r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13947
Expires: Wed, 08 Feb 2023 06:56:14 GMT
Date: Wed, 08 Feb 2023 03:03:47 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17154
Expires: Wed, 08 Feb 2023 07:49:41 GMT
Date: Wed, 08 Feb 2023 03:03:47 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5315
Expires: Wed, 08 Feb 2023 04:32:22 GMT
Date: Wed, 08 Feb 2023 03:03:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 02:34:11 GMT
content-type: application/json
age: 1776
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 49tgBdtp/UV1vUh5Weg79YRLJeJbCPHyizknQZlFQ7r3x069X+tFuX2/y/So6uJGTucHPmFGemU=
x-amz-request-id: T3F3YRWEMKV0XHG4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 02:35:45 GMT
age: 1682
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 03:03:48 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 02:51:20 GMT
age: 748
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
worker.co.il/wp-admin2/image/Panel/five/fre.php
185.145.252.20301 Moved Permanently 0 B URL HTTP/1.1 worker.co.il/wp-admin2/image/Panel/five/fre.php
IP 185.145.252.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-admin2/image/Panel/five/fre.php HTTP/1.1
Host: worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 08 Feb 2023 03:03:48 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=21e3bd4cf38b66de56c9b2b203df1266; path=/
Location: http://www.worker.co.il/wp-admin2/image/Panel/five/fre.php
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: BYPASS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7836
Expires: Wed, 08 Feb 2023 05:14:24 GMT
Date: Wed, 08 Feb 2023 03:03:48 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.218.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.218.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LXrR1bXb0cnTjCl/wfRMEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ud2x4zJ5GUzLNXK+ejRujMYgECQ=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 03:03:50 GMT
Connection: keep-alive
www.worker.co.il/wp-admin2/image/Panel/five/fre.php
185.145.252.20301 Moved Permanently 14 kB URL HTTP/1.1 www.worker.co.il/wp-admin2/image/Panel/five/fre.php
IP 185.145.252.20:0
Hash d2088e1d010dd436fffe4a27d4564d4c
85b741853983822984aab026d683594179030e63
8c6ab064694c6d7e6f97beff4af6780940c5f82cea397dc1eb18f4aaa9ebdcea
Analyzer Verdict Alert fortinet Malware
GET /wp-admin2/image/Panel/five/fre.php HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 08 Feb 2023 03:03:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.worker.co.il/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5; path=/
Location: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: BYPASS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 03:03:50 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 03:03:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02fde25be5ded120af759d19d8304f73
8d2a4d9ab5947113ce0737d4d4bed3e30a971026
7cdf26668cca22f28eee047d3fcf30cea8d97b1d8804fe2132728f26cd11558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8629
x-amzn-requestid: cc20d28e-3937-4826-97ef-100fb5dd2645
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFn3oAMF61A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-6e764236604212fa26dab38a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0sEMzqETD-gbgXOXb_CJmLjYQmNGMN4-_ggiB7ifbifltHJYsTRRsQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:22 GMT
age: 18688
etag: "8d2a4d9ab5947113ce0737d4d4bed3e30a971026"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:45:27 GMT
age: 69503
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 17835
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e2b00c2-f304-42e8-b98d-20fe408448f0.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e2b00c2-f304-42e8-b98d-20fe408448f0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c65144dcdaf688643761916851b151c0
1419c4eefac8032e8cfaf2d65dd4a57bff5b25a1
974b5a62f2d051b2dd2c609f7bd08a4ef339dab0d31bccaa0f9898893c3ba6b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e2b00c2-f304-42e8-b98d-20fe408448f0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3379
x-amzn-requestid: 6f8c97bc-c1f9-4681-9544-f2863dc7f782
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSYH47oAMF-ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070db-4a730cd079f03c8b1cf77997;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qnk0MflT4eIxNuooDKhm0uauKq1dYj1iG9O_prtNU8c0IoAwODZxig==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 03:28:43 GMT
age: 84907
etag: "1419c4eefac8032e8cfaf2d65dd4a57bff5b25a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed10868ea9554510e43f77dfb8c43877
df0d86c2c53bdec7b8935912e42dc7f82f87aa61
751e95e7dd20802cc4e0b6f208bf5559b0b73efd3ca22a9abafd86cf83ab6420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12401
x-amzn-requestid: 7bfa8a84-c348-4f55-8e8e-befcdd24f026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjPG-eIAMFccA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47a-06eedb3c7396825f77360755;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i1abBvjQY4dXbxTHyy0Wxxn9PCvTO0YkAO8PS8kKA9Zl5TeiUEtErw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:49:59 GMT
age: 18831
etag: "df0d86c2c53bdec7b8935912e42dc7f82f87aa61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 845e4e4051f1162b20d3df5f208e8d3e
076462f67531c60b31ec768a275c96317292306d
40996d8929ab92f342328fc018518d6131c6222b0ec23051775eda276a602026
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4168
x-amzn-requestid: 24814225-0063-49fb-86ff-e78869538b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjQFS_IAMFtLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-67307c42182089b3096e98b5;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qLuHdYthPTS7qoVjS783M1Q-RtOluQpKozCi-zABez133FyvgBsBog==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:37 GMT
age: 19213
etag: "076462f67531c60b31ec768a275c96317292306d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.worker.co.il/wp-admin2/image/panel/five/fre.php
185.145.252.20404 Not Found 22 kB URL HTTP/1.1 www.worker.co.il/wp-admin2/image/panel/five/fre.php
IP 185.145.252.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13275), with CRLF, LF line terminators
Hash 848362084857eba852ed33f68ed87f18
8b932902026c3d38bdc8571810e4750ae64cf6e9
97b76c49f7cb60b7d10a97a443260d1871884d3988b6feddf71a3f962890d276
GET /wp-admin2/image/panel/five/fre.php HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.worker.co.il/wp-json/>; rel="https://api.w.org/"
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=1.0.5
104.18.10.207200 OK 7.4 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=1.0.5
IP 104.18.10.207:0
File type ASCII text, with very long lines (28900)
Hash 70073221d10a213f81fae0c863806dd8
2172a64103a4b41488447842ebaa59a07344e2e5
49b64d002ae60c4d8f981fb84ab87ef225623294b34f4981f91e391e17027e89
GET /font-awesome/4.6.3/css/font-awesome.min.css?ver=1.0.5 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: US
CDN-EdgeStorageId: 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:55 GMT
CDN-CachedAt: 2021-04-13 03:03:25
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 622a5ba679c102d371ee1655447ba47b
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 1723963
Server: cloudflare
CF-RAY: 7961226e9be8b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.jsdelivr.net/jquery.slick/1.6.0/slick.css?ver=5.4.12
104.16.89.20301 Moved Permanently 0 B URL HTTP/1.1 cdn.jsdelivr.net/jquery.slick/1.6.0/slick.css?ver=5.4.12
IP 104.16.89.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jquery.slick/1.6.0/slick.css?ver=5.4.12 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 03:03:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 08 Feb 2023 04:03:50 GMT
Location: https://cdn.jsdelivr.net/jquery.slick/1.6.0/slick.css?ver=5.4.12
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BK1wIzK6B9CplxpNXq%2FhKwHP6zNOtHD8ABJlLI%2FyA%2Fz%2FYf%2BclrzOiQu1yT0Eu047Wbt6fjy8SCuZarjVocOQwHeCGja4KfH6utStw5WWI1cMZ5Ken7J%2B3wmlh6UyTP4i0Nk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7961226ead250b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300&ver=5.4.12
142.250.74.74200 OK 766 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300&ver=5.4.12
IP 142.250.74.74:0
Hash d71ac876718b3fde556fc24de7f2eb10
018c76462bcae6729b565a9574eef581eda66e2c
a7f9e7d976c649dc7d1131408a0c672cf342113cbab5d826e1d607f7ca6bd169
GET /css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300&ver=5.4.12 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 08 Feb 2023 03:03:50 GMT
Date: Wed, 08 Feb 2023 03:03:50 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.worker.co.il/wp-content/themes/sogo-child/css/typeahead.css?ver=5.4.12
185.145.252.20200 OK 944 B URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/css/typeahead.css?ver=5.4.12
IP 185.145.252.20:0
File type assembler source, ASCII text
Hash c1d51eaedd6ca4b94da12f917c10ba3e
722eb629bbe8bba835447c3ebc3ba54914cd0d8f
4e9078c386e83f4c22b83bdbab4946d9e101e1aa64049b25d3898ef4d081ae16
GET /wp-content/themes/sogo-child/css/typeahead.css?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 30 Apr 2020 12:43:41 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
code.jquery.com/ui/1.12.1/themes/base/jquery-ui.css?ver=63e3111691dcc
69.16.175.42200 OK 8.3 kB URL HTTP/1.1 code.jquery.com/ui/1.12.1/themes/base/jquery-ui.css?ver=63e3111691dcc
IP 69.16.175.42:0
File type ASCII text, with very long lines (2363)
Hash 5f648878fbbe3dda9cfbee54e62c3f90
e1d85dd9613b00d065a88b00347e46cf124b464a
6e3e4c70fc6aa5cc461500bc931843ca58f300c8627b1e7c6cfab7fb083f850f
GET /ui/1.12.1/themes/base/jquery-ui.css?ver=63e3111691dcc HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:50 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 8323
Content-Type: text/css
Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"28feccc0-8c85"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1675825430.dop001.sk1.t,1675825430.cds066.sk1.c
cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js?ver=5.4.12
104.16.89.20301 Moved Permanently 0 B URL HTTP/1.1 cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js?ver=5.4.12
IP 104.16.89.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jquery.slick/1.6.0/slick.min.js?ver=5.4.12 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 03:03:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 08 Feb 2023 04:03:50 GMT
Location: https://cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js?ver=5.4.12
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KiGL0TzsZHRpPSiTzlRsj%2BWFINXjhAmCUx6rDW5iqAY8SCtIAlVUHUertucXSA1rEG%2B35SiSuOynrfsrtLb7w1VHtzI0NkP2gWayV5IqYUCx%2F6NRsXFFLrYvMXFgFuVo5qY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7961226f6d510b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.worker.co.il/wp-content/plugins/pdf-print/css/frontend.css?ver=2.3.1
185.145.252.20200 OK 356 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/pdf-print/css/frontend.css?ver=2.3.1
IP 185.145.252.20:0
Hash 9a4e4d6129dede157d2608919f32ddd6
fcbee7573f9bd8775d5bf6485cc2811a4c32e918
8018751e8c66afc891d4f5b3406d17f1cc193ed7b4aaf040f1314853dab39afa
GET /wp-content/plugins/pdf-print/css/frontend.css?ver=2.3.1 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 10 May 2022 17:31:27 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0
185.145.252.20200 OK 1.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (3277), with no line terminators
Hash 045e6187d9c97ffb6a88bd630c50ca83
787a25241b14bddfb61ca92cdafb32c5ea1d509d
47bfb16cbb328bbbed7a6bdf580710736cdc1de926528b3f8ded121d64441d84
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=4.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
code.jquery.com/ui/1.12.1/jquery-ui.js?ver=63e311166041c
69.16.175.42200 OK 124 kB URL HTTP/2 code.jquery.com/ui/1.12.1/jquery-ui.js?ver=63e311166041c
IP 69.16.175.42:0
File type ASCII text, with very long lines (1002)
Size 124 kB (124434 bytes)
Hash 2c20d94f200cc85f5f03b61baf0fbfca
23b24e5397703a1c2484b018986036024f10745a
d2dae630b0d5251b8bfb435c111fba839684f23f07d7471f6d2bc3bee597b9e3
GET /ui/1.12.1/jquery-ui.js?ver=63e311166041c HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 03:03:50 GMT
content-encoding: gzip
content-length: 124434
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-7f20a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675825430.dop224.sk1.t,1675825430.cds256.sk1.hn,1675825430.cds261.sk1.c
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/css/front.css?ver=2.2.9.4
185.145.252.20200 OK 4.8 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/css/front.css?ver=2.2.9.4
IP 185.145.252.20:0
Hash ac0baa08ff9296469f23dba1410359b4
f7613a07fda4ce26d292de313b666acd380225ea
b7d0b1100309463b7e5863ef27de04075fb0ac323386542c56ce1d74551491b2
GET /wp-content/plugins/woocommerce-products-filter/css/front.css?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-layout-rtl.css?ver=5.0.0
185.145.252.20200 OK 2.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-layout-rtl.css?ver=5.0.0
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (17964), with no line terminators
Hash 13b32aeb96d0dd934ec845f3f6de104b
6abd17d08b0b0801d201dccd3cf16f87f3c022eb
fda546793d37e7f9c79ff16db9bc428766d446bed1ca0f63227a6761a8c6c487
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout-rtl.css?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/ext/label/css/html_types/label.css?ver=2.2.9.4
185.145.252.20200 OK 435 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/ext/label/css/html_types/label.css?ver=2.2.9.4
IP 185.145.252.20:0
Hash 87a8924243d4a0d4b62dbe8974e19853
ac47a8920c82b0336937f58a95a548105c2e9005
fd46e916e3ef33c07466d54309f2ae6d28738b362b192b8a0ac8ace1660e50a6
GET /wp-content/plugins/woocommerce-products-filter/ext/label/css/html_types/label.css?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=1.3.21
185.145.252.20200 OK 1.0 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=1.3.21
IP 185.145.252.20:0
Hash b3f64c040ac4e21e7e6dd493dc64318b
fa14996077b97799cf467c59da44a0310015bb50
647a169e9f90bd6e98669a647132c6bee6f285b0b95b4087f0bbd78ef1d14678
GET /wp-content/plugins/yith-woocommerce-badge-management-premium/assets/css/frontend.css?ver=1.3.21 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 14 Nov 2019 06:23:01 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-rtl.css?ver=4.0.0
185.145.252.20200 OK 18 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-rtl.css?ver=4.0.0
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash eba672401b731f881c20bf4f3d151f39
4991064ac245f4cb59c001b82c6c6794be5aca1e
01ea75abe279d062d97605536ba507f8cfa6f05bc4ab6371ab065dec5a5baec5
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style-rtl.css?ver=4.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:50 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-rtl.css?ver=5.0.0
185.145.252.20200 OK 8.9 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-rtl.css?ver=5.0.0
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (62872), with no line terminators
Hash 8491d9a5be7ca0c8a9274dc0d6c436ab
0ffde64bae9795229ffda0c972eb4a98892abc85
a6f0fc8a8d80b4aae15c93ba8c77bdfa5261b01d0c0fdf18b6818e91f5ff8fb0
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-rtl.css?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/owl/owl.carousel.min.css?ver=3.12.0
185.145.252.20200 OK 1.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/owl/owl.carousel.min.css?ver=3.12.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (3184)
Hash 268f5b0c948fb752714b5bb22a009403
3fbb402ecd3f30faa8b9843cdcd88373726d8aa1
ddfec2b1fdb35b5784dba0e0742a6b5618bcda1971ddca562569ae14f530cc35
GET /wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/owl/owl.carousel.min.css?ver=3.12.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 28 Feb 2022 13:33:28 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.css?ver=5.4.12
185.145.252.20200 OK 447 B URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.css?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with very long lines (783), with CRLF line terminators
Hash e934b284d1af5e85fac4f56c03358757
75c66181ab7d400740917178a43868340a6c1b9a
d4cefec23a5a8ff9631c2fb7f4382d30f8276c9d2738376b09cf4e6734e97c9f
GET /wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.css?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Jun 2017 09:57:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
185.145.252.20200 OK 485 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 185.145.252.20:0
File type ASCII text, with very long lines (1519), with no line terminators
Hash afc3772f39399536238b86ae9b3305cf
c6d9c8b230d6a5414de87f73ec1f68004c704e6a
417d26d67c782a476081e7c59540adb0afd737474cca7b58a7f3ecafd40c778e
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Jul 2022 17:31:29 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/frontend.css?ver=3.12.0
185.145.252.20200 OK 2.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/frontend.css?ver=3.12.0
IP 185.145.252.20:0
Hash 1e9b05fd4155e6e269e8ca6dbab21c96
9bd9a66f0327612faaebce03ba8712418527b33d
e16b9dc3a4b9887b5686ade38f312c0cdac51968b60f4a2380cf62cebfe9ad21
GET /wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/css/frontend.css?ver=3.12.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 05 Apr 2022 04:48:02 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
185.145.252.20200 OK 4.0 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 185.145.252.20:0
File type ASCII text, with very long lines (9959)
Hash 6bec1f76b8e1794067a92462be219db2
9b3b02920957594dd64e09fd2cf057413cfd2347
17763f08cd4c81bf9dd2f9d301396df32cede70c9b267a82602af99e342d8680
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 31 Jul 2019 13:29:13 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
185.145.252.20200 OK 129 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 185.145.252.20:0
File type ASCII text, with no line terminators
Hash 5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 129
Connection: keep-alive
Last-Modified: Wed, 27 Jul 2022 17:31:29 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-classic.js?ver=1.16.2
185.145.252.20200 OK 526 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-classic.js?ver=1.16.2
IP 185.145.252.20:0
Hash fa525c9e58f8729d0d80e9b1731a6eed
6b6771c7315e83469408517204257b43bb1d2ebe
57e2780240737a850937d04ace0f5e697f3309525e5a18d9b1b629ef47dbd263
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-classic.js?ver=1.16.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 17 Nov 2022 17:31:25 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
185.145.252.20200 OK 34 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 185.145.252.20:0
File type ASCII text, with very long lines (31997)
Hash bd62f6ccb070286e53b939e1a887eda3
f58899c44039fc98e15fbea7b8a59ce71d2eb5f8
0baca579f755c2dfc32730c397c364b5ef7bdd70bd71bcccf61198362e40efe3
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 31 Jul 2019 13:29:13 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-enhanced.js?ver=1.16.2
185.145.252.20200 OK 7.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-enhanced.js?ver=1.16.2
IP 185.145.252.20:0
Hash 63ac8617eaad4389bd7ac0f6efb237b1
6eb02edcda708d789ca558b5ac56683d7fc72124
377a356863cf67650caca1929f3d9508a4a5ab26454184d6788acf4995a4618f
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-woocommerce-enhanced.js?ver=1.16.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 17 Nov 2022 17:31:25 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/rtl.css
185.145.252.20200 OK 4.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/rtl.css
IP 185.145.252.20:0
File type ASCII text, with very long lines (399)
Hash d87ab14652d619635906e998e48e3434
5a8e62ea9818fb644c3d7747613abc8794c3cbe4
a6ce3e419462bb9408056b72a8624ede40226f229ae1df7f6397e549fb9e69ae
GET /wp-content/themes/sogo-child/rtl.css HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 27 Jul 2021 07:32:14 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo/assets/css/bootstrap.css?ver=5.4.12
185.145.252.20200 OK 21 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo/assets/css/bootstrap.css?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash 667cd177e9fb53e83852028487d8bccc
f6d9ed21db831b40956b6011b391c2ab9e936790
0768d3a0daefed86f9269950ae801c0b54c0af915ffa0e6ef7e900143a841c54
GET /wp-content/themes/sogo/assets/css/bootstrap.css?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Jun 2017 09:57:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: UPDATING
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/contact-form-7/includes/css/styles-rtl.css?ver=5.3.2
185.145.252.20200 OK 177 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/contact-form-7/includes/css/styles-rtl.css?ver=5.3.2
IP 185.145.252.20:0
Hash a250e950adc23b5d57f692d7ba709e68
f218cfecedfed10ba7247500ea97f59f2791e9ec
635d0aaafa653f44c2950fa88a93097c726685118b4200df66278cf0a825b977
GET /wp-content/plugins/contact-form-7/includes/css/styles-rtl.css?ver=5.3.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 177
Connection: keep-alive
Last-Modified: Thu, 17 Dec 2020 13:24:11 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/themes/sogo-child/style.css?ver=63e3111691dc8
185.145.252.20200 OK 111 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/style.css?ver=63e3111691dc8
IP 185.145.252.20:0
File type assembler source, ASCII text
Size 111 kB (111131 bytes)
Hash 6bd10720b4a1026d816657d99e6be7a7
b2320101a19428b14058be3b094c58254c7bd7e9
9c2f11b79869edffc564c926ff5ee529fa80b080d5cf157bb849ee7ce2d42175
GET /wp-content/themes/sogo-child/style.css?ver=63e3111691dc8 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 27 Jun 2021 10:20:19 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
185.145.252.20200 OK 733 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
IP 185.145.252.20:0
Hash 9921b2e3793669c0bd368eac881c9305
89aa1de6c9e58e54114afa0cbca40a6afb9cbcf8
3237c7c9c69adf195318991742a0e09c0013843e3928dcca3f7aaed589bd7d79
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 23 May 2021 17:55:13 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.4.12
185.145.252.20200 OK 7.5 kB URL HTTP/1.1 www.worker.co.il/wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with very long lines (53367), with no line terminators
Hash ee6beb73422064b43cdd04f54b3e9806
ae05fcaed25a5b861ab72be123f8a52f14b06c82
7fcac313507840e18efb442f273186912c282557b23552e81e85c93c0932b357
GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 30 Apr 2020 01:24:59 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/sogo-accessibility/public/css/sogo-accessibility-public.css?ver=1.0.5
185.145.252.20200 OK 2.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/sogo-accessibility/public/css/sogo-accessibility-public.css?ver=1.0.5
IP 185.145.252.20:0
Hash c9d69659477359d076681f7b1a4a728e
894e01e5b78f3ab3c29360b44efb192582f43ce8
d2a38532063f5201f379dadfc4706d93656b5490225012315c76bcffce431b18
GET /wp-content/plugins/sogo-accessibility/public/css/sogo-accessibility-public.css?ver=1.0.5 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 12 Apr 2020 11:56:31 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: UPDATING
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f8103ae7449b7cae1890202656e95098
a41323530b80994ea81ed8a12da1d2d016d5e072
639e7ec421dfb6ec277951d2663325dd51064b20d91e5f5ee90b8063285c307a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/client:plusone.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/client:plusone.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash ae90c07cdb212d87f7e23ba98e327cfa
994be89737b40333ad55f4d59d95adbb2206591f
39d84e40f6b0446733cd0d23c154fc9a652af895ba5464e228286d00621786af
GET /js/client:plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20954
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Wed, 08 Feb 2023 03:03:51 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "a5363d4c7dca04a3"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/social-login-lite-for-woocommerce/js/checkout.js?ver=5.4.12
185.145.252.20200 OK 261 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/social-login-lite-for-woocommerce/js/checkout.js?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with CRLF, CR line terminators
Hash 1688f3e72bab873c80962549efd63549
f22274c39614c67bd0b567d6fa9d63fdd1ae1649
ba594ee6dd2760b0132273d2fd798f1936ef5907c735709bbd8b80f93b63b14a
GET /wp-content/plugins/social-login-lite-for-woocommerce/js/checkout.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 12 Apr 2020 11:56:30 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
185.145.252.20200 OK 1.8 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (3704)
Hash 5ff8d775447a92278df29981ac4a1bda
7d69e7f890ef678e5f1e3d0e107c934cc94d18d0
a1d1d40f93746fcbbc5ec4d27ccd0251b9475208d3cc25d58c2248b4de8ceecf
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
185.145.252.20200 OK 991 B URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (2927)
Hash 68afacc106904bdca5516e3dc9725f7a
2639db07fde4f1b35d341f9c5dff206c4e4d555c
536fbc02787c939056f0b5dcde96e725813766ba42afbf2e6db1e91a23ca6d4b
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=2.2.9.4
185.145.252.20200 OK 1.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=2.2.9.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (6495), with no line terminators
Hash d53510f81120c2360d82898e7178eeca
468c4ef93f7fcd53cae63bc9ef46867164b821f9
689f03f751dba5f1c509793ce06ce530c1a980b99f90067d14a84077dc358799
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=2.2.9.4
185.145.252.20200 OK 285 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=2.2.9.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (1324), with no line terminators
Hash f071722166608f28f5a715e1c15eb6d0
6ef34f7088f87139f341e1f38d75c849e9a581e4
79eadd11507a20c8419127a12cf54a303c7ec72fbfc8e99f84ffb0d8fd73c69b
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
185.145.252.20200 OK 2.5 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (6603)
Hash b17e7403ba8f883139a120c50c5055a7
0d08bfd0854b490be9a0f5468d1b2df01cfe3d07
8ad7756c37408713ee51089ddb13aba6f9d5a549ab4b70bfe41811a7a1363287
GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
185.145.252.20200 OK 3.0 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (10694)
Hash a7bef9245c0288c275532c27b4a0d97f
e588d876a4cf3a2bcc96c20852e2e6e036d93fad
f5071e176716df55f9ff27515fdc9d40e44ff9014193a123c2fa89fd63b50bd5
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/js/bootstrap.offcanvas.js?ver=5.4.12
185.145.252.20200 OK 2.4 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/js/bootstrap.offcanvas.js?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with CRLF line terminators
Hash af89e39f19e14c44daba6eca7f252265
099694a8874d3b08cdc8b492989e53ab30f328ef
a8ee7084235d97ef3bb1b1b0cdd3f86e3bb59ae7c2faaca4d72cff3aa0c3e591
GET /wp-content/themes/sogo-child/js/bootstrap.offcanvas.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Dec 2017 07:27:13 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/js/scripts.js?ver=63e3111660483
185.145.252.20200 OK 6.3 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/js/scripts.js?ver=63e3111660483
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 146e602622cd796dfae735ef57c448da
67ee51044d96ed2a6633e843cd3b6242de9ccdf8
580485e23d37d9fab347d9744cf3bd219c03b9fff3c13c52409ce91d4985e873
GET /wp-content/themes/sogo-child/js/scripts.js?ver=63e3111660483 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 18:32:57 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
185.145.252.20200 OK 3.9 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP 185.145.252.20:0
Hash 443550a78537e3fa479ff2dca7a979f2
43d8835908f55f0718dcfaff1e5c9c2b30ba5ad2
0bf7fcce878dd6b977decbccd8eb8ac788d024b0a41fe61dd7a5c62ff84eefa0
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 17 Dec 2020 13:24:11 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=5.4.12
185.145.252.20200 OK 18 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with CRLF line terminators
Hash 70ef1f6d7e890ba0ded19a421684313a
daa5a56f5e72cd552061d60ae50918fac8d901e0
e02bfaa5c8d25a5f25859c98f714202bcbaef26edfa0739589c2e8112030c1da
GET /wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 30 Apr 2020 12:43:30 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/js/contact.js?ver=5.4.12
185.145.252.20200 OK 672 B URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/js/contact.js?ver=5.4.12
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2eba6ce201ee1f842a85263178e5da39
1c1e96d334e9e7391b7734a7193f18908ef0b37e
51151e1b6147fe14629b09acd89947ac90f494c6545ebd4c86b294682c2f927f
GET /wp-content/themes/sogo-child/js/contact.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 20 Nov 2020 12:42:41 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79d372fcfe4af96deb9eeec35b5a71b6
6eb187a9cf2b731223c401e2701908319e931f10
80a02d0becf0808b3221016fad6fed3adf0493da15bdf7a787fe9690b4307399
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4314
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Last-Modified: Wed, 08 Feb 2023 01:51:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3827a0b02468d03ceb8762baa12c6dc0
e5f46051c6038a779475daec3548dbea4536acf7
150e1224ce68bc94c6822afd00883c5a8ecb34c37e9ae5cfcde0d141bf33cba8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5615
Cache-Control: max-age=138642
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Etag: "63e275ba-117"
Expires: Thu, 09 Feb 2023 17:34:33 GMT
Last-Modified: Tue, 07 Feb 2023 16:00:58 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
www.worker.co.il/wp-content/plugins/sogo-accessibility/public/js/navigation.js?ver=1.0.5
185.145.252.20200 OK 1.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/sogo-accessibility/public/js/navigation.js?ver=1.0.5
IP 185.145.252.20:0
File type ASCII text, with CRLF line terminators
Hash 9b1398871009bfeb81bc57663dd6e0ef
e8c008995195dfd09076722bd702cf85cd6c79f0
d249a3723fc76c7982d715bceaff2d1a23d953ff2a757bdc50f8bd8cbb144df6
GET /wp-content/plugins/sogo-accessibility/public/js/navigation.js?ver=1.0.5 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 12 Apr 2020 11:56:31 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/sogo-accessibility/public/js/sogo-accessibility-public.js?ver=1.0.5
185.145.252.20200 OK 1.8 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/sogo-accessibility/public/js/sogo-accessibility-public.js?ver=1.0.5
IP 185.145.252.20:0
Hash b14e5e3cbdd078fc9ef317edc50961e2
ca5b1edc7cede4ef39b053ed4648f69d3c0c8f34
fba91137507fb4e9ce0f363621c6b901c9af2f4004e24e350ce8d89608d92d74
GET /wp-content/plugins/sogo-accessibility/public/js/sogo-accessibility-public.js?ver=1.0.5 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 12 Apr 2020 11:56:31 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
185.145.252.20200 OK 3.5 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 185.145.252.20:0
File type ASCII text, with very long lines (9081)
Hash fd4c60f8c45736d2abf43edbce57e4c1
940ce165a2a54746de553d75b95e48535b4742ef
3616cd3a8a010ea66870edf46bf1799477d98fef8b5d6d6e1b1be24c96ffcfe6
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.0.0
185.145.252.20200 OK 1.1 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.0.0
IP 185.145.252.20:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash bbb5fe8677e019334f85e46da6e32193
1a08e71a4c5b3709848a17c4b32b7f530e1a7503
4caca3ceea4c78f2846f3cc5e7de12eadb2dd6e5e53d8811cfecb4ea53a14457
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.google.com/recaptcha/api.js?render=6LcjjpsUAAAAAGcV00CpUrHZ_a-OORiS0l1kAJm7&ver=3.0
142.250.74.132200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcjjpsUAAAAAGcV00CpUrHZ_a-OORiS0l1kAJm7&ver=3.0
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ab4f704c5f0fbd844b145d75f5b73f16
df0e23d9bfd8d5f30e22d12ab0295442cd20a853
e9480f12e4654269e5749482195f3065434ccb33af5a5d60568a42c180442ee8
GET /recaptcha/api.js?render=6LcjjpsUAAAAAGcV00CpUrHZ_a-OORiS0l1kAJm7&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 08 Feb 2023 03:03:51 GMT
date: Wed, 08 Feb 2023 03:03:51 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
185.145.252.20200 OK 982 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (1668)
Hash 26a4b638eff44f052d9561fd47ec0c05
697b07227e37b3cb04fddca386b699c03a16f9f1
c2f5839680be44017b3dfefae187b1c47298e36aed1edc5775817c78f5fa387d
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.0.0
185.145.252.20200 OK 781 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (2057), with no line terminators
Hash 3b32b6196a35e9aefd038b8cacd50ea7
5656e8896bc0ea0ad5b9f52809f88a6dc4da4d69
93b6bc2eedc82743993915e0ab1ea28867925a4f87a5a27b1d2371acda7e979c
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79d372fcfe4af96deb9eeec35b5a71b6
6eb187a9cf2b731223c401e2701908319e931f10
80a02d0becf0808b3221016fad6fed3adf0493da15bdf7a787fe9690b4307399
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4314
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Last-Modified: Wed, 08 Feb 2023 01:51:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
www.worker.co.il/wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2
185.145.252.20200 OK 463 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2
IP 185.145.252.20:0
Hash 20b83fd84468fca841670d481dd05640
609d7e94678ca2a65347288d18308e565f1a9801
60998697e9e1e6701163771f824171a53e09a6ccf1b7717527d705f98d400b33
GET /wp-content/plugins/contact-form-7/modules/recaptcha/script.js?ver=5.3.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 17 Dec 2020 13:24:11 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.0.0
185.145.252.20200 OK 1.0 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 8fefa443c43832fdbb1b46681a344317
0bb0b089f1c213f7cc3e4e53bb184f80ca4d1eca
6b80e1ca15dd47f0c7f91fe5287fdd24f5d3e1eb1f93416957102762b6554bbf
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
185.145.252.20200 OK 369 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
IP 185.145.252.20:0
File type ASCII text, with CRLF line terminators
Hash 56a58868ba37accfb58ae9da7f97be7c
7d5056e109c627ba30c0f38f700a5c23c8a7f7cd
98b8aba182808f08e3426b406734305c35bbcc268300711bcabdbb72fd62bab0
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 17 Nov 2022 17:31:25 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.googletagmanager.com/gtm.js?id=GTM-PZSFN6
142.250.74.168302 Found 250 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-PZSFN6
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7eb4dcb858a7072506ff0a3febd1db04
673627749be9d8b3ec9d92181e470613cb171b25
f8112a1e8125023d69f116e3215806b1cba85e49311f14049b63234342f39644
GET /gtm.js?id=GTM-PZSFN6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-PZSFN6
Cross-Origin-Resource-Policy: cross-origin
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 250
X-XSS-Protection: 0
www.worker.co.il/wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=1.0.0
185.145.252.20200 OK 18 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=1.0.0
IP 185.145.252.20:0
File type ASCII text, with CRLF line terminators
Hash 70ef1f6d7e890ba0ded19a421684313a
daa5a56f5e72cd552061d60ae50918fac8d901e0
e02bfaa5c8d25a5f25859c98f714202bcbaef26edfa0739589c2e8112030c1da
GET /wp-content/themes/sogo-child/js/typeahead.bundle.js?ver=1.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 30 Apr 2020 12:43:30 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo/assets/js/bootstrap.min.js?ver=5.4.12
185.145.252.20200 OK 9.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo/assets/js/bootstrap.min.js?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with very long lines (32006), with CRLF line terminators
Hash a5a0fc1147276c5be0a5aff15ec72165
a3efe8ef40659b2cc611bbb595e5b4d5548d86c8
d849a3a9a6e1abbfb571df224d5e10cb8ee78090bcf831df73969816d6db7215
GET /wp-content/themes/sogo/assets/js/bootstrap.min.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Jun 2017 09:57:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.js?ver=5.4.12
185.145.252.20200 OK 3.2 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.js?ver=5.4.12
IP 185.145.252.20:0
File type HTML document, ASCII text, with very long lines (11485), with CRLF line terminators
Hash 337a86ec5dc88214b70a5fefe1939023
9eaf005c41355c21def26a8d4b3722b58134dab3
ab0b32969ed72bed17e90753ffa1d7606460abfbe21a227153103306079e681f
GET /wp-content/themes/sogo/assets/js/lightbox/ekko-lightbox.min.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Jun 2017 09:57:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/gift-popup.min.js?ver=3.12.0
185.145.252.20200 OK 3.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/gift-popup.min.js?ver=3.12.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (13394), with no line terminators
Hash 1b02aec6eb9c4fda03e8e992595a3f7d
91d0380c3ef3745df2c8b42526b6a51f586b5c98
50bc12093d58df9882b8279c46c6b31479205107e6bba14ba8206851188e1b44
GET /wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/gift-popup.min.js?ver=3.12.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 12:53:20 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo/assets/js/waypoint/lib/jquery.waypoints.min.js?ver=5.4.12
185.145.252.20200 OK 2.7 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo/assets/js/waypoint/lib/jquery.waypoints.min.js?ver=5.4.12
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (8668), with CRLF line terminators
Hash 7db2e055308d6bf67a9c7de14724313a
67e28c59e4275ec3822220b468bbb9dfd316f7e0
a0acdc993d50164fcf659f6ef188030f78f161f4000b1bbf2453a80a7dbc8d00
GET /wp-content/themes/sogo/assets/js/waypoint/lib/jquery.waypoints.min.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Jun 2017 09:57:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9ldb6ROkKs.ttf
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9ldb6ROkKs.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.Heebo LightRegular2.001;UKWN;Heebo-LightHeebo-LightVers\012- data
Hash e7e99a3458aa3131d07f59b54839787f
5d2d52f9ccfdcfe873aab7dc63753de71e2e2e0d
bbad16ae8f3636b01b32b1e04e665b53cd1b572569d561f113ca4f55a190fe06
GET /s/heebo/v4/NGS3v5_NC0k9P9ldb6ROkKs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28265
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Thu, 08 Feb 2024 03:03:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:26:22 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/owl/owl.carousel.min.js?ver=3.12.0
185.145.252.20200 OK 11 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/owl/owl.carousel.min.js?ver=3.12.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (31997)
Hash 2a8da8273dc922822cb3a3ba68b7b847
cd011d6cce7078272f24245b8b55d72c5f3bd3d2
8ceaa180d563cb1f650dc3d6098099357788657fa6b65aaa790e6d79e8ec801d
GET /wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/owl/owl.carousel.min.js?ver=3.12.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 28 Feb 2022 13:33:28 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/heebo/v4/NGS6v5_NC0k9P9H0TbQ.ttf
142.250.74.35200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v4/NGS6v5_NC0k9P9H0TbQ.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.HeeboRegular2.001;UKWN;Heebo-RegularHeebo-RegularVersio\012- data
Hash e5b83f3b6ae3cbe81ae841c0b67bac7c
7a988ddd9c0f3bda316f59aa5550c03a57adfdcd
d5abea55444dc2166f142178257681aba89417765812ec74c7253315683c710c
GET /s/heebo/v4/NGS6v5_NC0k9P9H0TbQ.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28738
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Thu, 08 Feb 2024 03:03:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:26:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4774
Cache-Control: max-age=132012
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:44:03 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9lRa6ROkKs.ttf
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9lRa6ROkKs.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.Heebo ExtraBoldRegular2.001;UKWN;Heebo-ExtraBoldHeebo-E\012- data
Hash 7cbb22bbd237ca0f1e7776f715315ac3
5c2ab83046cbc59f4a25b42f279dbfaa5d7db6af
c39a657dfe747d1c3a2832d66770abca2ff284b0099f69f0246005018d90c774
GET /s/heebo/v4/NGS3v5_NC0k9P9lRa6ROkKs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28268
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Thu, 08 Feb 2024 03:03:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:26:15 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-includes/js/underscore.min.js?ver=1.8.3
185.145.252.20200 OK 5.7 kB URL HTTP/1.1 www.worker.co.il/wp-includes/js/underscore.min.js?ver=1.8.3
IP 185.145.252.20:0
File type ASCII text, with very long lines (16010)
Hash 5dc8cf5337b9fedbe2119061b1058a96
f2860aeea71ca50626f20223482f0849a311952e
a055040e09460d32b98d66c0bc11c2680b61154e28dfacd53303784772546a3b
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-includes/js/wp-util.min.js?ver=5.4.12
185.145.252.20200 OK 589 B URL HTTP/1.1 www.worker.co.il/wp-includes/js/wp-util.min.js?ver=5.4.12
IP 185.145.252.20:0
File type ASCII text, with very long lines (1042)
Hash 0548473b101a7bc87ab24e6c5f2cb53b
d8e649ba1983e02b4f8b3b36c59e7ebcda93205d
d8e16fa371dfa83a9242e8bd14f651f1cdbb4aee40cef259d7f93931a9947f16
GET /wp-includes/js/wp-util.min.js?ver=5.4.12 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 15 Apr 2021 05:31:55 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/frontend.min.js?ver=3.12.0
185.145.252.20200 OK 991 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/frontend.min.js?ver=3.12.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (3296), with no line terminators
Hash 8704e560b0a629ec9d2774fde1318e77
c09020ba1095e43bda8420c4c7a512104bf719c3
77f32526e67423bcd5e019b6dedbd8e19038edb3535c85a4a1003d00527dd960
GET /wp-content/plugins/yith-woocommerce-dynamic-pricing-and-discounts-premium/assets/js/frontend.min.js?ver=3.12.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 12:53:20 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
maxcdn.bootstrapcdn.com/font-awesome/4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3
104.18.10.207200 OK 72 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 104.18.10.207:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /font-awesome/4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: font/woff2
Content-Length: 71896
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "e6cf7c6ec7c2d6f670ae9d762604cb0b"
Last-Modified: Mon, 25 Jan 2021 22:04:55 GMT
CDN-CachedAt: 01/05/2023 09:37:07
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 1076
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 0ed095e5169b2cfe2a38fbbf76a4768e
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79612274ded4b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/heebo/v4/NGS0v5_NC0k9P9mVfbFrsA.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v4/NGS0v5_NC0k9P9mVfbFrsA.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.Heebo ThinRegular2.001;UKWN;Heebo-ThinHeebo-ThinVersion\012- data
Hash ec068bd4aae744efe9a86c38ad31ec4e
bf5f39649318190ebc4367a9a728e8b6cb32261c
0df84e1e20e9d405de589d97cfffbfae95c9ad4e0b26f6816904e9f4b55906df
GET /s/heebo/v4/NGS0v5_NC0k9P9mVfbFrsA.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27424
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Thu, 08 Feb 2024 03:03:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:28:23 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.0.0
185.145.252.20200 OK 3.6 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (13534), with no line terminators
Hash a4dea6c01166da4de348d4196996bab8
e9765e2790d3cbaa8201ed46dd7020d8f01f786e
8ae1f486aae844e8db1747c289c3d08dbd1d3cbc769979f6eebcfed477194afe
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=2.2.9.4
185.145.252.20200 OK 10 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=2.2.9.4
IP 185.145.252.20:0
File type ASCII text, with very long lines (31915)
Hash c9aa3a85dc1da6a8607477a2bc2c09c3
a0dd8f71852135f42aa62032aabfbf43a3fc500e
ebf3264fc230dcb5de96213107603a64223078a31554b4d09015e9ccfcc6f173
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9kFbqROkKs.ttf
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v4/NGS3v5_NC0k9P9kFbqROkKs.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2014 The Heebo Project Authors.Heebo MediumRegular2.001;UKWN;Heebo-MediumHeebo-MediumV\012- data
Hash 87a91723d146e21393149373cbad48b3
315bca6e01c72772bc6e68916b7f493019c6e45e
ae5a69072a4e83bfbbaf58b9c34889cea233ec588acc64fa1d0b664f3da36aef
GET /s/heebo/v4/NGS3v5_NC0k9P9kFbqROkKs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: font/ttf
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28475
date: Wed, 08 Feb 2023 03:03:51 GMT
expires: Thu, 08 Feb 2024 03:03:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:28:45 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/front.js?ver=2.2.9.4
185.145.252.20200 OK 12 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/front.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash 10e76930a98740a2d1b5cdc21babe3d3
94cdbe38d2977e0407618784ec40aee21b4d1479
f288bfec0f62e22e3c94302a52052df835599e16d7ee8a88194345652446a491
GET /wp-content/plugins/woocommerce-products-filter/js/front.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js?ver=5.4.12
104.16.89.20200 OK 39 kB URL HTTP/2 cdn.jsdelivr.net/jquery.slick/1.6.0/slick.min.js?ver=5.4.12
IP 104.16.89.20:0
File type ASCII text, with very long lines (32076)
Hash 74ece150f24580d404917fb9f1eb800c
2ad2ad24a26b78990711b3f9801af653ba7d3ff6
491481e5a10dd3449482e713e55bdf44617575d1a1b9a2bbd3925e9b6be65d42
GET /jquery.slick/1.6.0/slick.min.js?ver=5.4.12 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.worker.co.il/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 03:03:51 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"a3e1-6fy8xPpwy6CTuB2YKht4UJQUzvc"
x-served-by: cache-fra19134-FRA, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 27970877
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nfvga%2Bbz1R7BXQyPnIhgLtdMz90YZ%2F3gzxfsj%2FIiNPYrm5j%2F9Ar7TvkXqKkHp4RZs3QSHrLqoVkYKshP5V6x0v5%2FS0gX7CGINm0Cfwcd0V%2FgoXJoeaZSDsbKGAmrF8AeOa0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79612273cff71c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 1e01885ec033e515042b6023c0ceb6d7
ea356e9649a850b43a2a6da1fad648f1456b32d0
a558011e502d9e2d2dbec4006e0e42605ae9f0976a5c75e8b412bc7039cc1c73
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 13:44:35 GMT
Expires: Sun, 12 Feb 2023 13:44:34 GMT
Etag: "ea356e9649a850b43a2a6da1fad648f1456b32d0"
Cache-Control: max-age=383442,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7961227579a0b4ed-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 1e01885ec033e515042b6023c0ceb6d7
ea356e9649a850b43a2a6da1fad648f1456b32d0
a558011e502d9e2d2dbec4006e0e42605ae9f0976a5c75e8b412bc7039cc1c73
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 13:44:35 GMT
Expires: Sun, 12 Feb 2023 13:44:34 GMT
Etag: "ea356e9649a850b43a2a6da1fad648f1456b32d0"
Cache-Control: max-age=383442,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796122757da8b4ff-OSL
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=2.2.9.4
185.145.252.20200 OK 742 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash 2f5fc4d95257c3f88ad22a1707163c81
f15dcceb57118a50cacfbb132cea9f5788e6066b
8cd09fa43be7096d5cbd3659dee432e093ffa205d0782647135583f4b4dca5e3
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=2.2.9.4
185.145.252.20200 OK 836 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash df99412d46c3893f47282f2bb52a3c25
c8eee3ffbcefd25e97a0586a416326613f888453
63adf0d362ee7331991869ea16ea05bd0d4dbfb0c4583cf5fac4f1841423e665
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=2.2.9.4
185.145.252.20200 OK 461 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash 3bbcaf6c496f27f725087a542b62b206
b3733a50b6e253c05d8baba8aa015794749e96e6
7dbb745cd00cd51f7419abefd6041aa5262c108d2bd56c45c7dab4eebd49f88e
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=2.2.9.4
185.145.252.20200 OK 721 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash 971c84af154aea696e210ddc7beb6f98
368e2ce6edafade23eab95c45f350f9af0143899
85079dd7c1b6b3ca37146f1d6a8b12e37c84b8d5c7fe750c7f58672a5644f75b
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce-products-filter/ext/label/js/html_types/label.js?ver=2.2.9.4
185.145.252.20200 OK 560 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce-products-filter/ext/label/js/html_types/label.js?ver=2.2.9.4
IP 185.145.252.20:0
Hash 3391178c4915a7458c93e99d5136d5ef
3aa580b87b43d7e4da4324d4241533107f36e528
7b20142b62b5e07b1eacba8540719ee59062729f71a6d24f940253f7a8735f07
GET /wp-content/plugins/woocommerce-products-filter/ext/label/js/html_types/label.js?ver=2.2.9.4 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 13 Sep 2022 17:31:24 GMT
Expires: Fri, 10 Mar 2023 03:03:51 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4775
Cache-Control: max-age=132012
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:52 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:44:04 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtm.js?id=GTM-PZSFN6
142.250.74.168200 OK 82 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PZSFN6
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (14432)
Hash b1757d430842cdd150877867991e4d69
73f8e44389822b893f7ff05bc834f352c67f73e6
37ceb79937921c3b50a6f78c1b1023f847797a6adbe5d9f5c8e0660f8d9bbe88
GET /gtm.js?id=GTM-PZSFN6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.worker.co.il/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 03:03:52 GMT
expires: Wed, 08 Feb 2023 03:03:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81785
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.6
185.145.252.20200 OK 22 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.6
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (64042)
Hash 73043626b4592ce31bba50bbbca3be94
2979ad8d4197b74cf402f31603b7b2e44187d9e9
8dbc1410b00a7717003ec5c1fa1a36f194e3ac7fe7b895dd6d10c4ca3ee06d91
GET /wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.6 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3
185.145.252.20200 OK 21 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (64065)
Hash 28b093a66bf1159b7914ff40322ca180
718a8569710154b45a763a3a5ec0d35fddb8da7a
5071b2815d99d677043e56f959fbfd04eda9be808ec4059665cb69c4a0f3afe6
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=5.0.0
185.145.252.20200 OK 591 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=5.0.0
IP 185.145.252.20:0
File type Unicode text, UTF-8 text, with very long lines (1088)
Hash 629f8f350bd393a520ec5f28577f9464
bb439ed43771a19040b2652ba4e7dd51222dbffb
29df5b389aa2a971e3d495e0961c6bf37fb04342eb264ac28e5221919fc8d818
GET /wp-content/plugins/woocommerce/assets/js/jquery-ui-touch-punch/jquery-ui-touch-punch.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/price-slider.min.js?ver=5.0.0
185.145.252.20200 OK 610 B URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/frontend/price-slider.min.js?ver=5.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (2142), with no line terminators
Hash c9c5a13a54d7010d9dd2b5a6757091de
71f255f9b23eac86b2c1e33660fd1f3299f3f715
9d95a29c9506877cb9fdb9749b337c3fde9723d86216b5de0b4576871485b110
GET /wp-content/plugins/woocommerce/assets/js/frontend/price-slider.min.js?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/themes/sogo-child/fonts/icomoon.ttf?ki4hsy
185.145.252.20200 OK 6.0 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/fonts/icomoon.ttf?ki4hsy
IP 185.145.252.20:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash f967a31d2f98f08782c416498170d541
df45003ceed711d5e1015033e24741a758a741ef
dda96d29566dd309c1f085fe15de5957f647d5f9f52a9caa0c8ba373a262f64a
GET /wp-content/themes/sogo-child/fonts/icomoon.ttf?ki4hsy HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-content/themes/sogo-child/style.css?ver=63e3111691dc8
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: font/ttf
Content-Length: 5984
Connection: keep-alive
Last-Modified: Tue, 19 Dec 2017 07:27:13 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
185.145.252.20200 OK 1.4 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
IP 185.145.252.20:0
File type ASCII text, with very long lines (3021)
Hash 249d74195506f7c74f66deb2354997d6
bf2c4089167ea54a575bb25c75d1dadc1c0fa8dd
a77ea1ff5e9db653e1e5749ec4ab3a853ffeda0120171e703050e80ccd691c01
GET /wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
www.worker.co.il/wp-content/uploads/2020/02/arrow.png
185.145.252.20200 OK 412 B URL HTTP/2 www.worker.co.il/wp-content/uploads/2020/02/arrow.png
IP 185.145.252.20:0
File type PNG image data, 51 x 51, 8-bit colormap, non-interlaced\012- data
Hash 98b52f231ea145bb7f726db9b48988b8
42602d3d610d924964c99394c0a6e71783797db6
974d842d7f9b24ee8af0c286a908670a94a9b8e4ad893a6e540fd060a0e769f2
GET /wp-content/uploads/2020/02/arrow.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 03:03:52 GMT
content-type: image/png
content-length: 412
last-modified: Mon, 03 Feb 2020 10:18:26 GMT
expires: Sun, 09 Apr 2023 03:03:52 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 21:58:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: n41Kk8Orx4KK8afmNGKZWeeKORTcrB9k2NrmpScnBjU0KpN9EayH+0XeOyzkI9QdAazUKIftCk/sGEJDCzdyvg==
content-length: 830
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42287)
Hash 3ae8276f44e8c96b6d55c46eda291699
42e8725947f0d8af31873a2c741a846534c0127e
da9b86898f5c6c92b7fb7404c19b795e419ca5f4454a1e3d63112330dcc387ff
GET /rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 18:29:37 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ougnb0ToyWttVcRu2ikWmQ==
x-fb-debug: BNhuD0IwYu1OQDElvM+nbrKEKPeTfcdKVITiQqLudBocM9GQYfaVgxssY0UYvuUuyWKVPK1Q9myubGs1WkMYmg==
content-length: 23561
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yd/l/0,cross/CxgHlESiGqW.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yd/l/0,cross/CxgHlESiGqW.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash dbd9433b747e28e24393812114a1bceb
8540c190056c95607f30ca50d2c8129647520ec3
876cfba7a9275234152f89c6b516c9626db1a6956f7a8587377a46486c601778
GET /rsrc.php/v3/yd/l/0,cross/CxgHlESiGqW.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 07 Feb 2024 20:40:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 29lDO3R+KOJDk4EhFKG86w==
x-fb-debug: o7i0aSNVpFRAuBa+PLLfUoUz58dTCBzX64yVeJwBtt0ea3QIAA5xVzP+symNDM2tpsaADT0lyTl5FqcJCLCrcQ==
content-length: 5287
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen-rtl.css?ver=5.0.0
185.145.252.20200 OK 1.2 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen-rtl.css?ver=5.0.0
IP 185.145.252.20:0
File type ASCII text, with very long lines (7084), with no line terminators
Hash a094df2b1b6929ad374e83fa6801de18
9172d4b74758a19e80ea4e473b89ba19aee62986
53051915f1b799b34ed8b626a9a0e9efda24c20c4f0b39963d13d1807b9a798f
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen-rtl.css?ver=5.0.0 HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 13 Feb 2021 20:49:34 GMT
Expires: Fri, 10 Mar 2023 03:03:52 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
static.xx.fbcdn.net/rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 82333ad308c4549f3fcdc7d4a696a137
d2ba713d1cdfda7793daeb48533595d31b484d33
0dded3874c2b5a81113c5710f3b7b1947c3385735b214a412fccfa6343452216
GET /rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 06 Feb 2024 13:54:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: gjM60wjEVJ8/zcfUppahNw==
x-fb-debug: Uyqtip4UGZvCajiDSOVsAkv+JEO1uQ6uZhldRQ3Hk7gfXFoB89bhBXwtgYslxG5KkPdtiL8GNw27MvWLE751RQ==
content-length: 1770
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yS/r/gM8T-H89EdQ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yS/r/gM8T-H89EdQ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18631)
Hash 7e0a01abfe8f2f43a1e1b0f930c068ac
bf702f88bf52d03f4ac0770767043fa465fcfd02
1d6f11de8caea2966bdb8a7170ddaf1ce00e42ef06a3ad1c24e1f39099ce186a
GET /rsrc.php/v3/yS/r/gM8T-H89EdQ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 08 Feb 2024 01:23:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: fgoBq/6PL0Oh4bD5MMBorA==
x-fb-debug: Y5wAgeFU3OZgfDv/hVOTYcbJMhjjp+GEXBDsMuWaRfeVt4pi/Lqhbgp0XhwulZEIPW+ClSbD2ciXhhCvHGH9Xw==
priority: u=2
content-length: 85208
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/themes/sogo-child/images/logo.png
185.145.252.20200 OK 21 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/logo.png
IP 185.145.252.20:0
File type PNG image data, 361 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash aee707c9369b21b58793a8eb71342346
91a5db17162d3c39a38794a11b3dc11ea6ba594b
dbd1d4f40f733a925ce8f149a110fc24b0379a593001bcc50ad9591b2f5c5155
GET /wp-content/themes/sogo-child/images/logo.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 20556
Connection: keep-alive
Last-Modified: Tue, 19 Dec 2017 07:27:13 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8848)
Hash 40fab775b9d5c0cd37478bb98c8d3fd4
3a47077aff06f1dcb1c7f15371f717bcc0501ddf
15bda90227b20a41920214b955645583399f5231147f10d3dee099fe91b442e4
GET /rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 05:35:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: QPq3dbnVwM03R4u5jI0/1A==
x-fb-debug: 3qw0Z3CootIdhr1sQTML0asV4CVFeFmKs5HAHqelS1xdao6G4kweCLr1ZkHjX1nDgrudQTb4IOeqHcJxUR/Gug==
content-length: 16342
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 03:03:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/themes/sogo-child/images/facebook.png
185.145.252.20200 OK 535 B URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/facebook.png
IP 185.145.252.20:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a0c50792032fc6555c9e1dc26b41cc24
9b08ff6428ad3e5fea4b5afb80d161416456dc58
29a900ea4523f8b1d75a5f6703ae9733290db6e65a9a7a3915ec00ac45ef3152
GET /wp-content/themes/sogo-child/images/facebook.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 535
Connection: keep-alive
Last-Modified: Tue, 27 Jul 2021 06:45:21 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/themes/sogo-child/images/instagram.png
185.145.252.20200 OK 1.9 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/instagram.png
IP 185.145.252.20:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f6e9ba20aed28426650cf3015901ac7
24c60ac5996e9613bb580bb9669351ad7784925e
695da087bf42f685c9169b8437caa715859e85a2298d3cf90ac321dbd4aafef6
GET /wp-content/themes/sogo-child/images/instagram.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 1899
Connection: keep-alive
Last-Modified: Tue, 27 Jul 2021 06:45:23 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/themes/sogo-child/images/whatsapp.png
185.145.252.20200 OK 867 B URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/whatsapp.png
IP 185.145.252.20:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 3dd8a667614873f69f980e78a0a1054a
143461398b76ba9b24cb551341603cccc5c78b72
22e62f509affe66a9f3c1b71d72b3e30c167f98a496fd3b5a9bd4c6a3025d31f
GET /wp-content/themes/sogo-child/images/whatsapp.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 867
Connection: keep-alive
Last-Modified: Tue, 27 Jul 2021 06:45:23 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fworker.co.il%2F%3Fhc_ref%3DSEARCH%26fref%3Dnf&tabs&width=340&height=214&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
31.13.72.36200 OK 25 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fworker.co.il%2F%3Fhc_ref%3DSEARCH%26fref%3Dnf&tabs&width=340&height=214&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
IP 31.13.72.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18582)
Hash 2b414bd8554331588f15c1c22846888a
cc1e082d63df2485aaeebe0e4b79fcbe96114b2d
fa074f552247392441532306785f2d2aca0bf4121eba2b73e4a6004bf0c15662
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fworker.co.il%2F%3Fhc_ref%3DSEARCH%26fref%3Dnf&tabs&width=340&height=214&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: a8NfvUv3uEIvIGcI5QVSHlgLkUS8bvciKamUgDAem+bkAS1su00UQeTVRjZtfsCaOimd2LNeOmn7PAR3omSH2A==
date: Wed, 08 Feb 2023 03:03:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/themes/sogo-child/images/photo1.jpg
185.145.252.20200 OK 81 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/photo1.jpg
IP 185.145.252.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1900x640, components 3\012- data
Hash 781c1d4ea53ebf28fe3ea1d255a3a532
16c71f4dc4367655ebe3e9c54a33786bb7be59d9
66a4561d5f2611067ed94506b1e9f4a0d6796f4baeb9cd87319032691211bd52
GET /wp-content/themes/sogo-child/images/photo1.jpg HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/jpeg
Content-Length: 81194
Connection: keep-alive
Last-Modified: Tue, 19 Dec 2017 07:27:13 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/uploads/2019/09/%D7%9C%D7%A7%D7%95%D7%97-%D7%A2%D7%A1%D7%A7%D7%99.png
185.145.252.20200 OK 17 kB URL HTTP/1.1 www.worker.co.il/wp-content/uploads/2019/09/%D7%9C%D7%A7%D7%95%D7%97-%D7%A2%D7%A1%D7%A7%D7%99.png
IP 185.145.252.20:0
File type PNG image data, 129 x 157, 8-bit/color RGBA, non-interlaced\012- data
Hash ba23de37c1d508b3be49f1b157da97d2
93a8ad92ebba86a00f50cbf52c5bda3f97fd42fd
f3e8b3d598bf3b80310fd3089dd1dab4fd2f7092c196c923135644a2580db796
GET /wp-content/uploads/2019/09/%D7%9C%D7%A7%D7%95%D7%97-%D7%A2%D7%A1%D7%A7%D7%99.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 17321
Connection: keep-alive
Last-Modified: Wed, 30 Oct 2019 08:48:48 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/plugins/sogo-accessibility/public/css/sogo-logo.png
185.145.252.20200 OK 2.7 kB URL HTTP/1.1 www.worker.co.il/wp-content/plugins/sogo-accessibility/public/css/sogo-logo.png
IP 185.145.252.20:0
File type PNG image data, 55 x 29, 8-bit colormap, non-interlaced\012- data
Hash 9726deeee3361fe5ab4125546e9ac2da
305c21d21e1d142d02687761b39ccbc807eed5c8
ef70bc8e434f196212919f8ab0f2eea31aaa1a8f4d2c871560af73d36eb8e563
GET /wp-content/plugins/sogo-accessibility/public/css/sogo-logo.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/png
Content-Length: 2684
Connection: keep-alive
Last-Modified: Sun, 12 Apr 2020 11:56:31 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-content/themes/sogo-child/images/logo-mobile-fix.jpg
185.145.252.20200 OK 24 kB URL HTTP/1.1 www.worker.co.il/wp-content/themes/sogo-child/images/logo-mobile-fix.jpg
IP 185.145.252.20:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2017:11:13 12:05:08], progressive, precision 8, 130x36, components 3\012- data
Hash 70847f7fba6b39ef2dc928b66513fd82
b89395dd814baa4aff1fdcfddbfc811ac4ae0010
195b5551348cbe21eeef8c9a3bf42a6e4f598db3e1459a0932a6d07a73edc074
GET /wp-content/themes/sogo-child/images/logo-mobile-fix.jpg HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: image/jpeg
Content-Length: 24497
Connection: keep-alive
Last-Modified: Tue, 19 Dec 2017 07:27:13 GMT
Expires: Sun, 09 Apr 2023 03:03:52 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.worker.co.il/wp-json/contact-form-7/v1/contact-forms/2845/refill
185.145.252.20200 OK 8.3 kB URL HTTP/2 www.worker.co.il/wp-json/contact-form-7/v1/contact-forms/2845/refill
IP 185.145.252.20:0
Hash 195c1dceea79d4e432075295c5c12090
8924ad716a0090e7535b62ec90f9d5421dcef2f5
106c4bbb5b68fe164a2920013509240a9bf8d4d778b9bf295e41bfd3e325a56c
GET /wp-json/contact-form-7/v1/contact-forms/2845/refill HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 03:03:52 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-robots-tag: noindex
link: <https://www.worker.co.il/wp-json/>; rel="https://api.w.org/"
access-control-expose-headers: X-WP-Total, X-WP-TotalPages
access-control-allow-headers: Authorization, Content-Type
allow: GET
set-cookie: PHPSESSID=d6a5af434bcf5b992e7a3ca3068ac1fc; path=/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-TV7TF9NRWG&l=dataLayer&cx=c
142.250.74.168302 Found 278 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=G-TV7TF9NRWG&l=dataLayer&cx=c
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e0ee373fbca69fdafd91aa9303307e6f
9ecb22fe2061d7b1c7eab4564ce10c7dcf350ecf
dae3638269d4c50560f76226edbf32cfa81bc640be52211699c4b40515da6796
GET /gtag/js?id=G-TV7TF9NRWG&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-TV7TF9NRWG&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 278
X-XSS-Protection: 0
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 26c336364ff0384494c52a7e7f0903d9
5be1121093e3096c884cf0744a68113e9df5bf17
3cf7a1f9be5db75ba337cfa78d02b44ee117afb2eec3312132fc77f2fbeb03c1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165117
Date: Wed, 08 Feb 2023 03:03:52 GMT
Etag: "63e2ed44-1d7"
Expires: Fri, 10 Feb 2023 00:55:49 GMT
Last-Modified: Wed, 08 Feb 2023 00:31:00 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HF-PeBla9w89VfzhUjefRu0TaWC8_439cJblWaBeYyRs3hLqdEUv8g==
Age: 1489
www.worker.co.il/?wc-ajax=get_refreshed_fragments
185.145.252.20200 OK 187 B URL HTTP/1.1 www.worker.co.il/?wc-ajax=get_refreshed_fragments
IP 185.145.252.20:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90cedb5dcca762b338d82b9c1e35d53c
42fd2ed89cebc431b3c2a687662ee2c5d5541288
4ec7da8546d6306b09eb2fc94f745dc7a9c031f48968c3ff1fad03cbb851caa8
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/wp-admin2/image/panel/five/fre.php
Cookie: PHPSESSID=e0b719d15a50d2f6c465f806b5a83cc5
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Server-Powered-By: Engintron
Content-Encoding: gzip
s3.eu-central-1.amazonaws.com/maskyoo-cdn/msq.tracker.js?maskyoo=0723303298
52.219.170.97200 OK 23 kB URL HTTP/1.1 s3.eu-central-1.amazonaws.com/maskyoo-cdn/msq.tracker.js?maskyoo=0723303298
IP 52.219.170.97:0
File type ASCII text, with very long lines (22650), with CRLF line terminators
Hash 65d9aac866133f55f407cb1aefccf390
f180c3331a37f9d43fe77b49c24e977f1940852d
c6f5a6603a808d9f5d5c66f880a1245eee87b78dd5869ed36cee8bd0f99492ca
GET /maskyoo-cdn/msq.tracker.js?maskyoo=0723303298 HTTP/1.1
Host: s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 1jHPLSpjUgOSfce5bMH/754nEs/fCMPV3xwFmXXJ9uAu8Dg/vF+sfGhkfHW/DcOrk491wDkh+Uw=
x-amz-request-id: 2WXMFX497BKZST1C
Date: Wed, 08 Feb 2023 03:03:53 GMT
Last-Modified: Sun, 12 Sep 2021 14:59:28 GMT
ETag: "65d9aac866133f55f407cb1aefccf390"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 23060
cdn.lead.im/api/v2/leadim.api.js
95.183.6.164200 OK 9.8 kB URL HTTP/1.1 cdn.lead.im/api/v2/leadim.api.js
IP 95.183.6.164:0
ASN #199391 Xglobe Online LTD
File type ASCII text, with very long lines (24564), with no line terminators
Hash 06ff6a2289903ff7a06a8935f343e8a3
b947ee5705d8a93526ac8c424f1ea9c8be9ce89e
94aff4b6e91333d1c96d9c7db70258db6cfbb6167875da04f719d558e04c6c5f
GET /api/v2/leadim.api.js HTTP/1.1
Host: cdn.lead.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 25 Apr 2022 09:40:32 GMT
Accept-Ranges: bytes
ETag: "34bbf828858d81:0"
Vary: Accept-Encoding
Date: Wed, 08 Feb 2023 03:03:51 GMT
Content-Length: 9805
static.hotjar.com/c/hotjar-622510.js?sv=5
54.230.111.113301 Moved Permanently 167 B URL HTTP/1.1 static.hotjar.com/c/hotjar-622510.js?sv=5
IP 54.230.111.113:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /c/hotjar-622510.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://static.hotjar.com/c/hotjar-622510.js?sv=5
X-Cache: Redirect from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O7AyiJstitL0m2cBV9GE2qLeaGw37Oe4Q2OJ9n43H5eus0M3pJQeIA==
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 08:53:11 GMT
expires: Wed, 07 Feb 2024 08:53:11 GMT
cache-control: public, max-age=31536000
age: 65441
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Wed, 08 Feb 2023 01:43:42 GMT
Expires: Wed, 08 Feb 2023 03:43:42 GMT
Cache-Control: public, max-age=7200
Age: 4810
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
connect.facebook.net/en_US/all.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 08 Feb 2023 03:03:52 GMT
Connection: keep-alive
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.worker.co.il/wp-content/uploads/2020/07/cropped-favicon-192x192.png
185.145.252.20200 OK 1.4 kB URL HTTP/2 www.worker.co.il/wp-content/uploads/2020/07/cropped-favicon-192x192.png
IP 185.145.252.20:0
File type PNG image data, 192 x 192, 4-bit colormap, non-interlaced\012- data
Hash 13cce67c2ebefb6933539b8c32e0d67a
df3eb8973da4b494a679749ee14e0815dc7eddee
ac190f1d0f1a59efdb8c903373881e266c2f9b6067610f383b263944b77cc55e
GET /wp-content/uploads/2020/07/cropped-favicon-192x192.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 03:03:52 GMT
content-type: image/png
content-length: 1406
last-modified: Mon, 06 Jul 2020 05:30:35 GMT
expires: Sun, 09 Apr 2023 03:03:52 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
www.worker.co.il/wp-content/uploads/2020/07/cropped-favicon-32x32.png
185.145.252.20200 OK 320 B URL HTTP/2 www.worker.co.il/wp-content/uploads/2020/07/cropped-favicon-32x32.png
IP 185.145.252.20:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 74a4d392bd5b1c0e4a3a8f903475bc59
8a20099d4951dbb75d6dfbb59e079178f07fbd11
c510f8ef872539b568ae925b0bd75e6629bb8e8a4efb0116271401bc7ef96b9d
GET /wp-content/uploads/2020/07/cropped-favicon-32x32.png HTTP/1.1
Host: www.worker.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 03:03:52 GMT
content-type: image/png
content-length: 320
last-modified: Mon, 06 Jul 2020 05:30:35 GMT
expires: Sun, 09 Apr 2023 03:03:52 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/740116847/?random=1675825485262&cv=11&fst=1675825485262&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 935 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/740116847/?random=1675825485262&cv=11&fst=1675825485262&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2107), with no line terminators
Hash 259f8d6e9c5d18bde6944bfde2a4a931
c5105da79f68faa1e563449892826335ee5d5cef
ce40910d687d23d0c92279cfac28eaa913e735a6b105fbc195bde5db0a6dd436
GET /pagead/viewthroughconversion/740116847/?random=1675825485262&cv=11&fst=1675825485262&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 935
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 08-Feb-2023 03:18:53 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/878650479/?random=1675825484940&cv=11&fst=1675825484940&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&rfmt=3&fmt=4
142.250.74.98200 OK 916 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/878650479/?random=1675825484940&cv=11&fst=1675825484940&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2045), with no line terminators
Hash c5581abed4d44cfbcac5c79c91fc51eb
537cdf9e9c926fa531fd49bef9dd5d588006e041
15d695e1ef5aafdc0a903cf509ccabb17ea18759b47f7b1777865d4176b54a51
GET /pagead/viewthroughconversion/878650479/?random=1675825484940&cv=11&fst=1675825484940&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&auid=1308869587.1675825485&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 916
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 08-Feb-2023 03:18:53 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.virtualspirits.com/vsa/chat-sa87899.js
64.150.176.47301 Moved Permanently 173 B URL HTTP/1.1 www.virtualspirits.com/vsa/chat-sa87899.js
IP 64.150.176.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 25786d82d401110f02caa789926dd461
1775de77873e61520a4c633420f7ec6b12510498
947a6327e1d43b32e5b75837841a0ae426b1cc6f3c1ad72011c24c8300ca2212
GET /vsa/chat-sa87899.js HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.virtualspirits.com/vsa/chat-sa87899.js
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Referrer-Policy: no-referrer-when-downgrade
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Wed, 08 Feb 2023 03:03:52 GMT
Content-Length: 173
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=765793642&t=pageview&_s=1&dl=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&ul=en-us&de=UTF-8&dt=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=24680646&gjid=1913841099&cid=802800187.1675825485&tid=UA-20566904-2&_gid=602070532.1675825486&_r=1&_slc=1>m=45He3260n71PZSFN6&cg1=404-error&z=1470987759
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=765793642&t=pageview&_s=1&dl=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&ul=en-us&de=UTF-8&dt=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=24680646&gjid=1913841099&cid=802800187.1675825485&tid=UA-20566904-2&_gid=602070532.1675825486&_r=1&_slc=1>m=45He3260n71PZSFN6&cg1=404-error&z=1470987759
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=765793642&t=pageview&_s=1&dl=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&ul=en-us&de=UTF-8&dt=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=24680646&gjid=1913841099&cid=802800187.1675825485&tid=UA-20566904-2&_gid=602070532.1675825486&_r=1&_slc=1>m=45He3260n71PZSFN6&cg1=404-error&z=1470987759 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.worker.co.il
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/740116847/?random=1675825485262&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2028937878&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/740116847/?random=1675825485262&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2028937878&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/740116847/?random=1675825485262&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2028937878&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
142.250.74.42200 OK 272 B URL HTTP/2 content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 142.250.74.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e979b8518a6f2dc023353f96a38cfebe
1b538eef83c65199b60a069222e6e2828128dde3
d146f729df5d11e96b2093cef76240133d0780651e0997e0577b027735f0502e
GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-rCc3GjKkOm9_eXO2ernYYQ' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 272
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Fri, 17 Jul 2020 22:45:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/878650479/?random=1675825484940&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&fmt=3&is_vtc=1&random=3713379558&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/878650479/?random=1675825484940&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&fmt=3&is_vtc=1&random=3713379558&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/878650479/?random=1675825484940&cv=11&fst=1675825200000&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&tiba=%D7%94%D7%93%D7%A3%20%D7%9C%D7%90%20%D7%A0%D7%9E%D7%A6%D7%90%20-%20%D7%95%D7%95%D7%A8%D7%A7%D7%A8%20-%20worker&fmt=3&is_vtc=1&random=3713379558&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 111 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Size 111 kB (110937 bytes)
Hash b7fee6a26beedafe5e5f696ba3bcc8ee
7a50c5da365cd304ed0a956a37f89602a57e7732
769bab3d09a03346b4b406ac786388946127c7f01e41acf61e6a8aa0d851d0b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-20566904-2&cid=802800187.1675825485&jid=24680646&gjid=1913841099&_gid=602070532.1675825486&_u=YADAAEAAAAAAACAAI~&z=1400926753
64.233.164.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-20566904-2&cid=802800187.1675825485&jid=24680646&gjid=1913841099&_gid=602070532.1675825486&_u=YADAAEAAAAAAACAAI~&z=1400926753
IP 64.233.164.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-20566904-2&cid=802800187.1675825485&jid=24680646&gjid=1913841099&_gid=602070532.1675825486&_u=YADAAEAAAAAAACAAI~&z=1400926753 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.worker.co.il
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.worker.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 03:03:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 03:03:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 52eb261f857e796c99c3deefb4306891
c0651ceba93391b1b21b54bdf0afa7f6717813af
63e0036d596037ddc70d937f76f32177d719b8d892403776a83075f0b421221b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63E0036D596037DDC70D937F76F32177D719B8D892403776A83075F0B421221B"
Last-Modified: Tue, 07 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1540
Expires: Wed, 08 Feb 2023 03:29:33 GMT
Date: Wed, 08 Feb 2023 03:03:53 GMT
Connection: keep-alive
www.virtualspirits.com/vsa/chat-sa87899.js
64.150.176.47200 OK 6.9 kB URL HTTP/2 www.virtualspirits.com/vsa/chat-sa87899.js
IP 64.150.176.47:0
File type C source, Unicode text, UTF-8 (with BOM) text, with very long lines (1122), with CRLF line terminators
Hash 20dad718caa2a42e8f739a5c1f132e82
ad373a0e67da0edf447c2df4659267248ae5c2b3
c37897a240c2fb97be0202faf28d8c2b9636fe2480e5c6e9dc8572430216039a
GET /vsa/chat-sa87899.js HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=2592000
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 18:52:20 GMT
accept-ranges: bytes
etag: "0a43c646d0d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
date: Wed, 08 Feb 2023 03:03:53 GMT
content-length: 6885
X-Firefox-Spdy: h2
www.virtualspirits.com/vsa/chat-v7-rtl.css
64.150.176.47301 Moved Permanently 173 B URL HTTP/1.1 www.virtualspirits.com/vsa/chat-v7-rtl.css
IP 64.150.176.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 055caa22944b407cbb08da0490e16ea9
93b1964b7938cc96b671722849f02d494dedfdb1
2a6e8f1dde2e67e8da5e7b8b488aa22157f33112dc70694000f8b0747dda64d2
GET /vsa/chat-v7-rtl.css HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.virtualspirits.com/vsa/chat-v7-rtl.css
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Referrer-Policy: no-referrer-when-downgrade
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Wed, 08 Feb 2023 03:03:53 GMT
Content-Length: 173
www.virtualspirits.com/vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png
64.150.176.47301 Moved Permanently 216 B URL HTTP/1.1 www.virtualspirits.com/vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png
IP 64.150.176.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 55ae45811c4eb4fe153dc86129afd3b6
0302d1ccae931a2dad079756b003ee3f8c881727
39ac0d67c06cb5eabc88e79c7d9e0a977c85f667947ceb7fd514b4ec80c5f718
GET /vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.virtualspirits.com/vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Referrer-Policy: no-referrer-when-downgrade
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Wed, 08 Feb 2023 03:03:53 GMT
Content-Length: 216
www.virtualspirits.com/vsa/images/bubble-red.png
64.150.176.47301 Moved Permanently 179 B URL HTTP/1.1 www.virtualspirits.com/vsa/images/bubble-red.png
IP 64.150.176.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5b1cfc7e45a3344f435311bd4557345f
53abe0828f78a8fdd50b8e799be67dd6ee7f3e19
cf4d80bf46aa40e687e50986c6ddb7f532cf77ce77677e2aa01b4064ba00168a
GET /vsa/images/bubble-red.png HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.virtualspirits.com/vsa/images/bubble-red.png
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Referrer-Policy: no-referrer-when-downgrade
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Wed, 08 Feb 2023 03:03:53 GMT
Content-Length: 179
www.virtualspirits.com/vsa/chat-v7-rtl.css
64.150.176.47200 OK 1.4 kB URL HTTP/2 www.virtualspirits.com/vsa/chat-v7-rtl.css
IP 64.150.176.47:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (333), with CRLF line terminators
Hash 65165b5c1a92a583c411683897ba95c3
b388b7303553f4e47f18be5aabac18d4f851549a
b8ccb67cf9d4f4f194de6c1f49578e83cc0e819270c88237eef8cf477e098318
GET /vsa/chat-v7-rtl.css HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2592000
content-type: text/css
content-encoding: gzip
last-modified: Tue, 24 May 2022 06:34:48 GMT
accept-ranges: bytes
etag: "219be5d386fd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
date: Wed, 08 Feb 2023 03:03:53 GMT
content-length: 1435
X-Firefox-Spdy: h2
www.virtualspirits.com/vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png
64.150.176.47200 OK 24 kB URL HTTP/2 www.virtualspirits.com/vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png
IP 64.150.176.47:0
File type PNG image data, 106 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash e3387f5e4827ca3136f4336ed330f60c
9fe83d724043caba230154a3464d2ed64197d76b
11f0de601d08da2b8a827c8bee8d53533d02d0d1364dc040d8ec29aca0ce9625
GET /vsa/images-users/user-faa5e71a-45f8-4555-95e3-4629744ebda4.png HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2592000
content-type: image/png
last-modified: Thu, 14 May 2020 13:10:20 GMT
accept-ranges: bytes
etag: "046e54f129d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
date: Wed, 08 Feb 2023 03:03:53 GMT
content-length: 24247
X-Firefox-Spdy: h2
www.virtualspirits.com/vsa/images/bubble-red.png
64.150.176.47200 OK 2.3 kB URL HTTP/2 www.virtualspirits.com/vsa/images/bubble-red.png
IP 64.150.176.47:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash df6e3fe0a7471e381e172504ebd5b58b
0025e88c1531af8b0670e93b19d7cc74d6a74b69
1d7e7e83d6649e6d850b3db4170e1ea70ed83da3f957cf4f1957cfca316c44eb
GET /vsa/images/bubble-red.png HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2592000
content-type: image/png
last-modified: Sun, 27 Oct 2019 14:48:16 GMT
accept-ranges: bytes
etag: "0b8a590d58cd51:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
date: Wed, 08 Feb 2023 03:03:53 GMT
content-length: 2318
X-Firefox-Spdy: h2
analytics.maskyoo.net/json_pixel.php?r=1143755032&nv=t&p=%5B%7B%22maskyoo%22%3A%220723303298%22%7D%5D&ttl=1000&tid=UA-20566904-2&cid=802800187.1675825485&ga_tid=UA-20566904-2&ga_cid=802800187.1675825485&ga4_tid=G-TV7TF9NRWG&ga4_cid=802800187.1675825485&ga4_hid=765793642&fbq_client=fb.2.1675825485891.2143323714&fbq_account=791750734316641&fbq_time=1675825486976&cd1=%D7%94%D7%93%D7%A3+%D7%9C%D7%90+%D7%A0%D7%9E%D7%A6%D7%90+-+%D7%95%D7%95%D7%A8%D7%A7%D7%A8+-+worker&cd2=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&cd3=
82.166.96.25200 OK 95 B URL HTTP/1.1 analytics.maskyoo.net/json_pixel.php?r=1143755032&nv=t&p=%5B%7B%22maskyoo%22%3A%220723303298%22%7D%5D&ttl=1000&tid=UA-20566904-2&cid=802800187.1675825485&ga_tid=UA-20566904-2&ga_cid=802800187.1675825485&ga4_tid=G-TV7TF9NRWG&ga4_cid=802800187.1675825485&ga4_hid=765793642&fbq_client=fb.2.1675825485891.2143323714&fbq_account=791750734316641&fbq_time=1675825486976&cd1=%D7%94%D7%93%D7%A3+%D7%9C%D7%90+%D7%A0%D7%9E%D7%A6%D7%90+-+%D7%95%D7%95%D7%A8%D7%A7%D7%A8+-+worker&cd2=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&cd3=
IP 82.166.96.25:0
ASN #1680 Cellcom Fixed Line Communication L.P.
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /json_pixel.php?r=1143755032&nv=t&p=%5B%7B%22maskyoo%22%3A%220723303298%22%7D%5D&ttl=1000&tid=UA-20566904-2&cid=802800187.1675825485&ga_tid=UA-20566904-2&ga_cid=802800187.1675825485&ga4_tid=G-TV7TF9NRWG&ga4_cid=802800187.1675825485&ga4_hid=765793642&fbq_client=fb.2.1675825485891.2143323714&fbq_account=791750734316641&fbq_time=1675825486976&cd1=%D7%94%D7%93%D7%A3+%D7%9C%D7%90+%D7%A0%D7%9E%D7%A6%D7%90+-+%D7%95%D7%95%D7%A8%D7%A7%D7%A8+-+worker&cd2=http%3A%2F%2Fwww.worker.co.il%2Fwp-admin2%2Fimage%2Fpanel%2Ffive%2Ffre.php&cd3= HTTP/1.1
Host: analytics.maskyoo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 03:03:54 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
x-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: strict-origin
Public-Key-Pins: pin-sha256="base64+primary=="; pin-sha256="base64+backup=="; max-age=5184000; includeSubDomains
Feature-Policy: geolocation 'none'; payment 'none'; camera 'none'; autoplay 'none'; fullscreen 'none'; microphone 'self'
Content-Length: 95
Connection: close
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be9f475292d4b5b0502d4381ccdf455b
ecb943b48c822b086ea699d802f8f1bb5ee26651
ed22a5102709dc7a067107a6c0cde26931f7781065de9cee49e22de6b9086e31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8703
x-amzn-requestid: 6456aa7d-11f7-4066-a833-9ac5312c0c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7JGLTIAMFqdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c513-0679a75676cdc19251c81bdd;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oDXgginig1GJvV9QIPvDGVumNDnOrBbrGRZSqyJ_NDRUX4XP5jxHxQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:03:47 GMT
age: 18009
etag: "ecb943b48c822b086ea699d802f8f1bb5ee26651"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.virtualspirits.com/vsa/images/roundclose.png
64.150.176.47301 Moved Permanently 179 B URL HTTP/1.1 www.virtualspirits.com/vsa/images/roundclose.png
IP 64.150.176.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 09e7df8f5f8ac0b25c1f3d59282f0977
2ea5a7627db7a39161c951dd44f202cd20dd36c8
53256d1e548d644d668d9bb07958d8272a2a8c82c2af79d1334d3db4f0f17cb1
GET /vsa/images/roundclose.png HTTP/1.1
Host: www.virtualspirits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.worker.co.il/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.virtualspirits.com/vsa/images/roundclose.png
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Referrer-Policy: no-referrer-when-downgrade
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Date: Wed, 08 Feb 2023 03:03:56 GMT
Content-Length: 179
static.addtoany.com/menu/page.js
104.22.70.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 03:03:51 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 16341
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 796122724bba0a2f-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.slick/1.6.0/slick.css?ver=5.4.12
104.16.89.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/jquery.slick/1.6.0/slick.css?ver=5.4.12
IP 104.16.89.20:0
GET /jquery.slick/1.6.0/slick.css?ver=5.4.12 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.worker.co.il/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 03:03:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"6c1-bp0TNCoRqM/Z5C7iQ+rq4BzaTiU"
x-served-by: cache-fra19157-FRA, cache-yyz4566-YYZ
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 1751207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KW4XK2BJh%2Bh4XHBuK%2FohhoO%2Bs6AgJiuY4p3KEtwGYIssQcPhoEEY9Gs0NoHz20BG8wsWx3LjG8gHVlRF9JgIqBgSzGQJvMid%2FTnrbp490DiC4cYpyR5GE3mFz%2Brgj4Sf1mw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79612273bff21c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2217507.js?sv=7
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2217507.js?sv=7
IP 54.230.111.113:0
GET /c/hotjar-2217507.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.worker.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 08 Feb 2023 03:03:40 GMT
cache-control: max-age=60
etag: W/f4e82d13f03d2ee6a795fd61c0365102
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jLfZ3hJ7SjRXnbsyv7QTkCxco7bNPugUbEqDaAbMQvMcQeKS_4rVxg==
age: 12
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-622510.js?sv=5
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-622510.js?sv=5
IP 54.230.111.113:0
GET /c/hotjar-622510.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.worker.co.il/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 08 Feb 2023 03:03:39 GMT
cache-control: max-age=60
etag: W/bee0544c98fdbe0da2a88ed2a1aa94e1
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mvXgd3k1bwuK7py-C7TNxVI1FiQAHXR60UKjWZnbCnG0chHOz_giWw==
age: 13
X-Firefox-Spdy: h2