Report - uupload.ir/view/s1-micro-anvarifard

Report Overview

Submitted URL
uupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP
212.33.193.83
ASN
#43754 Asiatech Data Transmission company
Submitted
2022-11-27 18:30:34
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
uupload.ir	97124	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.3 kB	450 kB	212.33.193.83
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
bfetch.yektanet.com	52649	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	903 B	2.4 kB	87.107.144.247
audience.yektanet.com	36509	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	611 B	185.143.233.120
ad-management-cdn.yektanet.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	152 kB	185.143.233.120
ua.yektanet.com	35765	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	3.5 kB	185.143.233.120
static.cdn.asset.filimo.com	63680	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	179 kB	185.147.178.16
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
plus.sabavision.com	47422	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.8 kB	26 kB	185.147.178.24
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	45 kB	34.120.237.76
native-removal.triboon.net	44323	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	14 kB	185.143.233.120
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	21 kB	142.250.74.174
van.najva.com	52012	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	429 B	759 B	185.166.104.4
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.7 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	44 kB	142.250.74.168
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.188.211.138
cdn.yektanet.com	33652	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	29 kB	185.166.104.3
app.najva.com	47270	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	833 B	1.7 kB	172.67.210.235
static.cdn.asset.aparat.com	62591	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	362 B	185.147.178.15
dvcasha2.ocsp-certum.com	71753	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	13 kB	23.36.79.10
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.3
s2.uupload.ir	430849	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	3.3 kB	212.33.193.85

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	Phishing
2022-11-27	medium	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	uupload.ir/css/loadingbrowse.js	1.1 kB	2023-03-11	2023-08-07
Pretty URL uupload.ir/css/loadingbrowse.js IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-08-07 15:34:18 Times Seen7 Hash 3cb2758ebe43e890eac8c495634410c5 197a2f9411efeaadc942ec44e10bc2ab42183595 3d86e6038e1dd709b6457c2c10085b89d33d91d387af919b5828fe64fbc30709 Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	154 B	2023-03-11	2023-08-07
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-08-07 15:34:18 Times Seen4 Hash 007c84606e15718709951e213df7f163 1d1e9a80d384e8ffeaf6063aa99fbc6d98f412e3 b347a6ee08caf481551833c460e7f23f7ae4ad8b49822c91f6c75c4372fbdc6c Loading...

	cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018	87 kB	2023-03-11	2023-03-11
Pretty URL cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018 IP 185.166.104.3 ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash bed16501b21cf782703185bf64b19a9e 3f0b99d3013aded4525ea1cb512a44ef76807500 f174d7d1590bdf95fc770cb583c441142759168802cbd725c7f6ba634ea1f9a7 Loading...

	plus.sabavision.com/dmp/dox/iframe.html	1.5 kB	2023-03-07	2023-04-05
Pretty URL plus.sabavision.com/dmp/dox/iframe.html IP 185.147.178.24 ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2023-04-05 01:45:58 Times Seen49 Hash a3436f5918ced3e06424671a0670df67 c380d3ada0214dcc0f8cb990bcf5b04764800f1f 86da1b4ec6d85b5642646a34ec75140eb1902391ee1bda56b0b5f6af2c8389d2 Loading...

	cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18	33 kB	2023-03-11	2023-03-11
Pretty URL cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18 IP 185.166.104.3 ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 25bb201e0076f0aadc198c4ef16f25b7 622e2580d0f7001eca5abfb94fbea5b459be4f23 3476bb3f3f684f5f74654a729df77ec32641fcf02b715904cb399eb7aef80a1a Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	105 B	2023-03-11	2023-08-07
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-08-07 15:34:17 Times Seen4 Hash 4f14d197046a9c230c78584f2835367a e36e9297d811f3f9d2086459dde46dc213294832 529690af896bb7babbce184780207d7ceadf288daa11cd7a273b39cd90533a3e Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	556 B	2023-03-11	2023-03-11
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 32fe1bafe4c4701fd4395c98b221bd66 7ce2d5e658ee8e6ad39e8e173514e6411b123fcc 1c8681a4c1bacca7c60032ef60ec1f6a7e5207f95ba187f3fda6ec909de7dd3b Loading...

	ua.yektanet.com/cookie/iframe/	2.7 kB	2023-03-07	2023-04-05
Pretty URL ua.yektanet.com/cookie/iframe/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:24 Last Seen2023-04-05 01:45:58 Times Seen5 Hash cac5c5cf1b9699a3b6d25f13288aecc2 b8082aff83ee6e1f975fe99b09197dd3ff492dd2 3529c1a13c210bc0a114384a484da2bed793ddc4a7c6f8b7fdcc09d86a5dc43d Loading...

	uupload.ir/css/videojs-ie8.min.js	27 kB	2023-03-07	2024-04-03
Pretty URL uupload.ir/css/videojs-ie8.min.js IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:05 Last Seen2024-04-03 13:34:27 Times Seen161 Hash d1ccd8ffee068126ab36ffb3b05edb98 5e7733a45347a2f4ce1261fbefed81ee8a5bbc17 9be5dd6400d48e88336f202ce16fc455ea28d60860d5637e4407f827749f57a2 Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	438 B	2023-03-11	2023-03-11
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 46b8f6202570d85122cc077b90b4041d 6c791502c7d1bb55ea31b2311e30dd81a331e6c3 71a0a434b593a8b15cb1e8845d27abe487fcd977430c9aed3613af074009d26b Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	420 B	2023-03-11	2024-02-23
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2024-02-23 10:36:56 Times Seen19 Hash 05235b254037e9b88d295d538623f129 1dc9225d7bb03f7fc4f0d7f3cecf0d1a7ab78de2 112ef30bbde1f9d8e339dbf2e13a642adfb3c190bc951e4ec3478e984615f6b9 Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	2.0 kB	2023-03-11	2023-03-11
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 11af09ffa2d5c633d8945d68111b4420 53a4dd4382dc457acc9c5c5a0a13456d8c412190 cd8fad8aab12ae18fd55b1bd96cf19b81cfb472e90b549890994987d4716e622 Loading...

	www.googletagmanager.com/gtag/js?id=UA-25986871-2	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-25986871-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 9bc36c61fb311c673a5161062e74b1cb 08cb5d672119f08776a80a0aa8d5d3493ff76b75 be1be992423259255996ac09fe821c14d3d9b6eabf4b381a557ff920e3ff9273 Loading...

	cdn.yektanet.com/rg_woebegone/scripts_v3/4h7CvFg2/publisher.js?v=2022010027018	40 kB	2023-03-11	2023-03-11
Pretty URL cdn.yektanet.com/rg_woebegone/scripts_v3/4h7CvFg2/publisher.js?v=2022010027018 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash bf7ab81807a46b3ef75133342fe5c516 b49d02674e1b582e8cfb251568fc04cdb8ce7787 e4b85246b09fd5e3c798a4a937e83d42a8063fa9630322fc3e8b56c48b0a7112 Loading...

	plus.sabavision.com/dox/dox.min.js	57 kB	2023-03-08	2023-05-03
Pretty URL plus.sabavision.com/dox/dox.min.js IP 185.147.178.24 ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:01:23 Last Seen2023-05-03 12:53:39 Times Seen67 Hash 6ab9e3b41273bfe354bce77fcca5a58e f906cbc9848d628cff7e9ffa8813b97a133b3ba5 7a3d44c730b3d3ce8014d03cd78d72ac463edb6fb2e3eaab6e4519b4748bcc4d Loading...

	uupload.ir/css/jquery-3.1.1.min.js	87 kB	2023-03-07	2024-05-10
Pretty URL uupload.ir/css/jquery-3.1.1.min.js IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-10 23:48:49 Times Seen268261 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	uupload.ir/source/includes/genjscript.js	6.9 kB	2023-03-11	2023-08-07
Pretty URL uupload.ir/source/includes/genjscript.js IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-08-07 15:34:18 Times Seen4 Hash b7884edef82f8f39cbe1a17fdb05f5f0 106f9c4097d59e4645ef35a6f190f70efd7ae650 e8042e5776e45deae3d91a7cde90d23b3fca8c2acb44bf99f7567ddcdde7fe45 Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	885 B	2023-03-11	2023-03-11
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-03-11 21:29:42 Times Seen1 Hash 9a24a8bfe005c19a0cc87f87564eea33 6e196f04228176c23055239d32c0435ab651d6ef 76023c841e62eb9d8d0225b2d12e1128e748889db35c3ec1d0091312a4b28cdd Loading...

	uupload.ir/view/s1-micro-anvarifard_k28r.rar/	205 B	2023-03-11	2023-08-07
Pretty URL uupload.ir/view/s1-micro-anvarifard_k28r.rar/ IP 212.33.193.83 ASN #43754 Asiatech Data Transmission company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:29:42 Last Seen2023-08-07 15:34:18 Times Seen4 Hash 8b4be8f722bf9c3ac401d348c74cb3f0 f9f826c12fd3b86899d2ff1681a75e7a97324b8b 59fb9bc51e6e19d9825965f07a7a284234c7117bf837f26b2f5f4f8f621501e7 Loading...

	cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018	23 kB	2023-03-08	2023-03-11
Pretty URL cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018 IP 185.166.104.3 ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:26:25 Last Seen2023-03-11 21:29:42 Times Seen1 Hash e2d41f6aad090cdc2c6bb329bcdbbd5b a70e7d49ee7622ea2d4b09726f57b094f756927b 9ed88a588160ab712c14315c4e57aa613b0fdfeffcd81681c1f4bca1e4bb1edf Loading...

HTTP Transactions (87)

URL IP Response Size

uupload.ir/view/s1-micro-anvarifard_k28r.rar/

212.33.193.83

301 Moved Permanently

707 B

URL HTTP/1.1
uupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 27 Nov 2022 18:30:22 GMT
server: LiteSpeed
location: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
access-control-allow-origin: *

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5775
Expires: Sun, 27 Nov 2022 20:06:38 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5649
Cache-Control: max-age=149699
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:05:22 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 18:17:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 763
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11392
Expires: Sun, 27 Nov 2022 21:40:15 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SNPR/5sdFOn2p7M6Ct6+6oucckHVEkWwQZwpNrwCvHrMjq5ukDd/WdzvkAfkl+0oK4Mum0KOUzI=
x-amz-request-id: EBRBQ3JTQA6XS97M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 17:44:43 GMT
age: 2740
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
7639e631fede725c69e9d1566063818f
329979e46dacc44f807ac2b1c25d88131420c862
623664ce809c404be13e078da1bfbaf038f3a64430264192a1e555d62888b6af

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=851
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S

uupload.ir/view/s1-micro-anvarifard_k28r.rar/

212.33.193.83

200 OK

7.2 kB

URL HTTP/2
uupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (487), with CRLF, LF line terminators
Size
7.2 kB (7244 bytes)
Hash
075ad20149080e4f0f086d1ff5cda942
33af6656fa09b359dc7ab87fd014ac9e0f0fc2c5
d3931ad84e61ce63ec047081dd62518c9ff0bfe5db62af9d7a7c8a5c1cdc539c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.14
content-type: text/html; charset=UTF-8
content-length: 7244
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 18:08:54 GMT
cache-control: public,max-age=3600
age: 1289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
5807878908cba6c59385f6a0ab5e7640
4438afe83b70fc0764731b9a1f239c024f45b429
cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
5807878908cba6c59385f6a0ab5e7640
4438afe83b70fc0764731b9a1f239c024f45b429
cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5704
Cache-Control: max-age=144693
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:41:56 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

www.googletagmanager.com/gtag/js?id=UA-25986871-2

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-25986871-2
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43610 bytes)
Hash
4d1ccad134db9b3b8d7b29e680838674
543c82f16b5f0ae42c5380491ce1576c65c97454
b9720b6104de03091f478d08ca5a26734585e00d3295b352a0dc10f6b33d8164

HTTP Headers

GET /gtag/js?id=UA-25986871-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
expires: Sun, 27 Nov 2022 18:30:23 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

uupload.ir/css/jquery-3.1.1.min.js

212.33.193.83

200 OK

30 kB

URL HTTP/2
uupload.ir/css/jquery-3.1.1.min.js
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
ASCII text, with very long lines (32030)
Size
30 kB (29460 bytes)
Hash
c5b64fe5b819495e8f7411dc83193b5e
baeb1e59f372a105c01286e21547da0536957aa6
80cb424f7249dfb3de9a0054443abc76face0b9fb6da699a359d31daa76c959a

HTTP Headers

GET /css/jquery-3.1.1.min.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Dec 2016 08:51:54 GMT
etag: "152b5-58452aaa-f092a3b499796ba8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29460
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/loadingbrowse.js

212.33.193.83

200 OK

425 B

URL HTTP/2
uupload.ir/css/loadingbrowse.js
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
Unicode text, UTF-8 text, with very long lines (890)
Size
425 B (425 bytes)
Hash
ce336bd9e8514f337b8c4f4d0e0a76bc
8a8f7b97b5f512508658cadbe6f9341cfb009db7
e5587b22a5742bb8e86ac37b35aabefc437bf95c2bd1db76626acf0d735b9bf2

HTTP Headers

GET /css/loadingbrowse.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Sat, 19 Nov 2016 18:46:32 GMT
etag: "458-58309e08-dc8462aaac834762;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 425
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/style.css?ver=16

212.33.193.83

200 OK

5.3 kB

URL HTTP/2
uupload.ir/css/style.css?ver=16
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
troff or preprocessor input, ASCII text, with very long lines (941)
Size
5.3 kB (5275 bytes)
Hash
e37ba28faf56f25cb7bcc214212fe7e9
0b20aabab3061c8745432fd90a172a651c2151b6
36b0679fa79a9219fed541a9c2fe5bbdbce7467b6b504055c5498d07746dc761

HTTP Headers

GET /css/style.css?ver=16 HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 09:55:56 GMT
etag: "61ca-635e4a2c-6a3e364d9b138800;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5275
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/video-js.css

212.33.193.83

200 OK

13 kB

URL HTTP/2
uupload.ir/css/video-js.css
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (12483), with CRLF line terminators
Size
13 kB (12868 bytes)
Hash
f1e0ef9b9a39899a35614d1c3d9c00e0
37d836f5d9b3c4a696cc2d9d7557821754810883
9c9a2d1422eaa7adf4cd68b602a8e2545c20dc8e50c1739df1c362bc217d58e6

HTTP Headers

GET /css/video-js.css HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: text/css
last-modified: Wed, 30 Nov 2016 11:06:58 GMT
etag: "b123-583eb2d2-75f0479d830003f5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12868
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/videojs-ie8.min.js

212.33.193.83

200 OK

8.7 kB

URL HTTP/2
uupload.ir/css/videojs-ie8.min.js
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Size
8.7 kB (8733 bytes)
Hash
e503b26600415e716766470cba2b3cf6
c1bf2a576f9aed6a29f27ac02c30fd1ac2ff1117
01e39e3dbe1672f2eef8de9f80fa721477bffc4519d3c1d5c062d1fed55835aa

HTTP Headers

GET /css/videojs-ie8.min.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Sat, 22 Aug 2020 12:58:14 GMT
etag: "6a8e-5f411666-bf5a709f63c0468d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8733
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/source/includes/genjscript.js

212.33.193.83

200 OK

2.1 kB

URL HTTP/2
uupload.ir/source/includes/genjscript.js
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (839)
Size
2.1 kB (2073 bytes)
Hash
0f9cdb90568148a4b2142cba517c6c30
b7136edad0e3cd38ee6bc8eb5151d5ef2d14c526
f84fd13d504525b7d27ef617a5c20680bcfc0c8d3ab1be2dc68b4f5d9236ec31

HTTP Headers

GET /source/includes/genjscript.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Mon, 03 Oct 2022 15:30:24 GMT
etag: "1b1f-633b0010-6b576e61ed37cc4d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2073
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/images/logo3.png

212.33.193.83

200 OK

4.2 kB

URL HTTP/2
uupload.ir/css/images/logo3.png
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
PNG image data, 94 x 86, 8-bit colormap, non-interlaced\012- data
Size
4.2 kB (4204 bytes)
Hash
e35b5da6ef367009d0a412c833c359e8
ce014f05b7ac3b74a2a2d5704533eedd55c752ce
e910834feadb5e6a7fec6e38b66f9ea8087ee71ef95057339ee3a99457da9381

HTTP Headers

GET /css/images/logo3.png HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/png
last-modified: Fri, 19 Jul 2019 15:16:44 GMT
etag: "106c-5d31dedc-b3fedeeb0ccf9315;;;"
accept-ranges: bytes
content-length: 4204
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/img/homeca3.gif

212.33.193.83

200 OK

11 kB

URL HTTP/2
uupload.ir/img/homeca3.gif
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
GIF image data, version 89a, 468 x 60\012- data
Size
11 kB (11048 bytes)
Hash
5771875a28df1c4d31ce7b0e5726c4ce
4c44f67771382990dd977c06e28c81ee43b74217
168ef90ddd4952c2edbbdba690247f54d8f4392de80ff4aa515d5076df50d17b

HTTP Headers

GET /img/homeca3.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Mon, 05 Sep 2022 07:59:49 GMT
etag: "2b28-6315ac75-f24cc27f7749c6dc;;;"
accept-ranges: bytes
content-length: 11048
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/img/persolco.png

212.33.193.83

200 OK

26 kB

URL HTTP/2
uupload.ir/img/persolco.png
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
PNG image data, 468 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
26 kB (26040 bytes)
Hash
f67cfed99675ad9f9121915568692e72
270ede04d51c33a921db9a44128a2c9e30b334ad
12d585ea82bdb1aa5afb0477fcbf471576d055833e33fe3e0ada13070f387077

HTTP Headers

GET /img/persolco.png HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/png
last-modified: Wed, 28 Sep 2022 10:45:21 GMT
etag: "65b8-633425c1-e6888bc725427b35;;;"
accept-ranges: bytes
content-length: 26040
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/img/rsmta.gif

212.33.193.83

200 OK

118 kB

URL HTTP/2
uupload.ir/img/rsmta.gif
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
GIF image data, version 89a, 468 x 60\012- data
Size
118 kB (118314 bytes)
Hash
fa9fdd21be33a4bac8cc2075fb4c8dc6
62c9e9b37f34423775a5c1c0e2979549e46c17e8
97f61e6296c21b31be8f295e149ea1a0c2682fdc5f782496e9f89d5a7f315a23

HTTP Headers

GET /img/rsmta.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Wed, 29 Jun 2022 09:33:25 GMT
etag: "1ce2a-62bc1c65-57822d38826df0d1;;;"
accept-ranges: bytes
content-length: 118314
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/img/NAFIS.gif

212.33.193.83

200 OK

40 kB

URL HTTP/2
uupload.ir/img/NAFIS.gif
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
GIF image data, version 89a, 468 x 60\012- data
Size
40 kB (40346 bytes)
Hash
fbdbfd7a28a014be0340dcd27be6f60c
3a6fe3c5f6b2112740549d364fd36f047d42c227
ab0b729da41d16c8230e06dc6868fc07319336889c489424b64023d14af06a3c

HTTP Headers

GET /img/NAFIS.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Wed, 23 Nov 2022 08:47:25 GMT
etag: "9d9a-637dde1d-a225eb8cf6f35c41;;;"
accept-ranges: bytes
content-length: 40346
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.188.211.138

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.188.211.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SAi2wQAdusgAjSRmLZ03oA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TpF6VAABk0eetUUTfylhUEkDpyU=

uupload.ir/img/my970.gif

212.33.193.83

200 OK

138 kB

URL HTTP/2
uupload.ir/img/my970.gif
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
GIF image data, version 89a, 970 x 250\012- data
Size
138 kB (138431 bytes)
Hash
68f1197ba29535bca201c7839cacdd8b
15223c769c8d20a4094565186004021692ce7c0e
13e6a2c939ffa1e94cd7254870681c55c0b32462774ab2a5dba1b3307270bb0d

HTTP Headers

GET /img/my970.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Sun, 02 May 2021 15:26:15 GMT
etag: "21cbf-608ec497-ede44925c5f7f205;;;"
accept-ranges: bytes
content-length: 138431
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/files/61xk_bg-body.jpg

212.33.193.83

302 Found

683 B

URL HTTP/2
uupload.ir/files/61xk_bg-body.jpg
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
683 B (683 bytes)
Hash
6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77

HTTP Headers

GET /files/61xk_bg-body.jpg HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
content-type: text/html
content-length: 683
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://s2.uupload.ir/files/61xk_bg-body.jpg
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/images/input_bg.gif

212.33.193.83

200 OK

766 B

URL HTTP/2
uupload.ir/css/images/input_bg.gif
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
GIF image data, version 89a, 30 x 30\012- data
Size
766 B (766 bytes)
Hash
740cb44a4c6ef85f68fcb4e32a89e3dd
0bd1ecf2c3efd5fa64cb05608989ae0575185946
ce9f3b3d4e7cea26831ac3bb251c4b354a377046a8df382500d5286459dca02c

HTTP Headers

GET /css/images/input_bg.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
content-type: image/gif
last-modified: Sat, 27 Dec 2014 21:11:24 GMT
etag: "2fe-549f207c-b9f8a2d62fda9957;;;"
accept-ranges: bytes
content-length: 766
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

uupload.ir/css/font/IRANSansX-Regular.woff

212.33.193.83

200 OK

36 kB

URL HTTP/2
uupload.ir/css/font/IRANSansX-Regular.woff
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
Web Open Font Format, TrueType, length 36036, version 0.0\012- data
Size
36 kB (36036 bytes)
Hash
75aba455ed94293595b78ef3d2d68ecb
c5c7e045bebefd510c39d767303d96cd6c9625a3
7bef8d0772623f4dfd2765b978e8d0487eda575c3f22166e3cfb5f47aa02b6f9

HTTP Headers

GET /css/font/IRANSansX-Regular.woff HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff
last-modified: Sun, 09 Jan 2022 14:55:19 GMT
etag: "8cc4-61daf757-f4603d390a9d81b9;;;"
accept-ranges: bytes
content-length: 36036
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31544607a2ea9d4288acc4a12c8085cf
c731a6c672cf64dd59b9f1b621b106dab181dc7c
a8220456b1b92ad6401bf01ae4483a0c219e0deed237d06ca2b0d375e7a11aa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8220456B1B92AD6401BF01AE4483A0C219E0DEED237D06CA2B0D375E7A11AA2"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3773
Expires: Sun, 27 Nov 2022 19:33:17 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

s2.uupload.ir/files/61xk_bg-body.jpg

212.33.193.85

200 OK

3.0 kB

URL HTTP/1.1
s2.uupload.ir/files/61xk_bg-body.jpg
IP
212.33.193.85:0
ASN
#43754 Asiatech Data Transmission company

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size
3.0 kB (3003 bytes)
Hash
4bf045bb130bca21e1729d7232459de4
a78d04501589cdc271f7ce416c9019a59f8a6b09
a2ebc0aa387a92f32b8738c999564d3247a99c89868fc2106b7a644443d98166

HTTP Headers

GET /files/61xk_bg-body.jpg HTTP/1.1
Host: s2.uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 18:30:24 GMT
Content-Type: image/jpeg
Content-Length: 3003
Last-Modified: Sun, 04 Jan 2015 12:27:30 GMT
Connection: keep-alive
ETag: "54a931b2-bbb"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22ca786898b9300c3b1b5ab2e70af4e1
f55aaa51363111244819eeb2ed1ef2e3c24a8bdb
1fa5c441aa233de4ab86024008d10b7161486a3801efb1f841d030f15144bd2c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22ca786898b9300c3b1b5ab2e70af4e1
f55aaa51363111244819eeb2ed1ef2e3c24a8bdb
1fa5c441aa233de4ab86024008d10b7161486a3801efb1f841d030f15144bd2c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive

plus.sabavision.com/dox/dox.min.js

185.147.178.24

200 OK

18 kB

URL HTTP/2
plus.sabavision.com/dox/dox.min.js
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
data
Size
18 kB (17783 bytes)
Hash
9e7a3b82ad261db7aecd7d3c09782eee
047fa8c5459877e945eddb67f04ed794bf3ab05c
6fa4b389e0b2038ec42094dcfd60db74a0237e0579991925c0aaf0b5f443baf8

HTTP Headers

GET /dox/dox.min.js HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 12:01:16 GMT
vary: Accept-Encoding
etag: W/"6357d00c-de79"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2

bfetch.yektanet.com/

87.107.144.247

204 No Content

0 B

URL HTTP/2
bfetch.yektanet.com/
IP
87.107.144.247:0
ASN
#204544 Dade Pardazi Mobinhost Co LTD

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: bfetch.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:24 GMT
vary: Origin, Access-Control-Request-Headers
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2

uupload.ir/najva-messaging-sw.js

212.33.193.83

200 OK

144 B

URL HTTP/2
uupload.ir/najva-messaging-sw.js
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
ASCII text, with no line terminators
Size
144 B (144 bytes)
Hash
f876d348e4fa587effb2075becc3ea41
c6440dd14028e7ed281cc424c6fc7de1f65dec9f
63b58e9726bd2a6f18079cea9faea7f5d26ab0602ade611e389f970c309beccb

HTTP Headers

GET /najva-messaging-sw.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
content-type: application/x-javascript
last-modified: Fri, 09 Oct 2020 17:01:24 GMT
etag: "90-5f809764-128f422b655b026;;;"
accept-ranges: bytes
content-length: 144
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

bfetch.yektanet.com/

87.107.144.247

200 OK

1.3 kB

URL HTTP/2
bfetch.yektanet.com/
IP
87.107.144.247:0
ASN
#204544 Dade Pardazi Mobinhost Co LTD

File type
JSON data\012- , ASCII text, with very long lines (1280), with no line terminators
Size
1.3 kB (1280 bytes)
Hash
03e4b08bf0d89585384948ec4fac888c
1cbfbc243053c231b3959be737d19b1d002b5fb7
bce04aa36fdfa47f2dc5c027d5379ebfeb4d50e3d1ad78a5ee0bd275846e7f52

HTTP Headers

POST / HTTP/1.1
Host: bfetch.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 543
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json; charset=utf-8
content-length: 1280
vary: Origin
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
set-cookie: yn_bsb=L%2FgDAC74AwABAA%3D%3D.hxxC0sEkv001DLmhE997MVqrK5mcS85zlByASqaFlWE; Max-Age=3600; Domain=.bfetch.yektanet.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a32ee4e708b84188505655f9da1b1852
d60f6ee61cd9320d647764b25a37dcab1e566176
6ddbfc40817dc4a54da1e81a33a31c4493a99291b0ab0381e6470efaa21e4f82

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a32ee4e708b84188505655f9da1b1852
d60f6ee61cd9320d647764b25a37dcab1e566176
6ddbfc40817dc4a54da1e81a33a31c4493a99291b0ab0381e6470efaa21e4f82

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7380 bytes)
Hash
76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295

185.143.233.120

200 OK

13 kB

URL HTTP/2
native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
JSON data\012- , ASCII text
Size
13 kB (13068 bytes)
Hash
0cc472257e75cca620bc003da4eea61e
e461ce3590f1874a64ae574b008d97ddc59ee074
f71258bb5e676b108d7a9807c4d20d56fbc7d00e70ae747ec33d378a54b78be3

HTTP Headers

OPTIONS /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1
Host: native-removal.triboon.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: href
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.558
ar-request-id: c07de9590ac9b61f5c3b9a5b8b2e5001
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 29630
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8387 bytes)
Hash
4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 21605
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

audience.yektanet.com/api/v1/scripts/preview/validate/?app_id=rT6uurJ5

185.143.233.120

200 OK

5 B

URL HTTP/2
audience.yektanet.com/api/v1/scripts/preview/validate/?app_id=rT6uurJ5
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa

HTTP Headers

GET /api/v1/scripts/preview/validate/?app_id=rT6uurJ5 HTTP/1.1
Host: audience.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
content-length: 5
access-control-allow-origin: https://uupload.ir
allow: GET, OPTIONS
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Authorization
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2074
ar-atime: 0.173
ar-cache: BYPASS
ar-request-id: 001e024f6fc80975ec0fb5d793887c58
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 16:41:08 GMT
expires: Sun, 27 Nov 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6557
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

uupload.ir/css/images/favicon.ico

212.33.193.83

200 OK

232 B

URL HTTP/2
uupload.ir/css/images/favicon.ico
IP
212.33.193.83:0
ASN
#43754 Asiatech Data Transmission company

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
232 B (232 bytes)
Hash
41f9c6b41573c4d8ddc9dbebba0586f9
d9a8ce0dd7baa2823a22668ce86b48e7bfa83ddf
8955f2cfd8b44d06d901adb7749e1aa50ccb4effc7b3eff73afaa4859b92200b

HTTP Headers

GET /css/images/favicon.ico HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Cookie: analytics_campaign={%22source%22:%22direct%22%2C%22medium%22:null}; analytics_session_token=ac70a35c-f59a-a40f-e706-f46b20aa5140; analytics_token=9a2a4992-7617-53c3-2815-0a9908b564e9; yektanet_session_last_activity=11/27/2022; _yngt_iframe=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:25 GMT
content-type: image/x-icon
last-modified: Sun, 01 Mar 2015 11:19:14 GMT
etag: "47e-54f2f5b2-5019979f62de89b0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 232
date: Sun, 27 Nov 2022 18:30:25 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2

ad-management-cdn.yektanet.com/media/649d4472-2b84-42f3-968d-e2e102f04d59.gif

185.143.233.120

200 OK

151 kB

URL HTTP/2
ad-management-cdn.yektanet.com/media/649d4472-2b84-42f3-968d-e2e102f04d59.gif
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
GIF image data, version 89a, 728 x 90\012- data
Size
151 kB (150732 bytes)
Hash
4f1f11228eb3de5a156b8016d3abf40b
64d24fa414128c5e5a116e5e76d951cda29b769f
c25981334a43c43626c1916dab6cd04ebb4534a1967c1b61758185783f65a0d5

HTTP Headers

GET /media/649d4472-2b84-42f3-968d-e2e102f04d59.gif HTTP/1.1
Host: ad-management-cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/gif
content-length: 150732
last-modified: Mon, 07 Nov 2022 01:53:40 GMT
x-rgw-object-type: Normal
etag: "4f1f11228eb3de5a156b8016d3abf40b"
x-amz-meta-mtime: 1659283862.262
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cache-control: max-age=3600
x-cache-status: MISS
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
expires: Sun, 27 Nov 2022 19:30:25 GMT
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.000
ar-cache: HIT
ar-request-id: 19a9af15d6d9c15da1d5990595bd2661
accept-ranges: bytes
X-Firefox-Spdy: h2

ua.yektanet.com/__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar

185.143.233.120

200 OK

42 B

URL HTTP/2
ua.yektanet.com/__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

POST /__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/gif
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.211
ar-request-id: 626a90de61e0473b9b6804f0a737941a
accept-ranges: bytes
X-Firefox-Spdy: h2

native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295

185.143.233.120

200 OK

20 B

URL HTTP/2
native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
JSON data\012- , ASCII text
Size
20 B (20 bytes)
Hash
4e56b6673e0b7be725ee9b917b351c05
9484234df4d9c83e138f9c2c4ee86b74fbc7a947
baab076eced52f60ca29321c081278072fc7fe58992c2500325c1c3511150103

HTTP Headers

GET /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1
Host: native-removal.triboon.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
href: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.200
ar-cache: BYPASS
ar-request-id: 2f85bf6d16c88a1a2f53c1ab41bd60e9
content-encoding: br
X-Firefox-Spdy: h2

plus.sabavision.com/csync/inner/3P/yektanet/pixel

185.147.178.24

400 Bad Request

26 B

URL HTTP/2
plus.sabavision.com/csync/inner/3P/yektanet/pixel
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JSON data\012- , ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9ca18d8ee17b13362c0bfa5b1aab31ce
c88b0fc731c713e22f073dc6d6eacdd4c0e7c543
cc63ab4ce0a9c54b305af86ae196060cafac51e040b6d5ccc8ac2fda08f290a0

HTTP Headers

GET /csync/inner/3P/yektanet/pixel HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 400 Bad Request
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json; charset=utf-8
content-length: 26
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.308
X-Firefox-Spdy: h2

plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756

185.147.178.24

200 OK

0 B

URL HTTP/2
plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.323
x-upstream: 0
X-Firefox-Spdy: h2

ua.yektanet.com/__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar

185.143.233.120

200 OK

42 B

URL HTTP/2
ua.yektanet.com/__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/gif
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT
last-modified: Sunday, 27-Nov-2022 18:30:26 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.218
ar-cache: BYPASS
ar-request-id: 63b1340898d0db233ad45f023730d12c
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18

185.166.104.3

200 OK

25 kB

URL HTTP/2
cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18
IP
185.166.104.3:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type
ASCII text, with very long lines (30590)
Size
25 kB (24973 bytes)
Hash
833fdd9f4886594a7e390058be3efc09
f77d659035a6333a387ee31e50d1f8a439dd6cb4
312809f56d86829fab7d700e91bfd47e99f1f82d8eac58c481c556deeb8d9031

HTTP Headers

GET /rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
cache-tag: ua_rT6uurJ5,ua
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Mon, 17 Oct 2022 15:10:58 GMT
x-rgw-object-type: Normal
etag: W/"25bb201e0076f0aadc198c4ef16f25b7"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
4f92ed74bb37ce72e888023403d6db7c
e7d7f13ebc91aa3d9d9841bb12e79df0f6c0feae
8e934d2c95e7f6b797cb680b218e1089ab104a6a885261db935bb784d2e4bd63

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=284
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=588
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=730
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.10

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=759
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S

ua.yektanet.com/cookie/set

185.143.233.120

200 OK

671 B

URL HTTP/2
ua.yektanet.com/cookie/set
IP
185.143.233.120:0
ASN
#202468 Noyan Abr Arvan Co. ( Private Joint Stock)

File type
JSON data\012- , ASCII text
Size
671 B (671 bytes)
Hash
d8694e781f4687f029b14a9344a6e938
b9b21ab94249a63a5651468466e54f9cd41d33fe
651e14ec5f2f4ac032ad3914aa78d145e87bae9c0a8dfb4b5add9108ec86a17a

HTTP Headers

GET /cookie/set HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ua.yektanet.com/cookie/iframe/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-credentials: true
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.232
ar-cache: BYPASS
ar-request-id: 58a3565068b193a5a7edfcdfc0438235
content-encoding: br
X-Firefox-Spdy: h2

static.cdn.asset.filimo.com/vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg

185.147.178.16

200 OK

43 kB

URL HTTP/2
static.cdn.asset.filimo.com/vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg
IP
185.147.178.16:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Size
43 kB (43382 bytes)
Hash
a015ae77d49e80b3594b6ddefa95229d
6c5a675bbab43cc667cf466d260fd0cd7d60b2c6
9e4bad45ca14f718e73679fbcdd793b4744f1ef50ba97d655c7ac2e021b1d047

HTTP Headers

GET /vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 43382
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sat, 26 Nov 2022 14:58:51 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

static.cdn.asset.filimo.com/vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg

185.147.178.16

200 OK

47 kB

URL HTTP/2
static.cdn.asset.filimo.com/vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg
IP
185.147.178.16:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Size
47 kB (47110 bytes)
Hash
7ab7179d943ecc66422526b6cfaadf0d
5afb78f2ab77e80c0c988f65cd07a963f4da9520
57f80e026929d6cd6f21fd43fe3f65b4e6827d1fae01c65bf7f1a5876caa9053

HTTP Headers

GET /vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 47110
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sun, 27 Nov 2022 10:17:33 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

static.cdn.asset.filimo.com/vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg

185.147.178.16

200 OK

88 kB

URL HTTP/2
static.cdn.asset.filimo.com/vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg
IP
185.147.178.16:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=400, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=600], baseline, precision 8, 600x400, components 3\012- data
Size
88 kB (87683 bytes)
Hash
de7bbd85cf06165dda93740182de4f23
635014c10ead6a16c5b494e9e8aeb21b55ca0146
4703d9dda39f08d67490aec74567009fe159de4baca2ab48ebce247ae224f758

HTTP Headers

GET /vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 87683
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Mon, 21 Nov 2022 16:34:34 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

plus.sabavision.com/public/logo_text.svg

185.147.178.24

200 OK

3.2 kB

URL HTTP/2
plus.sabavision.com/public/logo_text.svg
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1657)
Size
3.2 kB (3195 bytes)
Hash
43d8ed3bcb1bbebb870da013be96827c
fecf17a40d96302210b7fbb312a0f956387e551b
980c2273a2c8e2230d2731f7f24bc7109715acb1b3b2b8577f75269e9b839b21

HTTP Headers

GET /public/logo_text.svg HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/svg+xml
last-modified: Tue, 04 Jan 2022 13:25:41 GMT
vary: Accept-Encoding
etag: W/"61d44ad5-2071"
access-control-allow-origin: *
content-encoding: gzip
server: nginx
expires: Tue, 27 Dec 2022 18:30:26 GMT
cache-control: max-age=2592000
x-upstream: 0
X-Firefox-Spdy: h2

plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19

185.147.178.24

204 No Content

0 B

URL HTTP/2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/octet-stream
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.315
x-upstream: 0
X-Firefox-Spdy: h2

plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19

185.147.178.24

200 OK

2 B

URL HTTP/2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.298
x-upstream: 0
X-Firefox-Spdy: h2

185.147.178.24

200 OK

2 B

URL HTTP/2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.286
x-upstream: 0
X-Firefox-Spdy: h2

plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19

185.147.178.24

204 No Content

0 B

URL HTTP/2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/octet-stream
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.685
x-upstream: 0
X-Firefox-Spdy: h2

185.147.178.24

200 OK

2 B

URL HTTP/2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.267
x-upstream: 0
X-Firefox-Spdy: h2

plus.sabavision.com/dmp/dox/iframe.html

185.147.178.24

200 OK

0 B

URL HTTP/2
plus.sabavision.com/dmp/dox/iframe.html
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dmp/dox/iframe.html HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/html
last-modified: Tue, 23 Aug 2022 07:01:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"63047b30-7bd"
expires: Sun, 27 Nov 2022 21:30:24 GMT
cache-control: max-age=10800
content-encoding: gzip
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.273
x-upstream: 0
X-Firefox-Spdy: h2

cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018

185.166.104.3

200 OK

0 B

URL HTTP/2
cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018
IP
185.166.104.3:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/bnrs/yn_bnr.min.js?v=2022010027018 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
vary: Accept-Encoding, Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
etag: W/"632978d6-5a34"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

app.najva.com/static/css/local-messaging.css?v=2022010027018

172.67.210.235

200 OK

0 B

URL HTTP/2
app.najva.com/static/css/local-messaging.css?v=2022010027018
IP
172.67.210.235:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/css/local-messaging.css?v=2022010027018 HTTP/1.1
Host: app.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 15:49:24 GMT
vary: Accept-Encoding
etag: W/"636fc084-29de"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=16070400
cf-cache-status: HIT
age: 5425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FyFanE44BtraGLueMrdy80jeNn0lKavacdRjuKGAvcDoPywoDk9KP%2Bcm%2BjxBBZ3evXlpb4Y1yYIDu9kebKr0ZSVZDJZkUWKVhY2KUoTse%2BxCAjuLb12E68gYa%2BebcIeF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770cef50dd6cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

app.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018

172.67.210.235

301 Moved Permanently

0 B

URL HTTP/2
app.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
IP
172.67.210.235:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1
Host: app.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/html
location: https://van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
cache-control: max-age=16070400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXmdn8UJ2qXjlkQMdPzRM2iEkcuh5PADbi6RAv7IowDzjBThCACh3YdYEgjcAmIBOXuWvdy49tkkBWBeOd5ixt7UHaIF9dOF70xJy1ww6yR7ZbdBRUrbZdWbOpXr1xHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cef50dd6eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018

185.166.104.4

200 OK

0 B

URL HTTP/2
van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
IP
185.166.104.4:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1
Host: van.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 13:36:24 GMT
x-rgw-object-type: Normal
etag: W/"35b19a45a0f4a356a996602b8bcdab9e"
x-amz-request-id: tx000000000000004c442c0-0063835917-4707a33-default
x-zrk-us: 206
cache-control: public, max-age=300
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
access-control-max-age: 60
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=0
server: Delivery
x-zrk-cs: REVALIDATED
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

cdn.yektanet.com/assets/images/yn-icon.svg

185.166.104.3

200 OK

0 B

URL HTTP/2
cdn.yektanet.com/assets/images/yn-icon.svg
IP
185.166.104.3:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/images/yn-icon.svg HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-177a"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

cdn.yektanet.com/assets/images/yn.svg

185.166.104.3

200 OK

0 B

URL HTTP/2
cdn.yektanet.com/assets/images/yn.svg
IP
185.166.104.3:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/images/yn.svg HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-2248"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

static.cdn.asset.aparat.com/vision-file/dox.native.css

185.147.178.15

200 OK

0 B

URL HTTP/2
static.cdn.asset.aparat.com/vision-file/dox.native.css
IP
185.147.178.15:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /vision-file/dox.native.css HTTP/1.1
Host: static.cdn.asset.aparat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Wed, 01 May 2019 01:10:38 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
content-encoding: gzip
X-Firefox-Spdy: h2

plus.sabavision.com/dox/dox.min.css

185.147.178.24

200 OK

0 B

URL HTTP/2
plus.sabavision.com/dox/dox.min.css
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dox/dox.min.css HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 12:01:13 GMT
vary: Accept-Encoding
etag: W/"6357d009-1449"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2

plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756

185.147.178.24

200 OK

0 B

URL HTTP/2
plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
IP
185.147.178.24:0
ASN
#44932 Fannavaran-e Idea Pardaz-e Saba PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: 
x-screen-width: 1280
x-screen-height: 1024
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
authorization: 8cdee8a1-6be5-4ab1-9015-a9950ba85e13
set-cookie: device-resolution=1280x1024; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding, Origin
content-encoding: gzip
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.355
x-upstream: 0
X-Firefox-Spdy: h2

cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018

185.166.104.3

200 OK

0 B

URL HTTP/2
cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018
IP
185.166.104.3:0
ASN
#202319 Avaye Hamrahe Houshmande Hezardastan PJSC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/uupload.ir/article.v1.js?v=2022010027018 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
cache-tag: native_uupload.ir,native
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Tue, 01 Nov 2022 14:24:18 GMT
x-rgw-object-type: Normal
etag: W/"bed16501b21cf782703185bf64b19a9e"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations