Overview

URLuupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP 212.33.193.83 (Iran)
ASN#43754 Asiatech Data Transmission company
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 18:30:34 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (24)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
audience.yektanet.com (1) 36509 2019-05-31 01:44:29 UTC 2022-11-27 07:48:16 UTC 185.143.233.120
app.najva.com (2) 47270 2019-02-24 19:45:52 UTC 2022-11-27 18:30:24 UTC 172.67.210.235
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
bfetch.yektanet.com (2) 52649 2019-01-03 08:54:11 UTC 2022-10-29 20:48:25 UTC 87.107.144.247
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-27 07:15:06 UTC 142.250.74.174
van.najva.com (1) 52012 2021-04-07 11:30:35 UTC 2021-05-05 20:14:26 UTC 185.166.104.4
r3.o.lencr.org (11) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-27 05:29:56 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-27 05:29:57 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.188.211.138
s2.uupload.ir (1) 430849 2021-04-27 18:47:52 UTC 2022-11-27 18:30:24 UTC 212.33.193.85
native-removal.triboon.net (2) 44323 2021-11-03 09:51:11 UTC 2022-11-27 07:48:15 UTC 185.143.233.120
static.cdn.asset.filimo.com (3) 63680 2020-01-14 14:13:07 UTC 2022-11-27 18:30:26 UTC 185.147.178.16
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
dvcasha2.ocsp-certum.com (7) 71753 2014-11-27 08:04:42 UTC 2020-02-10 00:10:06 UTC 23.36.79.10
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-27 06:32:27 UTC 142.250.74.168
plus.sabavision.com (12) 47422 2019-06-03 16:54:11 UTC 2022-11-27 07:48:15 UTC 185.147.178.24
ad-management-cdn.yektanet.com (1) 0 2022-01-22 07:33:26 UTC 2022-11-27 18:30:25 UTC 185.143.233.120 Domain (yektanet.com) ranked at: 11839
ua.yektanet.com (3) 35765 2018-05-19 12:52:10 UTC 2022-11-27 07:48:15 UTC 185.143.233.120
cdn.yektanet.com (5) 33652 2017-04-17 04:51:03 UTC 2022-11-05 16:16:07 UTC 185.166.104.3
uupload.ir (19) 97124 2014-12-29 05:31:45 UTC 2022-11-24 23:07:52 UTC 212.33.193.83
static.cdn.asset.aparat.com (1) 62591 2017-12-12 06:33:23 UTC 2022-11-27 01:52:27 UTC 185.147.178.15

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 uupload.ir/view/s1-micro-anvarifard_k28r.rar/ Phishing
2022-11-27 2 uupload.ir/view/s1-micro-anvarifard_k28r.rar/ Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 212.33.193.83
Date UQ / IDS / BL URL IP
2022-11-27 18:30:34 +0000 0 - 0 - 2 uupload.ir/view/s1-micro-anvarifard_k28r.rar/ 212.33.193.83


Last 5 reports on ASN: Asiatech Data Transmission company
Date UQ / IDS / BL URL IP
2023-01-31 09:53:15 +0000 0 - 1 - 0 dl2.soft98.ir/soft/u-v/Universal.Extractor.2. (...) 212.33.193.2
2023-01-31 02:59:43 +0000 0 - 0 - 1 mashhad-film.r98.ir/post/1085 79.127.127.68
2023-01-31 02:29:19 +0000 0 - 0 - 1 mashhad-film.r98.ir/archive/1390 79.127.127.68
2023-01-30 17:25:37 +0000 0 - 2 - 0 ir31.uploadboy.com/d/tkfx7vshp749/rnnnmvgijdf (...) 185.49.85.25
2023-01-30 10:56:01 +0000 0 - 2 - 0 ir72.uploadboy.com/d/yytc0zmwt1ch/sbnjvjuvjdf (...) 178.216.250.187


Last 5 reports on domain: uupload.ir
Date UQ / IDS / BL URL IP
2022-12-18 09:34:12 +0000 0 - 0 - 1 s3.uupload.ir/files/digigram/LightGram-ZedeFi (...) 212.33.193.82
2022-12-18 00:27:21 +0000 0 - 0 - 1 s3.uupload.ir/files/digigram/LightGram-ZedeFi (...) 212.33.193.82
2022-12-16 04:39:24 +0000 0 - 0 - 1 s3.uupload.ir/files/digigram/LightGram-ZedeFi (...) 212.33.193.82
2022-11-27 18:30:34 +0000 0 - 0 - 2 uupload.ir/view/s1-micro-anvarifard_k28r.rar/ 212.33.193.83
2022-11-17 22:04:40 +0000 0 - 0 - 1 s5.uupload.ir/files/miladnevada/launch9.exe 212.33.193.82


No other reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (87)


Request Response
                                        
                                            GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         212.33.193.83
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Sun, 27 Nov 2022 18:30:22 GMT
server: LiteSpeed
location: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
access-control-allow-origin: *


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5775
Expires: Sun, 27 Nov 2022 20:06:38 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5649
Cache-Control: max-age=149699
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:05:22 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 18:17:40 GMT
cache-control: public,max-age=3600
age: 763
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11392
Expires: Sun, 27 Nov 2022 21:40:15 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: SNPR/5sdFOn2p7M6Ct6+6oucckHVEkWwQZwpNrwCvHrMjq5ukDd/WdzvkAfkl+0oK4Mum0KOUzI=
x-amz-request-id: EBRBQ3JTQA6XS97M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 17:44:43 GMT
age: 2740
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 18:30:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=851
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    7639e631fede725c69e9d1566063818f
Sha1:   329979e46dacc44f807ac2b1c25d88131420c862
Sha256: 623664ce809c404be13e078da1bfbaf038f3a64430264192a1e555d62888b6af
                                        
                                            GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.4.14
content-length: 7244
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (487), with CRLF, LF line terminators
Size:   7244
Md5:    075ad20149080e4f0f086d1ff5cda942
Sha1:   33af6656fa09b359dc7ab87fd014ac9e0f0fc2c5
Sha256: d3931ad84e61ce63ec047081dd62518c9ff0bfe5db62af9d7a7c8a5c1cdc539c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 18:08:54 GMT
cache-control: public,max-age=3600
age: 1289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    5807878908cba6c59385f6a0ab5e7640
Sha1:   4438afe83b70fc0764731b9a1f239c024f45b429
Sha256: cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    5807878908cba6c59385f6a0ab5e7640
Sha1:   4438afe83b70fc0764731b9a1f239c024f45b429
Sha256: cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5704
Cache-Control: max-age=144693
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:41:56 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /gtag/js?id=UA-25986871-2 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
expires: Sun, 27 Nov 2022 18:30:23 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43610
Md5:    4d1ccad134db9b3b8d7b29e680838674
Sha1:   543c82f16b5f0ae42c5380491ce1576c65c97454
Sha256: b9720b6104de03091f478d08ca5a26734585e00d3295b352a0dc10f6b33d8164
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/jquery-3.1.1.min.js HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Mon, 05 Dec 2016 08:51:54 GMT
etag: "152b5-58452aaa-f092a3b499796ba8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29460
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32030)
Size:   29460
Md5:    c5b64fe5b819495e8f7411dc83193b5e
Sha1:   baeb1e59f372a105c01286e21547da0536957aa6
Sha256: 80cb424f7249dfb3de9a0054443abc76face0b9fb6da699a359d31daa76c959a
                                        
                                            GET /css/loadingbrowse.js HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Sat, 19 Nov 2016 18:46:32 GMT
etag: "458-58309e08-dc8462aaac834762;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 425
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (890)
Size:   425
Md5:    ce336bd9e8514f337b8c4f4d0e0a76bc
Sha1:   8a8f7b97b5f512508658cadbe6f9341cfb009db7
Sha256: e5587b22a5742bb8e86ac37b35aabefc437bf95c2bd1db76626acf0d735b9bf2
                                        
                                            GET /css/style.css?ver=16 HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Sun, 30 Oct 2022 09:55:56 GMT
etag: "61ca-635e4a2c-6a3e364d9b138800;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5275
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (941)
Size:   5275
Md5:    e37ba28faf56f25cb7bcc214212fe7e9
Sha1:   0b20aabab3061c8745432fd90a172a651c2151b6
Sha256: 36b0679fa79a9219fed541a9c2fe5bbdbce7467b6b504055c5498d07746dc761
                                        
                                            GET /css/video-js.css HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Wed, 30 Nov 2016 11:06:58 GMT
etag: "b123-583eb2d2-75f0479d830003f5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12868
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (12483), with CRLF line terminators
Size:   12868
Md5:    f1e0ef9b9a39899a35614d1c3d9c00e0
Sha1:   37d836f5d9b3c4a696cc2d9d7557821754810883
Sha256: 9c9a2d1422eaa7adf4cd68b602a8e2545c20dc8e50c1739df1c362bc217d58e6
                                        
                                            GET /css/videojs-ie8.min.js HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Sat, 22 Aug 2020 12:58:14 GMT
etag: "6a8e-5f411666-bf5a709f63c0468d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8733
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Size:   8733
Md5:    e503b26600415e716766470cba2b3cf6
Sha1:   c1bf2a576f9aed6a29f27ac02c30fd1ac2ff1117
Sha256: 01e39e3dbe1672f2eef8de9f80fa721477bffc4519d3c1d5c062d1fed55835aa
                                        
                                            GET /source/includes/genjscript.js HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Mon, 03 Oct 2022 15:30:24 GMT
etag: "1b1f-633b0010-6b576e61ed37cc4d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2073
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (839)
Size:   2073
Md5:    0f9cdb90568148a4b2142cba517c6c30
Sha1:   b7136edad0e3cd38ee6bc8eb5151d5ef2d14c526
Sha256: f84fd13d504525b7d27ef617a5c20680bcfc0c8d3ab1be2dc68b4f5d9236ec31
                                        
                                            GET /css/images/logo3.png HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Fri, 19 Jul 2019 15:16:44 GMT
etag: "106c-5d31dedc-b3fedeeb0ccf9315;;;"
accept-ranges: bytes
content-length: 4204
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 94 x 86, 8-bit colormap, non-interlaced\012- data
Size:   4204
Md5:    e35b5da6ef367009d0a412c833c359e8
Sha1:   ce014f05b7ac3b74a2a2d5704533eedd55c752ce
Sha256: e910834feadb5e6a7fec6e38b66f9ea8087ee71ef95057339ee3a99457da9381
                                        
                                            GET /img/homeca3.gif HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Mon, 05 Sep 2022 07:59:49 GMT
etag: "2b28-6315ac75-f24cc27f7749c6dc;;;"
accept-ranges: bytes
content-length: 11048
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 468 x 60\012- data
Size:   11048
Md5:    5771875a28df1c4d31ce7b0e5726c4ce
Sha1:   4c44f67771382990dd977c06e28c81ee43b74217
Sha256: 168ef90ddd4952c2edbbdba690247f54d8f4392de80ff4aa515d5076df50d17b
                                        
                                            GET /img/persolco.png HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Wed, 28 Sep 2022 10:45:21 GMT
etag: "65b8-633425c1-e6888bc725427b35;;;"
accept-ranges: bytes
content-length: 26040
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 468 x 60, 8-bit/color RGB, non-interlaced\012- data
Size:   26040
Md5:    f67cfed99675ad9f9121915568692e72
Sha1:   270ede04d51c33a921db9a44128a2c9e30b334ad
Sha256: 12d585ea82bdb1aa5afb0477fcbf471576d055833e33fe3e0ada13070f387077
                                        
                                            GET /img/rsmta.gif HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Wed, 29 Jun 2022 09:33:25 GMT
etag: "1ce2a-62bc1c65-57822d38826df0d1;;;"
accept-ranges: bytes
content-length: 118314
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 468 x 60\012- data
Size:   118314
Md5:    fa9fdd21be33a4bac8cc2075fb4c8dc6
Sha1:   62c9e9b37f34423775a5c1c0e2979549e46c17e8
Sha256: 97f61e6296c21b31be8f295e149ea1a0c2682fdc5f782496e9f89d5a7f315a23
                                        
                                            GET /img/NAFIS.gif HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Wed, 23 Nov 2022 08:47:25 GMT
etag: "9d9a-637dde1d-a225eb8cf6f35c41;;;"
accept-ranges: bytes
content-length: 40346
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 468 x 60\012- data
Size:   40346
Md5:    fbdbfd7a28a014be0340dcd27be6f60c
Sha1:   3a6fe3c5f6b2112740549d364fd36f047d42c227
Sha256: ab0b729da41d16c8230e06dc6868fc07319336889c489424b64023d14af06a3c
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SAi2wQAdusgAjSRmLZ03oA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.188.211.138
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TpF6VAABk0eetUUTfylhUEkDpyU=

                                        
                                            GET /img/my970.gif HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
last-modified: Sun, 02 May 2021 15:26:15 GMT
etag: "21cbf-608ec497-ede44925c5f7f205;;;"
accept-ranges: bytes
content-length: 138431
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 970 x 250\012- data
Size:   138431
Md5:    68f1197ba29535bca201c7839cacdd8b
Sha1:   15223c769c8d20a4094565186004021692ce7c0e
Sha256: 13e6a2c939ffa1e94cd7254870681c55c0b32462774ab2a5dba1b3307270bb0d
                                        
                                            GET /files/61xk_bg-body.jpg HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 302 Found
content-type: text/html
                                        
content-length: 683
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://s2.uupload.ir/files/61xk_bg-body.jpg
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   683
Md5:    6371befc85069a96b0cb3c52e754a55a
Sha1:   de3def799f60ce2a16721687937ffb2a3f9bd3ae
Sha256: db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
                                        
                                            GET /css/images/input_bg.gif HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
last-modified: Sat, 27 Dec 2014 21:11:24 GMT
etag: "2fe-549f207c-b9f8a2d62fda9957;;;"
accept-ranges: bytes
content-length: 766
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 30\012- data
Size:   766
Md5:    740cb44a4c6ef85f68fcb4e32a89e3dd
Sha1:   0bd1ecf2c3efd5fa64cb05608989ae0575185946
Sha256: ce9f3b3d4e7cea26831ac3bb251c4b354a377046a8df382500d5286459dca02c
                                        
                                            GET /css/font/IRANSansX-Regular.woff HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/font-woff
                                        
last-modified: Sun, 09 Jan 2022 14:55:19 GMT
etag: "8cc4-61daf757-f4603d390a9d81b9;;;"
accept-ranges: bytes
content-length: 36036
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 36036, version 0.0\012- data
Size:   36036
Md5:    75aba455ed94293595b78ef3d2d68ecb
Sha1:   c5c7e045bebefd510c39d767303d96cd6c9625a3
Sha256: 7bef8d0772623f4dfd2765b978e8d0487eda575c3f22166e3cfb5f47aa02b6f9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8220456B1B92AD6401BF01AE4483A0C219E0DEED237D06CA2B0D375E7A11AA2"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3773
Expires: Sun, 27 Nov 2022 19:33:17 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

                                        
                                            GET /files/61xk_bg-body.jpg HTTP/1.1 
Host: s2.uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         212.33.193.85
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 27 Nov 2022 18:30:24 GMT
Content-Length: 3003
Last-Modified: Sun, 04 Jan 2015 12:27:30 GMT
Connection: keep-alive
ETag: "54a931b2-bbb"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   3003
Md5:    4bf045bb130bca21e1729d7232459de4
Sha1:   a78d04501589cdc271f7ce416c9019a59f8a6b09
Sha256: a2ebc0aa387a92f32b8738c999564d3247a99c89868fc2106b7a644443d98166
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

                                        
                                            GET /dox/dox.min.js HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 27 Nov 2022 18:30:23 GMT
last-modified: Tue, 25 Oct 2022 12:01:16 GMT
vary: Accept-Encoding
etag: W/"6357d00c-de79"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17783
Md5:    9e7a3b82ad261db7aecd7d3c09782eee
Sha1:   047fa8c5459877e945eddb67f04ed794bf3ab05c
Sha256: 6fa4b389e0b2038ec42094dcfd60db74a0237e0579991925c0aaf0b5f443baf8
                                        
                                            OPTIONS / HTTP/1.1 
Host: bfetch.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         87.107.144.247
HTTP/2 204 No Content
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
vary: Origin, Access-Control-Request-Headers
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2

                                        
                                            GET /najva-messaging-sw.js HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
last-modified: Fri, 09 Oct 2020 17:01:24 GMT
etag: "90-5f809764-128f422b655b026;;;"
accept-ranges: bytes
content-length: 144
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   144
Md5:    f876d348e4fa587effb2075becc3ea41
Sha1:   c6440dd14028e7ed281cc424c6fc7de1f65dec9f
Sha256: 63b58e9726bd2a6f18079cea9faea7f5d26ab0602ade611e389f970c309beccb
                                        
                                            POST / HTTP/1.1 
Host: bfetch.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 543
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         87.107.144.247
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 1280
vary: Origin
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
set-cookie: yn_bsb=L%2FgDAC74AwABAA%3D%3D.hxxC0sEkv001DLmhE997MVqrK5mcS85zlByASqaFlWE; Max-Age=3600; Domain=.bfetch.yektanet.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1280), with no line terminators
Size:   1280
Md5:    03e4b08bf0d89585384948ec4fac888c
Sha1:   1cbfbc243053c231b3959be737d19b1d002b5fb7
Sha256: bce04aa36fdfa47f2dc5c027d5379ebfeb4d50e3d1ad78a5ee0bd275846e7f52
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7380
Md5:    76c00eceed956377d7469ef58b0815cb
Sha1:   97a135335f5b1b042adeb385718f8808cb78528b
Sha256: 81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10199
Md5:    2cd887044e91d7ed0f1a8d7119ff7dd0
Sha1:   ae8aa4ce6ddaccba771fe65446926b60fc5628da
Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
                                        
                                            OPTIONS /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1 
Host: native-removal.triboon.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: href
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: application/json
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.558
ar-request-id: c07de9590ac9b61f5c3b9a5b8b2e5001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   13068
Md5:    0cc472257e75cca620bc003da4eea61e
Sha1:   e461ce3590f1874a64ae574b008d97ddc59ee074
Sha256: f71258bb5e676b108d7a9807c4d20d56fbc7d00e70ae747ec33d378a54b78be3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 29630
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8817
Md5:    741ddfb19764ac9a77509e7e87cfbfb2
Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56
Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 21605
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8387
Md5:    4e97baa4851785eac92c719abf481c64
Sha1:   c32a57038d3cdbc514c9081c9938eca6a04fb481
Sha256: adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
                                        
                                            GET /api/v1/scripts/preview/validate/?app_id=rT6uurJ5 HTTP/1.1 
Host: audience.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: application/json
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 5
access-control-allow-origin: https://uupload.ir
allow: GET, OPTIONS
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Authorization
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2074
ar-atime: 0.173
ar-cache: BYPASS
ar-request-id: 001e024f6fc80975ec0fb5d793887c58
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   5
Md5:    68934a3e9455fa72420237eb05902327
Sha1:   7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
Sha256: fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 16:41:08 GMT
expires: Sun, 27 Nov 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6557
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /css/images/favicon.ico HTTP/1.1 
Host: uupload.ir
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Cookie: analytics_campaign={%22source%22:%22direct%22%2C%22medium%22:null}; analytics_session_token=ac70a35c-f59a-a40f-e706-f46b20aa5140; analytics_token=9a2a4992-7617-53c3-2815-0a9908b564e9; yektanet_session_last_activity=11/27/2022; _yngt_iframe=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         212.33.193.83
HTTP/2 200 OK
content-type: image/x-icon
                                        
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:25 GMT
last-modified: Sun, 01 Mar 2015 11:19:14 GMT
etag: "47e-54f2f5b2-5019979f62de89b0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 232
date: Sun, 27 Nov 2022 18:30:25 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   232
Md5:    41f9c6b41573c4d8ddc9dbebba0586f9
Sha1:   d9a8ce0dd7baa2823a22668ce86b48e7bfa83ddf
Sha256: 8955f2cfd8b44d06d901adb7749e1aa50ccb4effc7b3eff73afaa4859b92200b
                                        
                                            GET /media/649d4472-2b84-42f3-968d-e2e102f04d59.gif HTTP/1.1 
Host: ad-management-cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: image/gif
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 150732
last-modified: Mon, 07 Nov 2022 01:53:40 GMT
x-rgw-object-type: Normal
etag: "4f1f11228eb3de5a156b8016d3abf40b"
x-amz-meta-mtime: 1659283862.262
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cache-control: max-age=3600
x-cache-status: MISS
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
expires: Sun, 27 Nov 2022 19:30:25 GMT
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.000
ar-cache: HIT
ar-request-id: 19a9af15d6d9c15da1d5990595bd2661
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   150732
Md5:    4f1f11228eb3de5a156b8016d3abf40b
Sha1:   64d24fa414128c5e5a116e5e76d951cda29b769f
Sha256: c25981334a43c43626c1916dab6cd04ebb4534a1967c1b61758185783f65a0d5
                                        
                                            POST /__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1 
Host: ua.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: image/gif
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.211
ar-request-id: 626a90de61e0473b9b6804f0a737941a
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1 
Host: native-removal.triboon.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
href: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: application/json
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.200
ar-cache: BYPASS
ar-request-id: 2f85bf6d16c88a1a2f53c1ab41bd60e9
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   20
Md5:    4e56b6673e0b7be725ee9b917b351c05
Sha1:   9484234df4d9c83e138f9c2c4ee86b74fbc7a947
Sha256: baab076eced52f60ca29321c081278072fc7fe58992c2500325c1c3511150103
                                        
                                            GET /csync/inner/3P/yektanet/pixel HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 400 Bad Request
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 26
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.308
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   26
Md5:    9ca18d8ee17b13362c0bfa5b1aab31ce
Sha1:   c88b0fc731c713e22f073dc6d6eacdd4c0e7c543
Sha256: cc63ab4ce0a9c54b305af86ae196060cafac51e040b6d5ccc8ac2fda08f290a0
                                        
                                            OPTIONS /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Sun, 27 Nov 2022 18:30:25 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.323
x-upstream: 0
X-Firefox-Spdy: h2

                                        
                                            GET /__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1 
Host: ua.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: image/gif
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:26 GMT
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT
last-modified: Sunday, 27-Nov-2022 18:30:26 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.218
ar-cache: BYPASS
ar-request-id: 63b1340898d0db233ad45f023730d12c
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18 HTTP/1.1 
Host: cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.166.104.3
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
cache-tag: ua_rT6uurJ5,ua
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Mon, 17 Oct 2022 15:10:58 GMT
x-rgw-object-type: Normal
etag: W/"25bb201e0076f0aadc198c4ef16f25b7"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30590)
Size:   24973
Md5:    833fdd9f4886594a7e390058be3efc09
Sha1:   f77d659035a6333a387ee31e50d1f8a439dd6cb4
Sha256: 312809f56d86829fab7d700e91bfd47e99f1f82d8eac58c481c556deeb8d9031
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=284
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    4f92ed74bb37ce72e888023403d6db7c
Sha1:   e7d7f13ebc91aa3d9d9841bb12e79df0f6c0feae
Sha256: 8e934d2c95e7f6b797cb680b218e1089ab104a6a885261db935bb784d2e4bd63
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=588
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    54b144990823552cfbb473e466605113
Sha1:   431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
Sha256: 9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=730
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    54b144990823552cfbb473e466605113
Sha1:   431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
Sha256: 9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=759
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    54b144990823552cfbb473e466605113
Sha1:   431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
Sha256: 9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
                                        
                                            GET /cookie/set HTTP/1.1 
Host: ua.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ua.yektanet.com/cookie/iframe/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         185.143.233.120
HTTP/2 200 OK
content-type: application/json
                                        
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-credentials: true
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.232
ar-cache: BYPASS
ar-request-id: 58a3565068b193a5a7edfcdfc0438235
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   671
Md5:    d8694e781f4687f029b14a9344a6e938
Sha1:   b9b21ab94249a63a5651468466e54f9cd41d33fe
Sha256: 651e14ec5f2f4ac032ad3914aa78d145e87bae9c0a8dfb4b5add9108ec86a17a
                                        
                                            GET /vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg HTTP/1.1 
Host: static.cdn.asset.filimo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.16
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
content-length: 43382
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sat, 26 Nov 2022 14:58:51 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Size:   43382
Md5:    a015ae77d49e80b3594b6ddefa95229d
Sha1:   6c5a675bbab43cc667cf466d260fd0cd7d60b2c6
Sha256: 9e4bad45ca14f718e73679fbcdd793b4744f1ef50ba97d655c7ac2e021b1d047
                                        
                                            GET /vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg HTTP/1.1 
Host: static.cdn.asset.filimo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.16
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
content-length: 47110
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sun, 27 Nov 2022 10:17:33 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Size:   47110
Md5:    7ab7179d943ecc66422526b6cfaadf0d
Sha1:   5afb78f2ab77e80c0c988f65cd07a963f4da9520
Sha256: 57f80e026929d6cd6f21fd43fe3f65b4e6827d1fae01c65bf7f1a5876caa9053
                                        
                                            GET /vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg HTTP/1.1 
Host: static.cdn.asset.filimo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.16
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
content-length: 87683
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Mon, 21 Nov 2022 16:34:34 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=400, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=600], baseline, precision 8, 600x400, components 3\012- data
Size:   87683
Md5:    de7bbd85cf06165dda93740182de4f23
Sha1:   635014c10ead6a16c5b494e9e8aeb21b55ca0146
Sha256: 4703d9dda39f08d67490aec74567009fe159de4baca2ab48ebce247ae224f758
                                        
                                            GET /public/logo_text.svg HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
last-modified: Tue, 04 Jan 2022 13:25:41 GMT
vary: Accept-Encoding
etag: W/"61d44ad5-2071"
access-control-allow-origin: *
content-encoding: gzip
server: nginx
expires: Tue, 27 Dec 2022 18:30:26 GMT
cache-control: max-age=2592000
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1657)
Size:   3195
Md5:    43d8ed3bcb1bbebb870da013be96827c
Sha1:   fecf17a40d96302210b7fbb312a0f956387e551b
Sha256: 980c2273a2c8e2230d2731f7f24bc7109715acb1b3b2b8577f75269e9b839b21
                                        
                                            OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 204 No Content
content-type: application/octet-stream
                                        
date: Sun, 27 Nov 2022 18:30:28 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.315
x-upstream: 0
X-Firefox-Spdy: h2

                                        
                                            GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:28 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.298
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:28 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.286
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 204 No Content
content-type: application/octet-stream
                                        
date: Sun, 27 Nov 2022 18:30:28 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.685
x-upstream: 0
X-Firefox-Spdy: h2

                                        
                                            GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:28 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.267
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /dmp/dox/iframe.html HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: text/html
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
last-modified: Tue, 23 Aug 2022 07:01:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"63047b30-7bd"
expires: Sun, 27 Nov 2022 21:30:24 GMT
cache-control: max-age=10800
content-encoding: gzip
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.273
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /template/bnrs/yn_bnr.min.js?v=2022010027018 HTTP/1.1 
Host: cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.166.104.3
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
vary: Accept-Encoding, Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
etag: W/"632978d6-5a34"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/css/local-messaging.css?v=2022010027018 HTTP/1.1 
Host: app.najva.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.210.235
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
last-modified: Sat, 12 Nov 2022 15:49:24 GMT
vary: Accept-Encoding
etag: W/"636fc084-29de"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=16070400
cf-cache-status: HIT
age: 5425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FyFanE44BtraGLueMrdy80jeNn0lKavacdRjuKGAvcDoPywoDk9KP%2Bcm%2BjxBBZ3evXlpb4Y1yYIDu9kebKr0ZSVZDJZkUWKVhY2KUoTse%2BxCAjuLb12E68gYa%2BebcIeF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770cef50dd6cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1 
Host: app.najva.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.210.235
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
location: https://van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
cache-control: max-age=16070400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXmdn8UJ2qXjlkQMdPzRM2iEkcuh5PADbi6RAv7IowDzjBThCACh3YdYEgjcAmIBOXuWvdy49tkkBWBeOd5ixt7UHaIF9dOF70xJy1ww6yR7ZbdBRUrbZdWbOpXr1xHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cef50dd6eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1 
Host: van.najva.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.166.104.4
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
last-modified: Sun, 30 Oct 2022 13:36:24 GMT
x-rgw-object-type: Normal
etag: W/"35b19a45a0f4a356a996602b8bcdab9e"
x-amz-request-id: tx000000000000004c442c0-0063835917-4707a33-default
x-zrk-us: 206
cache-control: public, max-age=300
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
access-control-max-age: 60
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=0
server: Delivery
x-zrk-cs: REVALIDATED
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /assets/images/yn-icon.svg HTTP/1.1 
Host: cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.166.104.3
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 27 Nov 2022 18:30:25 GMT
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-177a"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /assets/images/yn.svg HTTP/1.1 
Host: cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.166.104.3
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 27 Nov 2022 18:30:25 GMT
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-2248"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /vision-file/dox.native.css HTTP/1.1 
Host: static.cdn.asset.aparat.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.147.178.15
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
vary: Accept-Encoding
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Wed, 01 May 2019 01:10:38 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /dox/dox.min.css HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 18:30:23 GMT
last-modified: Tue, 25 Oct 2022 12:01:13 GMT
vary: Accept-Encoding
etag: W/"6357d009-1449"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1 
Host: plus.sabavision.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization:
x-screen-width: 1280
x-screen-height: 1024
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.147.178.24
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
authorization: 8cdee8a1-6be5-4ab1-9015-a9950ba85e13
set-cookie: device-resolution=1280x1024; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding, Origin
content-encoding: gzip
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.355
x-upstream: 0
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/uupload.ir/article.v1.js?v=2022010027018 HTTP/1.1 
Host: cdn.yektanet.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.166.104.3
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 27 Nov 2022 18:30:24 GMT
cache-tag: native_uupload.ir,native
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Tue, 01 Nov 2022 14:24:18 GMT
x-rgw-object-type: Normal
etag: W/"bed16501b21cf782703185bf64b19a9e"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---