ba436c31684d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6433
x-amzn-requestid: ee3090ec-14d5-4c9f-be06-6543ec18c260
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZlzpG8qoAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed5017-28184eb57ce3801903ccd1df;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: YBg-sbZQKY05he8yDo9O2ODA5Ziw1YbWLwrHfdHHIL_SP2D-IZ9KWQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:55:05 GMT
age: 19565
etag: "0feaec0e29208860a9be0523af419363df2e4182"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd78992f4-af2d-45e5-8f91-abdaeac88916.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd78992f4-af2d-45e5-8f91-abdaeac88916.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d40b5d56eb9e9c4fca362f56423387bc
4c568483387863398921826b5727bca298cb97d7
e950b83e1c775e27413b3e5ce9581ed31d53b0e4e187d1fcdc7642900e7271d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd78992f4-af2d-45e5-8f91-abdaeac88916.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7451
x-amzn-requestid: 7d5675ec-acfc-47b8-bd98-694bfc73469e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmVKGh_oAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50ed-4517a3be510c1a14777cf621;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QKDAteeHZexV9a2fG_maQPRxn8qDLQVuKOSti6iTlB74IuqLeITng==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 22:13:13 GMT
age: 18477
etag: "4c568483387863398921826b5727bca298cb97d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 504b69ec2b6350345c36777959b0765a
c302824325b8f0839c7de54af9c5bd02541e4269
6e3a5b1cd7d17a9f448b8189d5683567269b3b3d461838770482283898008f39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14477
x-amzn-requestid: 2544b5cc-3fb0-4536-88ec-8cb9044fb612
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANtsXFBYoAMF6tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e88fe8-452901f67af9f5d95ccc61c3;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 07:06:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QTHmfrEThwRtGFhI3YpLu-1RUIdMM_QrCg5mnH9FT3SQf62cYUdj7A==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 06:49:26 GMT
age: 73904
etag: "c302824325b8f0839c7de54af9c5bd02541e4269"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6386d675-50ad-4b28-b4a3-732cf48d3c33.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6386d675-50ad-4b28-b4a3-732cf48d3c33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1579a43cf253f2fff20581e6f5812d46
8518e9cec90becee026ae6c2b91d36cc62485db9
fea0a82775cb057bb9e05ecd7434aeb3ab3f17e929a823e490dbf1095c2885e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6386d675-50ad-4b28-b4a3-732cf48d3c33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4718
x-amzn-requestid: a7b3efc9-7a68-4d2d-b77b-fa00cb4aa985
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmVLFKiIAMFVrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50ed-02ab3737687e06cf13f90706;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Vu1bzchirpz8ZB1nh4B_T5PFLP3cCKnK2gZyabJOhRSZs7VEvwvRJQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:43:00 GMT
age: 20290
etag: "8518e9cec90becee026ae6c2b91d36cc62485db9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
optimum.tt.omtrdc.net/m2/optimum/mbox/ajax?mboxHost=aerocom.co.il&mboxPage=65cc4edc594344448f993f371e98f4b7&screenHeight=1024&screenWidth=1280&browserWidth=1280&browserHeight=939&browserTimeOffset=0&colorDepth=24&mboxSession=65cc4edc594344448f993f371e98f4b7&mboxCount=1&mboxTime=1676517668800&mboxMCSDID=398439A5ACFAF3E6-556D09758DE881D7&mbox=target-global-mbox&mboxId=0&mboxURL=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&mboxReferrer=&mboxVersion=61
99.80.163.253200 OK 7.7 kB URL HTTP/2 optimum.tt.omtrdc.net/m2/optimum/mbox/ajax?mboxHost=aerocom.co.il&mboxPage=65cc4edc594344448f993f371e98f4b7&screenHeight=1024&screenWidth=1280&browserWidth=1280&browserHeight=939&browserTimeOffset=0&colorDepth=24&mboxSession=65cc4edc594344448f993f371e98f4b7&mboxCount=1&mboxTime=1676517668800&mboxMCSDID=398439A5ACFAF3E6-556D09758DE881D7&mbox=target-global-mbox&mboxId=0&mboxURL=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&mboxReferrer=&mboxVersion=61
IP 99.80.163.253:0
Hash 438a27c05708996a47ff7037ab183fac
8b1d4dd037110b88a4a4e125fb905c9564b47c3c
4ad9081c6c31448227d2c8d1ec7e959420a7159ed14b9c27583cf02b054bd5fa
GET /m2/optimum/mbox/ajax?mboxHost=aerocom.co.il&mboxPage=65cc4edc594344448f993f371e98f4b7&screenHeight=1024&screenWidth=1280&browserWidth=1280&browserHeight=939&browserTimeOffset=0&colorDepth=24&mboxSession=65cc4edc594344448f993f371e98f4b7&mboxCount=1&mboxTime=1676517668800&mboxMCSDID=398439A5ACFAF3E6-556D09758DE881D7&mbox=target-global-mbox&mboxId=0&mboxURL=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&mboxReferrer=&mboxVersion=61 HTTP/1.1
Host: optimum.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:10 GMT
content-type: application/javascript; charset=utf-8
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049c0359-f97c-4035-8318-4d664e9e94e9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049c0359-f97c-4035-8318-4d664e9e94e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffba011968f980db58b57027d4be1ea1
7598dbc5cc76dcdf34a922b01a14c179702fb841
1b8b88ce8216f1917b052481fab0db062890eeb39febeb8bb63fba4643b9eaf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049c0359-f97c-4035-8318-4d664e9e94e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: c060dfec-c37f-4e1d-81db-6cf683ef06f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmNwFj8IAMFdKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50be-364c85595c13ccdb5b900506;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LcKnGzrgv6B1jKNloDvZDmegg8ro3vQOPO3DgiVpFX5fUIomeCmK8g==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 22:12:02 GMT
age: 18548
etag: "7598dbc5cc76dcdf34a922b01a14c179702fb841"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=2016737013&t=pageview&_s=1&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&ul=en-us&de=UTF-8&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=118990241&gjid=1353703232&cid=809362338.1676517669&tid=UA-43239146-1&_gid=1941542009.1676517670&_r=1&_slc=1&z=753342689
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=2016737013&t=pageview&_s=1&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&ul=en-us&de=UTF-8&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=118990241&gjid=1353703232&cid=809362338.1676517669&tid=UA-43239146-1&_gid=1941542009.1676517670&_r=1&_slc=1&z=753342689
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=2016737013&t=pageview&_s=1&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&ul=en-us&de=UTF-8&dt=Optimum%20%7C%20TV%2C%20Phone%20and%20Internet%20Support%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=118990241&gjid=1353703232&cid=809362338.1676517669&tid=UA-43239146-1&_gid=1941542009.1676517670&_r=1&_slc=1&z=753342689 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://aerocom.co.il
date: Thu, 16 Feb 2023 03:21:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash b5c41ee505c48350a5bfcecfb4d5ae69
6540bb39eaea1b5a8a72778ec513e1dfc0485f12
11a9b0c9a681c8a2d6cbfed6e94d6c45af3294f30e934f030d019c3af566af90
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169679
Date: Thu, 16 Feb 2023 03:21:10 GMT
Etag: "63ed7d61-1d7"
Expires: Sat, 18 Feb 2023 02:29:09 GMT
Last-Modified: Thu, 16 Feb 2023 00:48:33 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: i1mAbTI5Prg4HSOZw79OBlyB1lYGrLLvaHUG67HSa40y6EA6-AKvUA==
Age: 6036
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8c370040510c6021cf1d9605d7925cd7
975bc951aa97f69ae0e67678b4ae825c1f8ae52a
3fd4b1984dee89f1da3d44559d66309cbc285178f5caf2d15b7b6ef14fe4ba83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&gjid=1353703232&_gid=1941542009.1676517670&_u=IADAAEAAAAAAACAAI~&z=1518371414
74.125.205.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&gjid=1353703232&_gid=1941542009.1676517670&_u=IADAAEAAAAAAACAAI~&z=1518371414
IP 74.125.205.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&gjid=1353703232&_gid=1941542009.1676517670&_u=IADAAEAAAAAAACAAI~&z=1518371414 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://aerocom.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 16 Feb 2023 03:21:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=76066677034825465172456708930533454334
18.203.152.154302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=76066677034825465172456708930533454334
IP 18.203.152.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=76066677034825465172456708930533454334 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aerocom.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 16 Feb 2023 03:21:11 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y_2hJwAAAFoYUQNe; Domain=.everesttech.net; Expires=Fri, 16-Feb-2024 03:21:11 GMT; Path=/
everest_session_v2="Y@2hJwAAAFoYUgNe"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
Server: AMO-cookiemap/1.1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8c370040510c6021cf1d9605d7925cd7
975bc951aa97f69ae0e67678b4ae825c1f8ae52a
3fd4b1984dee89f1da3d44559d66309cbc285178f5caf2d15b7b6ef14fe4ba83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3757f53f949cb7c2bb6ea7b4704830e8
68204db509c3404cb9e56c82a4ba8223a6ab2c6e
c3dda3b5932c9c87bee971d100de1d46ce73e7b0355368d8acee6d9bfd47572c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 16f6de27455c5b63adbedb4723dfaf0b
4f7ba412760e56c23efdf2fba19c26382c13a948
56d77096cf28d083a903491dbee2a7ad0877510ab78c74cd3b0eefe9bbe8643e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 16 Feb 2023 03:21:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43239146-1&cid=809362338.1676517669&jid=118990241&_u=IADAAEAAAAAAACAAI~&z=692987025 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 16 Feb 2023 03:21:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db1ce628cd57e529be2bff848b652754
a013928468012d3480788b3539f39c456a68bba8
25d86ff748ff599fcf0534a19241c03fcb18f178c44a8366da7214e431330c1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1964
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Last-Modified: Thu, 16 Feb 2023 02:48:28 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 557678ff401326da1fe82a91ad545a3b
34553ffe009c6bece95cc88502bf95285ac0455e
8926c16f4032de5e1748e24d46a35db17b26f63524dfb1c2baafd84999fe4cc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 16f6de27455c5b63adbedb4723dfaf0b
4f7ba412760e56c23efdf2fba19c26382c13a948
56d77096cf28d083a903491dbee2a7ad0877510ab78c74cd3b0eefe9bbe8643e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 03:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpm.demdex.net/ibs:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
54.195.234.18302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
IP 54.195.234.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aerocom.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v046-06ab52116.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=35032967370443495331009260574970796050; Max-Age=15552000; Expires=Tue, 15 Aug 2023 03:21:11 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: gdC/AqOLTCA=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
54.195.234.18200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe
IP 54.195.234.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_2hJwAAAFoYUQNe HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aerocom.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v046-0b57eb040.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: ZrE/HbTQR6c=
Content-Length: 59
Connection: keep-alive
www.facebook.com/tr/?id=333384337077336&ev=PageView&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&rl=&if=false&ts=1676517671094&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1676517671091.1105090381&eid=ob3_plugin-set_be0146530f6664e2d5edfdc14f1160809b2539d2f8a800d1eb1e149bc6a3446a&it=1676517670290&coo=false&exp=c0&rqm=GET
31.13.72.36200 OK 152 kB URL HTTP/2 www.facebook.com/tr/?id=333384337077336&ev=PageView&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&rl=&if=false&ts=1676517671094&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1676517671091.1105090381&eid=ob3_plugin-set_be0146530f6664e2d5edfdc14f1160809b2539d2f8a800d1eb1e149bc6a3446a&it=1676517670290&coo=false&exp=c0&rqm=GET
IP 31.13.72.36:0
File type gzip compressed data, from Unix\012- data
Size 152 kB (151731 bytes)
Hash 877fd1d2719a12a87e65fa563f4edb00
375a1e029d0454f6f552c7abc0c07e476c4ad1a5
e7e5ac97a801d6a04198a3f8e04f78d5888032f0ff4c6616e03d4fe317b0ce2e
GET /tr/?id=333384337077336&ev=PageView&dl=http%3A%2F%2Faerocom.co.il%2Fbm%2Fcom%2Fsys%2F&rl=&if=false&ts=1676517671094&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1676517671091.1105090381&eid=ob3_plugin-set_be0146530f6664e2d5edfdc14f1160809b2539d2f8a800d1eb1e149bc6a3446a&it=1676517670290&coo=false&exp=c0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 16 Feb 2023 03:21:11 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3451160c20284a6191a07f9616a1bb15
84d33982ae9bed9a181817a3164f0a6eec85e75c
5d3129f74446688b60f7e04de58b19e38616858abfb3b825fdd868639c2f9f1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D3129F74446688B60F7E04DE58B19E38616858ABFB3B825FDD868639C2F9F1C"
Last-Modified: Wed, 15 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12330
Expires: Thu, 16 Feb 2023 06:46:42 GMT
Date: Thu, 16 Feb 2023 03:21:12 GMT
Connection: keep-alive
capi.spire.horizonmedia.com/events
3.92.115.15200 OK 0 B URL HTTP/2 capi.spire.horizonmedia.com/events
IP 3.92.115.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: capi.spire.horizonmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 333
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:12 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: http://aerocom.co.il
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
www.optimum.net/assets/images/map-placeholder.png
167.206.237.230200 OK 1.4 MB URL HTTP/1.1 www.optimum.net/assets/images/map-placeholder.png
IP 167.206.237.230:0
File type PNG image data, 1200 x 732, 8-bit/color RGB, non-interlaced\012- data
Size 1.4 MB (1365571 bytes)
Hash d4038f4f9a9dbb96a70262253b29b43d
ffaa9939df357b9b3888f2230e4febcf764855de
f66084fc6a903a5fcf2aec47dc559131f439ee0c003210d791fa3777360fc0d4
GET /assets/images/map-placeholder.png HTTP/1.1
Host: www.optimum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
ETag: "0d4038f4f9a9dbb96a70262253b29b43d"
Last-Modified: Wed, 01 Feb 2023 11:28:28 GMT
Content-Length: 1365571
Accept-Ranges: bytes
Date: Thu, 16 Feb 2023 03:21:09 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
capi.spire.horizonmedia.com/events
3.92.115.15200 OK 0 B URL HTTP/2 capi.spire.horizonmedia.com/events
IP 3.92.115.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: capi.spire.horizonmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 341
Origin: http://aerocom.co.il
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:12 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: http://aerocom.co.il
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23403 Forbidden 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
GET /lptag/api/account/38299855/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
aerocom.co.il/bm/com/sys/
212.115.111.178200 OK 0 B URL HTTP/1.1 aerocom.co.il/bm/com/sys/
IP 212.115.111.178:0
ASN #44709 O.m.c. Computers & Communications Ltd
Analyzer Verdict Alert fortinet Phishing
GET /bm/com/sys/ HTTP/1.1
Host: aerocom.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aerocom.co.il/bm/com/sys/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Feb 2023 03:21:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
lptag.liveperson.net/tag/tag.js?site=38299855
178.249.101.23403 Forbidden 0 B URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=38299855
IP 178.249.101.23:0
GET /tag/tag.js?site=38299855 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&force=1&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&force=1&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:09 GMT
content-type: application/javascript
last-modified: Mon, 30 Mar 2020 14:49:28 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 16 Feb 2024 03:21:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.html?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.html?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.10.0.1-release_5033/storage.secure.min.html?loc=https%3A%2F%2Fwww.optimum.net&site=38299855&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aerocom.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 16 Feb 2023 03:21:10 GMT
content-type: text/html
last-modified: Mon, 30 Mar 2020 14:49:28 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 16 Feb 2024 03:21:10 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2