Overview

URL www.bazzisara.blogfa.com/
IP149.56.201.253
ASN
Location United States
Report completed2019-03-08 11:31:38 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-08 2 pichak.net/blogcod/cod-music/player/2.swf Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 149.56.201.253

Date UQ / IDS / BL URL IP
2019-05-05 20:58:39 +0200
0 - 0 - 1 www.asheghanedidaremahdi.blogfa.com/ 149.56.201.253
2019-03-24 21:22:25 +0100
0 - 0 - 2 www.ensejame-un.blogfa.com/ 149.56.201.253
2019-03-22 17:01:22 +0100
0 - 0 - 0 ghazale-molana.blogfa.com 149.56.201.253
2019-03-06 00:08:06 +0100
0 - 0 - 7 www.mohedayat.blogfa.com/ 149.56.201.253
2019-03-03 03:10:55 +0100
0 - 0 - 9 www.hasmoking.blogfa.com/ 149.56.201.253
2019-02-19 00:44:36 +0100
0 - 0 - 2 www.eurotrucksimulator.blogfa.com/ 149.56.201.253
2019-02-17 19:36:27 +0100
0 - 0 - 4 www.agriculturemodern.blogfa.com/ 149.56.201.253
2019-01-30 14:56:14 +0100
0 - 1 - 0 www.gamers2.blogfa.com/ 149.56.201.253
2019-01-26 02:26:45 +0100
0 - 1 - 0 www.rays-of-islam.blogfa.com/ 149.56.201.253
2019-01-18 11:52:54 +0100
0 - 0 - 1 m0hade3khanoomi.blogfa.com/ 149.56.201.253

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-05-26 08:08:12 +0200
0 - 0 - 0 livestreamsportstv.com/IRONMAN-70.3-St-Polten (...) 198.54.115.66
2019-05-26 08:08:10 +0200
0 - 0 - 2 wonderful-davinci-e6a9e8.bitballoon.com/flash (...) 167.99.137.12
2019-05-26 08:08:06 +0200
0 - 0 - 3 nifty-goldstine-fc060f.bitballoon.com/flashup (...) 167.99.129.42
2019-05-26 08:07:39 +0200
0 - 0 - 2 restandvision.com/ZEBRA.exe 91.134.149.162
2019-05-26 08:07:24 +0200
0 - 1 - 1 sico.no-ip.biz/ELECTROM/Gestiuni_80/tva.exe 0.0.0.0
2019-05-26 08:05:37 +0200
0 - 1 - 0 xmhbcc.com/ffdy_66_573757%28%C3%92%C3%B9%C2%B (...) 185.193.18.170
2019-05-26 08:05:26 +0200
0 - 2 - 1 movementbeyond.net/dep/wst32sse20b.exe 67.195.197.75
2019-05-26 08:05:25 +0200
0 - 2 - 1 movementbeyond.net/dep/yac32sse41b.exe 67.195.197.75
2019-05-26 08:05:23 +0200
0 - 0 - 1 sonmonny.com/z.exe 154.213.187.208
2019-05-26 08:05:21 +0200
0 - 3 - 2 softdl.360tpcdn.com/koowo/KwMusic_7.3.0.5bd.exe 101.198.193.25

No other reports on domain: blogfa.com



JavaScript

Executed Scripts (18)


Executed Evals (3)

#1 JavaScript::Eval (size: 2, repeated: 1) - SHA256: 4523540f1504cd17100c4835e85b7eefd49911580f8efff0599a8f283be6b9e3

                                        17
                                    

#2 JavaScript::Eval (size: 5, repeated: 1) - SHA256: 7b1982ceec46467abeecaca0c8aab3cc6c2004a0a1543ec04efc246568963088

                                        33.51
                                    

#3 JavaScript::Eval (size: 5, repeated: 1) - SHA256: d725279fac6c0be402ab5189ec1b1a896ecd7cc1b26441d8accc157f0763329a

                                        51.91
                                    

Executed Writes (16)

#1 JavaScript::Write (size: 118, repeated: 1) - SHA256: d361c760470aa307528c6f23d98d7d82f2f3447f8ad1c1f39e3f4841fc9bc4d1

                                         < div class = 'MB2' > <!--<a href='http:///' target='_blank'>'HB'* 419� (1'� �D FB'7 �4H1</a> --> 'D*E'3 /9'</div>
                                    

#2 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#3 JavaScript::Write (size: 145, repeated: 1) - SHA256: b2d80b7e457043461746740094b291a376ab0217c033ec21dcb61e57ff13730a

                                        < div class = MB > < img border = 0 width = 15 height = 15 id = azan_p1 align = bottom > < span style = 'width:75' > '0'
F 5(- < /span><span id=azan_t1>&nbsp;</span > < /div>
                                    

#4 JavaScript::Write (size: 153, repeated: 1) - SHA256: 3dd5f18d4d07a857a254abf5d433a0dd3e66f150331dcc1e660132ea9d78e991

                                        < div class = MB > < img border = 0 width = 15 height = 15 id = azan_p2 align = absbottom > < span style = 'width:75' > 7 DH9.H14� / < /span><span id=azan_t2>&nbsp;</span > < /div>
                                    

#5 JavaScript::Write (size: 148, repeated: 1) - SHA256: 2007c941ea2c18e820f3d5610e6ff9e0f626d292c62b1100ef01b9d8c99c1c23

                                        < div class = MB > < img border = 0 width = 15 height = 15 id = azan_p3 align = absmiddle > < span style = 'width:75' > '0'
F 8 G1 < /span><span id=azan_t3>&nbsp;</span > < /div>
                                    

#6 JavaScript::Write (size: 154, repeated: 1) - SHA256: 3043f887b89a6753d778453626182a3c7c03fdfe34c278115f36ea779756625f

                                        < div class = MB > < img border = 0 width = 15 height = 15 id = azan_p4 align = absmiddle > < span style = 'width:75' > : 1 H(.H14� / < /span><span id=azan_t4>&nbsp;</span > < /div>
                                    

#7 JavaScript::Write (size: 155, repeated: 1) - SHA256: 4d87f3f355372352e112ca23388e4a6e2aba46a6b31bb63cf0e149ae1c53a929

                                        < div class = MB > < img border = 0 width = 15 height = 15 id = azan_p5 align = absmiddle > < span style = 'width:75' > '0'
F E: 1( < /span><span id=azan_t5>&nbsp;</span > < /div></div >
                                    

#8 JavaScript::Write (size: 398, repeated: 1) - SHA256: a3a8296e68a30128dbff9f1801985c31535bec408c5944769719c8e55827d09c

                                        < div id = 'displ' > < object type = 'application/x-shockwave-flash'
width = 140 height = 20 data = 'http://pichak.net/blogcod/cod-music/player/2.swf'
id = 'dewplayerclassic'
name = 'dewplayerclassic' > < param name = 'wmode'
value = 'transparent' > < param name = 'movie'
value = 'http://pichak.net/blogcod/cod-music/player/2.swf' > < param name = 'flashvars'
value = 'mp3=images/azan.mp3&amp;volume=100&amp;autostart=1' > < /object></div >
                                    

#9 JavaScript::Write (size: 40, repeated: 1) - SHA256: 3b30ece3b337caf10313d7ebf3455bf555b855d24e52f6d170558fd915b3f913

                                        < div style = 'width:100%;height:74' > < /div>
                                    

#10 JavaScript::Write (size: 88, repeated: 1) - SHA256: c7a9fa46464ee3713175c8770301e0c449d0089df6bfe9be07dfb052cdb23731

                                        < div style = 'width:156;text-align:center;font-size:8pt;font-family:Tahoma;direction:rtl' >
                                    

#11 JavaScript::Write (size: 41, repeated: 1) - SHA256: fb3c3204e048a8dad63925382350962797958694066c61b6e04878cde859909d

                                        < div style = 'width:156;text-align:right;' >
                                    

#12 JavaScript::Write (size: 54, repeated: 1) - SHA256: 0789bf326c143aad0ee512986f74b2f0f1e38d331702b7eff3e332d46e43f6ad

                                        < div > 'HB' * (G 'AB <b><span id=cities></span></b></div>
                                    

#13 JavaScript::Write (size: 759, repeated: 1) - SHA256: 9dd8c1a67d277377d07ecfa249b989800b4ae8e99034240f7b4bc661a452a15f

                                        < div > < input type = 'hidden'
id = 'latitude'
name = 'latitude' > < input id = 'azanday'
type = 'hidden'
name = 'azanday' > < input id = 'azanjoomlacmsmonth'
type = 'hidden'
name = 'azanjoomlacmsmonth' > < input type = 'hidden'
id = 'longitude'
name = 'longitude' > < input type = 'hidden'
id = 'azan_ht1'
name = 'azan_ht1' > < input type = 'hidden'
id = 'azan_mt1'
name = 'azan_mt1' > < input type = 'hidden'
id = 'azan_ht2'
name = 'azan_ht2' > < input type = 'hidden'
id = 'azan_mt2'
name = 'azan_mt2' > < input type = 'hidden'
id = 'azan_ht3'
name = 'azan_ht3' > < input type = 'hidden'
id = 'azan_mt3'
name = 'azan_mt3' > < input type = 'hidden'
id = 'azan_ht4'
name = 'azan_ht4' > < input type = 'hidden'
id = 'azan_mt4'
name = 'azan_mt4' > < input type = 'hidden'
id = 'azan_ht5'
name = 'azan_ht5' > < input type = 'hidden'
id = 'azan_mt5'
name = 'azan_mt5' > < /div>
                                    

#14 JavaScript::Write (size: 347, repeated: 1) - SHA256: ec8693d74dee01e36ea8afcd8bf4589b9695ad354edb41ca03ca0005390f1557

                                        < iframe src = 'http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&'
scrolling = 'no'
frameborder = '0'
hspace = '0'
name = 'alir'
align = 'center'
width = '160'
height = '183'
style = 'border:1px solid #888888;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;' > < /iframe>
                                    

#15 JavaScript::Write (size: 264, repeated: 1) - SHA256: ad9c87a91acb0741d39460d3dbddc6865fba4b5cb094145a5284771314c7284a

                                        < iframe src = 'http://pichak.net/oghat/azan.php?mod=3&shahr=4-20&az=1'
scrolling = 'no'
frameborder = '0'
hspace = '0'
align = 'center'
width = '160'
height = '205'
style = 'border:1px solid #3a90bd;-webkit-border-radius: 4px;-moz-border-radius: 4px;border-radius: 4px;' > < /iframe>
                                    

#16 JavaScript::Write (size: 25, repeated: 1) - SHA256: 692a7b7645710f3365083b52f20c4b2d240e6bb4b77d9862237cce80a4fcd947

                                        < span id = azanazan > < /span>
                                    


HTTP Transactions (62)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.bazzisara.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         149.56.201.253
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Length: 25768
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Date: Fri, 08 Mar 2019 10:31:04 GMT
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   25768
Md5:    1e79393b25742556464ec22088b0f436
Sha1:   01910d1dc82f382c2f178524fcd88ef1247fddea
Sha256: 15d940fc3807b9c1cbd016dc6aefb531f125e5424e8bf782c61aa930b87db375
                                        
                                            GET /public/theme.js HTTP/1.1 
Host: theme.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         104.24.111.96
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 10:31:05 GMT
Content-Length: 1026
Connection: keep-alive
Set-Cookie: __cfduid=dc4cf59ba81e4f29cecfc19194815f6991552041065; expires=Sat, 07-Mar-20 10:31:05 GMT; path=/; domain=.blogfa.com; HttpOnly
Content-Encoding: gzip
Last-Modified: Sun, 15 Apr 2018 12:34:51 GMT
Etag: "7d562526b6d4d31:0"
Vary: Accept-Encoding
CF-Cache-Status: HIT
Expires: Fri, 08 Mar 2019 13:31:05 GMT
Cache-Control: public, max-age=10800
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4b4423354cf7cade-ARN


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1026
Md5:    22e2c971b84c0503f17e98b0a967b794
Sha1:   e741a2b164899bdaad90fc08ef63addbaf04418f
Sha256: e0fab94b4086e498b8538d6ac90be1294244812fe4f59e8527cfd6be600596af
                                        
                                            GET /sormeh/style.css HTTP/1.1 
Host: theme.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         104.24.111.96
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 10:31:05 GMT
Content-Length: 1424
Connection: keep-alive
Set-Cookie: __cfduid=d7fb9f2584e5b236ef3b1f0bb88a89cc61552041065; expires=Sat, 07-Mar-20 10:31:05 GMT; path=/; domain=.blogfa.com; HttpOnly
Content-Encoding: gzip
Last-Modified: Wed, 13 Feb 2019 17:05:20 GMT
Etag: "e97a604dbec3d41:0"
Vary: Accept-Encoding
CF-Cache-Status: HIT
Expires: Fri, 08 Mar 2019 13:31:05 GMT
Cache-Control: public, max-age=10800
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 4b4423354e78cb0e-ARN


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1424
Md5:    d5bf5c948026711a04e64587cd1c4ee8
Sha1:   0b7b3b0041e94f387bacedfec627ada95cf9d07e
Sha256: d537e6c8d7c5591ac71066b8634afa4bad090decd0122769109d325060855e66
                                        
                                            GET /ad/?6053562639836204 HTTP/1.1 
Host: www.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         104.24.110.96
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Fri, 08 Mar 2019 10:31:05 GMT
Content-Length: 1043
Connection: keep-alive
Set-Cookie: __cfduid=d9bcba288699fb831303687ed309541801552041065; expires=Sat, 07-Mar-20 10:31:05 GMT; path=/; domain=.blogfa.com; HttpOnly
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
Server: cloudflare
CF-RAY: 4b442333ef0acad6-ARN


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1043
Md5:    78cde008ab58054008873c9e11ca32f3
Sha1:   e7d3c0ad6333af527f13dcbb9695bbbc82626f98
Sha256: 9c7f177f44b8b14b7bba022f7b4f61f587e6090f45e712b27844c8f8d16f6f88
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 10:31:05 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    87aef86060a77dd30b3651b164f7f70f
Sha1:   5a34ea8a93eb49205e5d916752dbcf00340b3718
Sha256: cd4e8a28aa8e47053cd514f0b02bc31397bc104d90693d32888eab7491df89b4
                                        
                                            GET /sormeh/header.jpg HTTP/1.1 
Host: theme.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://theme.blogfa.com/sormeh/style.css
Cookie: __cfduid=d9bcba288699fb831303687ed309541801552041065

                                         
                                         104.24.111.96
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Mar 2019 10:31:05 GMT
Content-Length: 16233
Connection: keep-alive
Last-Modified: Fri, 23 Mar 2018 12:23:07 GMT
Etag: "7082dcb2a1c2d31:0"
CF-Cache-Status: HIT
Expires: Fri, 08 Mar 2019 13:31:05 GMT
Cache-Control: public, max-age=10800
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4b442336287acade-ARN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   16233
Md5:    20c362e024cef2a87036de16d094cb6c
Sha1:   0ff4dc3c44453700148d444702479df7407db5ce
Sha256: ff49d03fb1b2c53951b76af9a36519a4a2d56209410dc142209dee4874777a70
                                        
                                            GET /wp-content/uploads/Nex-Machina-2-150x150.jpg HTTP/1.1 
Host: mihandownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.115
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=2592000,public
Expires: Sun, 07 Apr 2019 10:31:05 GMT
Last-Modified: Mon, 26 Mar 2018 10:01:04 GMT
Content-Length: 7187
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Vary: Accept-Encoding
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   7187
Md5:    a71ab5258b6369495043a1e46dbed110
Sha1:   1b8d5161fb19b06aad8711fdf042de48d4f8a1a9
Sha256: fa0bc5bd99c7def8e14aa21e0960e8a5b442781538371dfa5ccd41daec3a3574
                                        
                                            GET /wp-content/uploads/Nex-Machina-3-150x150.jpg HTTP/1.1 
Host: mihandownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.115
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=2592000,public
Expires: Sun, 07 Apr 2019 10:31:05 GMT
Last-Modified: Mon, 26 Mar 2018 10:01:18 GMT
Content-Length: 8666
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Vary: Accept-Encoding
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   8666
Md5:    d28359d2ad464d1b47378661f325069e
Sha1:   9725df5557bf33bcc0670f6ca7ef1727389e3f7c
Sha256: 13f49111c452330ed75a88f43d1c34f52f8a71310262ce10df8f29ce715a6aa5
                                        
                                            GET /wp-content/uploads/download.gif HTTP/1.1 
Host: mihandownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.115
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=2592000,public
Expires: Sun, 07 Apr 2019 10:31:05 GMT
Last-Modified: Fri, 27 Sep 2013 22:23:48 GMT
Content-Length: 1161
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Vary: Accept-Encoding
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24
Size:   1161
Md5:    83dc91acf94b5a5bb20f04124d980bf5
Sha1:   3e84ab699de922959db070d015f7d6890963b21d
Sha256: 7fc5a69b821a057dfe4e03f613578804044884b2b5578ae258c530ef461d2ef9
                                        
                                            GET /wp-content/uploads/Nex-Machina-4-150x150.jpg HTTP/1.1 
Host: mihandownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.115
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=2592000,public
Expires: Sun, 07 Apr 2019 10:31:05 GMT
Last-Modified: Mon, 26 Mar 2018 10:01:33 GMT
Content-Length: 7765
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Vary: Accept-Encoding
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   7765
Md5:    6cba5e7870ffe734ece16fc1c0a877c1
Sha1:   0232ce4279d4eb10fafc44396dee53cee4d17709
Sha256: 78323a9239a9611e34994b0b80646e761a1301b0603bad9678d6f1c333a3c8d4
                                        
                                            GET /wp-content/uploads/2012/12/Grand-Theft-Auto-Vice-City-1.0.3-.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Content-Length: 617
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Location: https://www.apktops.ir/wp-content/uploads/2012/12/Grand-Theft-Auto-Vice-City-1.0.3-.jpg
Vary: User-Agent
X-Frame-Options: sameorigin
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   617
Md5:    80b8eb1ae26d1e0a7f7bab102a865e53
Sha1:   f65aaf8395ccb9c8c2d969d7835f0a89389699ac
Sha256: 8dbc2257f4adb3aa22d0cf153a944b35a1ce9b31ffc474bf908672b3af2b93f8
                                        
                                            GET /wp-content/uploads/Nex-Machina-1.jpg HTTP/1.1 
Host: mihandownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.115
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=2592000,public
Expires: Sun, 07 Apr 2019 10:31:05 GMT
Last-Modified: Mon, 26 Mar 2018 09:59:35 GMT
Content-Length: 40720
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:05 GMT
Server: LiteSpeed
Vary: Accept-Encoding
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   40720
Md5:    b95d02d467be7852720adee1e0fae773
Sha1:   a0912fc8406483b96a623e5b7b15063ed820657e
Sha256: 51387f1e4ba18b2652b0cb219ec90989f8c6256417dc5273493992e5e6a6e29c
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 10:31:06 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /ads/banners/113EB6EF1701.gif HTTP/1.1 
Host: www.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/
Cookie: __cfduid=d9bcba288699fb831303687ed309541801552041065

                                         
                                         104.24.110.96
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 08 Mar 2019 10:31:06 GMT
Content-Length: 31113
Connection: keep-alive
Last-Modified: Sun, 03 Mar 2019 15:25:35 GMT
Etag: "e01c3559d5d1d41:0"
CF-Cache-Status: HIT
Expires: Fri, 08 Mar 2019 14:31:06 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4b44233b7bc1cad6-ARN


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 240
Size:   31113
Md5:    3bfd7fc02d8dfa0ea95ee71a47574062
Sha1:   56277232a29ee02a2fe936814fd5d11849dc67d3
Sha256: 7b5e83e1666b5551f614db7366df9c06081d176a5c6dd95e050be395b499b846
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 08 Mar 2019 10:17:12 GMT
Expires: Fri, 08 Mar 2019 12:17:12 GMT
Last-Modified: Tue, 19 Feb 2019 19:44:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 834
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            GET /abzar/tools/top-page/jquery.min.js HTTP/1.1 
Host: 1abzaar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:06 GMT
Last-Modified: Sun, 03 Aug 2014 21:16:51 GMT
Etag: "12e5f-53dea6c3-f409e209e4a5b2ab;gz"
Content-Length: 30727
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:06 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30727
Md5:    666e114850c0e58e9f3ac6ea81595544
Sha1:   ece8436ed2fe55ee78fcbf6949f1a09c51102808
Sha256: 79ba416de505f6e07003ca6aa392a72d8e745d755ce8d786a6dd95ee7373c9c0
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 10:31:07 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    36b881986410f99df7a34208d8feff66
Sha1:   52ba5ec83d4bfd818196bf620a6389aa530eec9b
Sha256: bb6b7ba7be9fe08ba422661c86cfea3a6402039df7b821bd6fc13edccc803047
                                        
                                            GET /abzar/tools/top-page/scrolltopcontrol.js HTTP/1.1 
Host: 1abzaar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:07 GMT
Last-Modified: Mon, 14 Jan 2013 12:00:35 GMT
Etag: "cf5-50f3f363-3923b06ad3bc19b2;gz"
Content-Length: 1469
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:07 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1469
Md5:    df3f7ac277b3213424de718f9fc74d91
Sha1:   987b684e9e409577edce68b5642b55f16d0a1444
Sha256: f020b5354340cb88dd4e7240e3ea2dafe1e43428ea80f718bab19231250cb4f9
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.236.246
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 10:31:07 GMT
Content-Length: 1637
Connection: keep-alive
X-Cached: EXPIRED
Server: NetDNA-cache/2.2
X-Cache: HIT


--- Additional Info ---
Magic:  data
Size:   1637
Md5:    c2a91baccf75dbdcd3f9b5c198c79cb7
Sha1:   06f2996df11f5d8378fd9ca6094337a442c05ed8
Sha256: f1f3d36a4491d45eb2cbea377df4238dcfa47d4615b7263f15c75232b10459a8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "9D941E460AC23BF4C218E33E382E50F17F24596C3D5A2C5ED20BF7377BCF9040"
Last-Modified: Fri, 08 Mar 2019 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43198
Expires: Fri, 08 Mar 2019 22:31:05 GMT
Date: Fri, 08 Mar 2019 10:31:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    c8e3d49f2ceef2749f5060f983fd46cd
Sha1:   ac347d668ac48ffbba4862d80b8660aa5b48fcfc
Sha256: 9d941e460ac23bf4c218e33e382e50f17f24596c3d5a2c5ed20bf7377bcf9040
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.56
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 06 Mar 2019 22:30:21 GMT
Etag: "a2fa25e029214c58808e45d1f75186bb0d1af3bf"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=13953
Expires: Fri, 08 Mar 2019 14:23:40 GMT
Date: Fri, 08 Mar 2019 10:31:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    40d3d3b91a4f679f721fd29b33ded32f
Sha1:   a2fa25e029214c58808e45d1f75186bb0d1af3bf
Sha256: 4574eaa2518f49048096c0d3a1b60a8ba9ead0d7369abec3620a6a82da341cb2
                                        
                                            GET /-Up7L5IKGvIM/WYw0dB0sNNI/AAAAAAAAACw/WihFg9zYcOUfLDasnF4ElCN2ot35vDVWwCHMYCw/%255BUNSET%255D%20cursor:%20pointer; HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v2d"
Expires: Sat, 09 Mar 2019 10:31:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="[UNSET].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 08 Mar 2019 10:31:07 GMT
Server: fife
Content-Length: 38893
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   38893
Md5:    16562cbeb2bc3252b6ab6075acf23cca
Sha1:   93876d21d6682ac725acd2e907d4949b6032d886
Sha256: 61d259740d99928c17019f2effb0642359ebb11cf71657d048f8b2d09eb2c92a
                                        
                                            GET /wp-content/uploads/2012/12/Grand-Theft-Auto-Vice-City-1.0.3-.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:07 GMT
Last-Modified: Sat, 11 Jan 2014 05:16:43 GMT
Content-Length: 38146
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:07 GMT
Server: LiteSpeed
Vary: User-Agent
X-Frame-Options: sameorigin
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   38146
Md5:    cc986b39ed2223c666d242eebbeab7c3
Sha1:   4a07ac8b95d40df41d912baa8a9584a831fd4adc
Sha256: e56ca0d3bc85ba102c3d1ce26154fc72031f8317677ef447784f0f23252663f1
                                        
                                            GET /-UiHTV5l31Bc/WYw0bK3eI4I/AAAAAAAAACo/-FyzQ7e0iDMqIjrxuW70gW0hkpxJe3MRQCHMYCw/%255BUNSET%255D%20cursor:%20pointer; HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v2d"
Expires: Sat, 09 Mar 2019 10:31:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="[UNSET].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: fife
Content-Length: 50880
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   50880
Md5:    1bc10b0d1398eb5fbd8e2b925515ecad
Sha1:   509ccdaec1a3d5f5bb81c53ce9ac2b03f2dfd82c
Sha256: 7ec0b803e0591a4f8e7532906703592358827b27ce1a25d7cb8c032d215622a5
                                        
                                            GET /wp-content/uploads/2015/03/Grand-Theft-Auto-Vice-City-4-1024x576.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:07 GMT
Last-Modified: Wed, 05 Oct 2016 16:02:36 GMT
Content-Length: 82783
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:07 GMT
Server: LiteSpeed
Vary: User-Agent
X-Frame-Options: sameorigin
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   82783
Md5:    c77db141bdc53936878ffc1dd5fc548f
Sha1:   879b3e371b708a12b7aea3c098328c2e63bff8eb
Sha256: 82b29fb525162a41ba0fd435382eac11e2a1593b752258ae6c7a5bbfd26366a5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "66BF75ECA6CB07612CB8F6C15DDC9695C8E69A8249460A3125C4F95125CADA9F"
Last-Modified: Fri, 08 Mar 2019 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=42475
Expires: Fri, 08 Mar 2019 22:19:03 GMT
Date: Fri, 08 Mar 2019 10:31:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    4b6cc10c83620a83e249fb0367d2f91d
Sha1:   6a1bab46be15dd64c62609dcc18957a32aa7e1e2
Sha256: 66bf75eca6cb07612cb8f6c15ddc9695c8e69a8249460a3125c4f95125cada9f
                                        
                                            GET /r/collect?v=1&_v=j73&a=1409104553&t=pageview&_s=1&dl=http%3A%2F%2Fwww.bazzisara.blogfa.com%2F&ul=en-us&de=UTF-8&dt=%D8%B3%D8%B1%D8%A7%DB%8C%20%D8%A8%D8%A7%D8%B2%DB%8C&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=2127700242&gjid=36297695&cid=644850082.1552041067&tid=UA-48685264-1&_gid=32358554.1552041067&_r=1&z=1992586673 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Mar 2019 10:31:08 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /-KuI-uSwqrkU/WYw0cVIxiWI/AAAAAAAAACs/R7pnQDz6jzANU2402O0tZEeYI4k13_NkwCHMYCw/%255BUNSET%255D%20cursor:%20pointer; HTTP/1.1 
Host: lh3.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v2d"
Expires: Sat, 09 Mar 2019 10:31:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="[UNSET].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: fife
Content-Length: 56281
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   56281
Md5:    9e621cf50fd12469863e5916e4b07526
Sha1:   5a903a0bc6f434d2edcacd4d1cc9ace15ec6039a
Sha256: 92498e9a9c4273d271b92dd111927f87c58531b0a4659a4f79a70cf4f89a6d3c
                                        
                                            GET /uploads/posts/2016-07/thumbs/1467804153_online-soccer-manager-2.jpg HTTP/1.1 
Host: getandroid.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.120.222.184
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000, public
Expires: Sun, 07 Apr 2019 10:31:07 GMT
Content-Length: 189146
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:07 GMT
Server: LiteSpeed
Connection: Keep-Alive
Access-Control-Allow-Origin: *
Vary: User-Agent
Last-Modified: Mon, 31 Aug 2009 00:00:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   189146
Md5:    0c5e13ecc197522f9877ca9bbc625c95
Sha1:   89d248c22b9ccceb0d65ccbdb77c092fafbd4a18
Sha256: 9a77877973c9b2441a81b86cdb81569434e475934a881c47a177a7bd9574a650
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 06 Mar 2019 16:02:17 GMT
Etag: A3DCD4C4DA029BAC8D193FC78489E554585FF053
X-OCSP-Responder-ID: mcdpcaocsp1
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=451221
Expires: Wed, 13 Mar 2019 15:51:29 GMT
Date: Fri, 08 Mar 2019 10:31:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1c04c561c438735ec4f0f5323a3dee0c
Sha1:   a3dcd4c4da029bac8d193fc78489e554585ff053
Sha256: 0dcd8f0efd9e332e828561793ac7e59794c7d9e100e91dfba42fffe6d204e0a1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 03 Mar 2019 23:19:13 GMT
Etag: A4258525192A01B6079C98246CAE4222E28CB05E
X-OCSP-Responder-ID: mcdpcaocsp8
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=218299
Expires: Sun, 10 Mar 2019 23:09:27 GMT
Date: Fri, 08 Mar 2019 10:31:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    eb36853da5812717cf02fcdeb8f0e184
Sha1:   a4258525192a01b6079c98246cae4222e28cb05e
Sha256: 5283bac9a9e88e6fd69c51d71e2fe8390dbb1e2f5b351918a9fe25fa220f1442
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.17
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 03 Mar 2019 23:19:13 GMT
Etag: E19006525F45D277CA2881104836EB7E4C28E923
X-OCSP-Responder-ID: mcdpcaocsp8
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=218280
Expires: Sun, 10 Mar 2019 23:09:08 GMT
Date: Fri, 08 Mar 2019 10:31:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8553c4e4fcc6bdad6f185d30eba69181
Sha1:   e19006525f45d277ca2881104836eb7e4c28e923
Sha256: cb006824b745569040eebce01044c4183ff138dbe03c312fcae9c3e5fbbe9026
                                        
                                            GET /uploads/posts/2016-07/thumbs/1467804142_online-soccer-manager-4.jpg HTTP/1.1 
Host: getandroid.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.120.222.184
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000, public
Expires: Sun, 07 Apr 2019 10:31:08 GMT
Content-Length: 251477
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Connection: Keep-Alive
Access-Control-Allow-Origin: *
Vary: User-Agent
Last-Modified: Mon, 31 Aug 2009 00:00:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   251477
Md5:    10f43987f936ccddb16ea622ac1c45b2
Sha1:   301ec28a8c128e79d4b1df276df16111848684e7
Sha256: 961ac95daee0439439877ebcae5be7c33b31a2ab1138490862a62d31add6fed8
                                        
                                            GET /uploads/posts/2016-07/thumbs/1467804090_online-soccer-manager-5.jpg HTTP/1.1 
Host: getandroid.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.120.222.184
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000, public
Expires: Sun, 07 Apr 2019 10:31:08 GMT
Content-Length: 171666
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Connection: Keep-Alive
Access-Control-Allow-Origin: *
Vary: User-Agent
Last-Modified: Mon, 31 Aug 2009 00:00:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   171666
Md5:    30488aad50908502e4e21745d3a6564b
Sha1:   825a045a5ef00888754f81fd76b9dc434cf66891
Sha256: 20684e566c45cc9d44f8886d52e948fb4915a0cc9d0da65e183407f7cb372dc8
                                        
                                            GET /upload_chs1/image/sdlftpuser03/96/01/Stronghold.Legend_PC.Game_c.jpg HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:08 GMT
Etag: "25513-58ebe2f8-374f855400ed4c38;;;"
Last-Modified: Mon, 10 Apr 2017 19:54:32 GMT
Content-Length: 152851
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   152851
Md5:    7d89958ac20b1fbe96ebb24bfd0d2af9
Sha1:   4efa5ea74a07218e2b3843f5dcd1613c8cda43e2
Sha256: bf5668864b556c5a2deb23299df207890f4f95f83d946b8d0a0892ddb7be1cbe
                                        
                                            GET /uploads/posts/2016-07/thumbs/1467804142_online-soccer-manager-3.jpg HTTP/1.1 
Host: getandroid.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.120.222.184
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000, public
Expires: Sun, 07 Apr 2019 10:31:08 GMT
Content-Length: 174485
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Connection: Keep-Alive
Access-Control-Allow-Origin: *
Vary: User-Agent
Last-Modified: Mon, 31 Aug 2009 00:00:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   174485
Md5:    c07f319c3afee7d645a6c17b244c5814
Sha1:   b82208bc5cf278a133da5119ffab28d5928a1009
Sha256: ef63bdbf5cd5fcb260a581369a8e5906285a3dad251b1de8be67f05eb0d13be2
                                        
                                            GET /upload_chs1/image/sdlftpuser03/96/01/Stronghold.Legend_PC.Game_b.jpg HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:09 GMT
Etag: "1793d-58ebe2fd-fe3830ad20405dae;;;"
Last-Modified: Mon, 10 Apr 2017 19:54:37 GMT
Content-Length: 96573
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   96573
Md5:    658db2f89a57d6259901ca9a63b06901
Sha1:   b3010ec7f59c5bf0937b0f945dc4c919b6ef92c2
Sha256: 90bf1fab7ce07a5542da20665790ec43220aebdf9c9666e13c5f4b63538827b9
                                        
                                            GET /upload_chs1/image/sdlftpuser03/96/01/Stronghold.Crusader.2_PC.Game_c.jpg HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:09 GMT
Etag: "2068e-58ebe202-6477dc3dc7c7da92;;;"
Last-Modified: Mon, 10 Apr 2017 19:50:26 GMT
Content-Length: 132750
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   132750
Md5:    37d181ceb31614f4a779364257e2c485
Sha1:   db76b3194b82beed500d720d3e17a3de2ba2761d
Sha256: 9b3baae60cac070c902fb3ce4b0341cc07a2e042ccb3f2b40563de48bdc1cf93
                                        
                                            GET /upload_chs1/image/sdlftpuser03/96/01/Stronghold.Legend_PC.Game_a.jpg HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:09 GMT
Etag: "c30f-58ebe302-18cc371f7ff22bb9;;;"
Last-Modified: Mon, 10 Apr 2017 19:54:42 GMT
Content-Length: 49935
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   49935
Md5:    46e8f0b8a12183e81b59faaeb57e5af4
Sha1:   ce3c224b753adddef1901d6aba8eeac0b313febb
Sha256: 198e524ac7e0a00b1611513c6ed6f5077a05c41a2039808ee746bc9ed2974094
                                        
                                            GET /wp-content/uploads/2015/03/Grand-Theft-Auto-Vice-City-2-1024x576.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:08 GMT
Last-Modified: Wed, 05 Oct 2016 16:02:43 GMT
Content-Length: 120983
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Vary: User-Agent
X-Frame-Options: sameorigin
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   120983
Md5:    3f3cb14440ab37e732883f44a15d2337
Sha1:   e763920417a619f6cf8810d60f2d37008f23d010
Sha256: 6ae335e168905b90ebeba813e3f073cf2339b835663435029c4f13c30296ebdc
                                        
                                            GET /wp-content/uploads/2018/03/Far-Cry-5-284x400.jpg HTTP/1.1 
Host: www.p30day.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.32
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=31536000
Expires: Sat, 07 Mar 2020 10:31:09 GMT
Last-Modified: Sun, 25 Mar 2018 11:46:49 GMT
Content-Length: 36306
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   36306
Md5:    83c4c91f82bbf5b3f298479a94766eb4
Sha1:   9f50d9528846fd89a8ac6e8fe37491f54ddd2679
Sha256: 0719eecb4fd8b076254c0bd8954a1e641b5fc69a313a5b0406be89612005b567
                                        
                                            GET /images/banners/New.DL.Button.png HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:09 GMT
Etag: "55de-59184e20-e63f5622437c31ea;;;"
Last-Modified: Sun, 14 May 2017 12:31:28 GMT
Content-Length: 21982
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 490 x 70, 8-bit/color RGBA, non-interlaced
Size:   21982
Md5:    dd01d84f5b447d11d8f7872904140c1f
Sha1:   d4484ce625f71d313d025bbadd323ff4fa36b970
Sha256: 33bf714d64d997faefe982c113299119dc158988e6d80105e5bf12779ed55eac
                                        
                                            GET /uploads/posts/2016-07/thumbs/1467804123_online-soccer-manager-1.jpg HTTP/1.1 
Host: getandroid.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.120.222.184
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000, public
Expires: Sun, 07 Apr 2019 10:31:08 GMT
Content-Length: 199555
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Connection: Keep-Alive
Access-Control-Allow-Origin: *
Vary: User-Agent
Last-Modified: Mon, 31 Aug 2009 00:00:00 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   199555
Md5:    2408c1b709b8664cc6d786691a37f516
Sha1:   a23d3039f7c478870553de31c8d353a3de14aeb1
Sha256: 2c779657810b83dea72b04f578670c284f8599705628a96f3c8f68a1cbde0047
                                        
                                            GET /wp-content/uploads/2015/03/Grand-Theft-Auto-Vice-City-1-1024x576.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:08 GMT
Last-Modified: Wed, 05 Oct 2016 16:02:49 GMT
Content-Length: 101784
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Vary: User-Agent
X-Frame-Options: sameorigin
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   101784
Md5:    9ff5672f02ed8ee0a1656120e24be417
Sha1:   6e2f39fafe400f37c84df88798b9d6cbbdb2cbc7
Sha256: 6572b3e1f6dfd88f1d36d096bdb84761f530b60c0883254b70aacce0fe824970
                                        
                                            GET /wp-content/uploads/2015/03/Grand-Theft-Auto-Vice-City-3-1024x576.jpg HTTP/1.1 
Host: www.apktops.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.46
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:08 GMT
Last-Modified: Wed, 05 Oct 2016 16:02:54 GMT
Content-Length: 87280
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:08 GMT
Server: LiteSpeed
Vary: User-Agent
X-Frame-Options: sameorigin
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   87280
Md5:    108dcdb166cfdfaf203fa2fabd8a95c8
Sha1:   a9d1ec82789e3683c42dfe7f5f19861d668901db
Sha256: 9156d81d6f05b5309179f643abea33645392b2db1d013ea4bbf5274ddf4964c8
                                        
                                            GET /story/image/dastan.jpg HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:10 GMT
Etag: "2684-540d79ef-1ef082cf463305b1;;;"
Last-Modified: Mon, 08 Sep 2014 09:42:07 GMT
Content-Length: 9860
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:10 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   9860
Md5:    b42b47e9e76661cf0844f350ca43a800
Sha1:   d2c1f846f0183e113f21f32b6cb8b28922188b31
Sha256: a21d34e7c39fcaafa397faeb3bcf101dc6069cb1c179e9097cef9e51e7293a8a
                                        
                                            GET /oghat/badge.php?mod=3&az=1&kadr=1&shahr=4-20 HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 215
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   215
Md5:    0467649e12918e57bb72f1c1cde5c68b
Sha1:   e79b8755c9182b037ed60ae52651908c2f6241f0
Sha256: b24260c1ca52ca2d5e43c63a6c64c5bc6bb3614434f4b4396c4e87bb00e42f84
                                        
                                            GET /oghat/azan.php?mod=3&shahr=4-20&az=1 HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 3829
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3829
Md5:    840975af6967906f7e682ae7ed87783a
Sha1:   ac932103fa036def3eb07b8bfd220df6ac04f729
Sha256: bbcf82ff94ff65dcf130824b7f1be1cf268bbb18ce68db581ccaad38fd34bfbe
                                        
                                            GET /blogcod/cod-music/player/2.swf HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pichak.net/oghat/azan.php?mod=3&shahr=4-20&az=1

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Etag: "247d-4d43b37e-cfbdd003b336f971;;;"
Last-Modified: Sat, 29 Jan 2011 06:28:14 GMT
Content-Length: 9341
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 8
Size:   9341
Md5:    1912b2619e77c4ade2c840a0f2e10779
Sha1:   1a3b55ec0fe4080c056809051eb3b1ddf486e63b
Sha256: fa7d717efb8102cc168a9e61c4e86fc5b0e4c6874c3cbea01ef41a78c266dd07

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /abzar/tools/stat/amar-v3.php?color=333333&bg=F7F4D9&kc=888888&kadr=1&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1 HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 269
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:10 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   269
Md5:    24a621493c71d8315bbac3b999feb6eb
Sha1:   8e7e6353de3a22284a09166bc6c461efcd8b2b60
Sha256: 8384e418ea91c70c451637c2cd1076c5ec26a57ae2bfa9adba4faaec573ae013
                                        
                                            GET /oghat/images/5-1.gif HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pichak.net/oghat/azan.php?mod=3&shahr=4-20&az=1

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Etag: "b0-4fd72b64-2ff32e25316177dc;;;"
Last-Modified: Tue, 12 Jun 2012 11:43:32 GMT
Content-Length: 176
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 15
Size:   176
Md5:    4dcf1b09fbf6f814b64920c462160b18
Sha1:   70665f7e550a7639b7a05f36e94a574a78ad2ec3
Sha256: 045cf5f062118d2c000a2b1ef7a55dfb1c3312bb71f2c1526c5b46e128702f07
                                        
                                            GET /oghat/images/5-2.gif HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pichak.net/oghat/azan.php?mod=3&shahr=4-20&az=1

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Etag: "57-4fd72b68-a3973cfd6b3c23e6;;;"
Last-Modified: Tue, 12 Jun 2012 11:43:36 GMT
Content-Length: 87
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 15 x 15
Size:   87
Md5:    0aa6f416103401b955235b422513a844
Sha1:   59eaf347cccd904549807a8596620439051458f9
Sha256: 0fbd9d98ad526f5f231de97b7e8b9536b8c057f3b013a20ccdfc57317165ba97
                                        
                                            GET /abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=& HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 1051
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 10:31:10 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1051
Md5:    7d6c554087402f2b82c8fa961173d20a
Sha1:   bfdeb5ca0e1afcb1f271f3a02b6896076143c35b
Sha256: ec677926089e94e6e761730d6fd94648f8b26441d15cbd3e49b050f3d3427ba6
                                        
                                            GET /abzar/tools/top-page/top6.png HTTP/1.1 
Host: 1abzaar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:10 GMT
Last-Modified: Mon, 14 Jan 2013 12:00:43 GMT
Etag: "b6b-50f3f36b-3d450042b55e9235;;;"
Content-Length: 2923
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:10 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 56 x 74, 8-bit/color RGBA, non-interlaced
Size:   2923
Md5:    076fe2e0a85f9ef50e92e47de267f962
Sha1:   c6df2b87cd8e474501fe259847c15e03eb407445
Sha256: 627c9ffd653d04a0dea60ad558c6b6edb9dead6b7bd0f7db792cde0ab28773fa
                                        
                                            GET /abzar/tools/stat/3.gif HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Last-Modified: Tue, 15 Jan 2013 18:14:17 GMT
Etag: "6a1-50f59c79-49a2726683aecebc;;;"
Content-Length: 1697
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 14 x 15
Size:   1697
Md5:    f429ac841bd7de55feb01fb66f0d7c24
Sha1:   6e9e635c3320577144eee958e3a4821d0b5dc599
Sha256: 4409532e0bd47f0e56326662d17836d0f4a4895eabd0fc74405b2d582bfb7ba0
                                        
                                            GET /oghat/images/bg3.jpg HTTP/1.1 
Host: pichak.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://pichak.net/oghat/azan.php?mod=3&shahr=4-20&az=1

                                         
                                         79.127.127.74
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Etag: "71a7-4fd72b72-525c2d0f05f4e768;;;"
Last-Modified: Tue, 12 Jun 2012 11:43:46 GMT
Content-Length: 29095
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   29095
Md5:    53cf0e6725987a76540a3115eeca8eb9
Sha1:   ffc2c16f51b7af2ad408efdc3a1c881e5b897174
Sha256: e51ca9a4850a541698e01d883ae788798e5a14669d9e5f531d16c46757cc3f2d
                                        
                                            GET /abzar/tools/stat/4.gif HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Last-Modified: Sun, 16 Dec 2012 17:19:06 GMT
Etag: "5b8-50ce028a-b312e592f387ff9c;;;"
Content-Length: 1464
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 14 x 12
Size:   1464
Md5:    fcc5c30168593b8eb0c9a3a8e5498fbd
Sha1:   b47052234cc6a61f7746da98410d709c18419080
Sha256: 4684bdf46975c8a44c36201d7e6892655bee16db89e6fc9c970596ccda8e7daa
                                        
                                            GET /abzar/tools/stat/1.gif HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Last-Modified: Tue, 15 Jan 2013 18:14:16 GMT
Etag: "5da-50f59c78-321446e6a3cbcc4d;;;"
Content-Length: 1498
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 13
Size:   1498
Md5:    3fd773051f731547916caeed03148b45
Sha1:   fea986dcd8c0d80965a1d6efc6c8c6bfccbaf5bf
Sha256: 3254740821ab0ead04f7ffa80bab37abc1d14354a3af40093a92d8322d3238a9
                                        
                                            GET /abzar/tools/stat/2.gif HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Last-Modified: Sun, 16 Dec 2012 17:19:04 GMT
Etag: "5a4-50ce0288-501a96b63fe3cfc;;;"
Content-Length: 1444
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 12
Size:   1444
Md5:    ed9c77db270f40c194c77aa36bb7471f
Sha1:   a55e798b0150f5f16b739d20e0ca0dc67c032f52
Sha256: d0fd6d46ceaec469b8d5c9261b015a629b78f6340a1be83c8ab26d4fe6d20931
                                        
                                            GET /font-sans/IRANSansWeb(FaNum).woff HTTP/1.1 
Host: 1abzar.ir
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1abzar.ir/abzar/tools/stat/stat-v3.php?color=333333&bg=F7F4D9&amar=mv3t4cxgbgm5debnh3l6vzmqrr5pjr&show=1|1|1|1|0|1|1&en=&

                                         
                                         185.49.84.241
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:11 GMT
Last-Modified: Wed, 18 Jan 2017 10:17:36 GMT
Etag: "9601-587f40c0-9e46731ba93430d7;;;"
Content-Length: 38401
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:11 GMT
Server: LiteSpeed
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   38401
Md5:    a1233cc118c5257c1add132a786df256
Sha1:   31615a0ad11d94ee94ff2f16f02c54dbe2467614
Sha256: bc6fcfad33755fdb7d138a5f27c4b12aefb9770577ce58d4175cf533b74e0664
                                        
                                            GET /upload_chs1/image/sdlftpuser03/96/01/Stronghold.Crusader.2_PC.Game_b.jpg HTTP/1.1 
Host: www.sarzamindownload.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.bazzisara.blogfa.com/

                                         
                                         79.127.126.73
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 15 Mar 2019 10:31:09 GMT
Etag: "1fa05-58ebe207-2736e2b63bef3aad;;;"
Last-Modified: Mon, 10 Apr 2017 19:50:31 GMT
Content-Length: 129541
Accept-Ranges: bytes
Date: Fri, 08 Mar 2019 10:31:09 GMT
Server: LiteSpeed
Alt-Svc: quic=":443"; ma=2592000; v="35,39,43,44"
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   129541
Md5:    56eed35493375ddfec460c3827ec4741
Sha1:   562b4cc5f85d6b9a60f634da5194cd490417147a
Sha256: e13954147e3fdd4efd18c7e8d374933178ea7ea2fc62eec7e8427d5d1e6d479d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.bazzisara.blogfa.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9bcba288699fb831303687ed309541801552041065; _ga=GA1.2.644850082.1552041067; _gid=GA1.2.32358554.1552041067; _gat=1

                                         
                                         149.56.201.253
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=utf-8
                                        
Cache-Control: private
Content-Length: 1150
Last-Modified: Sat, 21 Jan 2017 13:38:44 GMT
Accept-Ranges: bytes
Etag: "04a23afeb73d21:0"
Server: Microsoft-IIS/8.5
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Date: Fri, 08 Mar 2019 10:31:10 GMT
Connection: close


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    1f9904377576e2b5198cc280986754e9
Sha1:   431e1e790cd9069ffdff54610d78d8cf2ce72498
Sha256: f2ed81c1878209054769bd1bd5fc439d221f07f9aa3f1a41ce25a4a776978a93