uupload.ir/view/s1-micro-anvarifard_k28r.rar/
212.33.193.83301 Moved Permanently 707 B URL HTTP/1.1 uupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 27 Nov 2022 18:30:22 GMT
server: LiteSpeed
location: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
access-control-allow-origin: *
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5775
Expires: Sun, 27 Nov 2022 20:06:38 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5649
Cache-Control: max-age=149699
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:05:22 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 18:17:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 763
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11392
Expires: Sun, 27 Nov 2022 21:40:15 GMT
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SNPR/5sdFOn2p7M6Ct6+6oucckHVEkWwQZwpNrwCvHrMjq5ukDd/WdzvkAfkl+0oK4Mum0KOUzI=
x-amz-request-id: EBRBQ3JTQA6XS97M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 17:44:43 GMT
age: 2740
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 7639e631fede725c69e9d1566063818f
329979e46dacc44f807ac2b1c25d88131420c862
623664ce809c404be13e078da1bfbaf038f3a64430264192a1e555d62888b6af
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=851
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S
uupload.ir/view/s1-micro-anvarifard_k28r.rar/
212.33.193.83200 OK 7.2 kB URL HTTP/2 uupload.ir/view/s1-micro-anvarifard_k28r.rar/
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (487), with CRLF, LF line terminators
Hash 075ad20149080e4f0f086d1ff5cda942
33af6656fa09b359dc7ab87fd014ac9e0f0fc2c5
d3931ad84e61ce63ec047081dd62518c9ff0bfe5db62af9d7a7c8a5c1cdc539c
Analyzer Verdict Alert fortinet Phishing
GET /view/s1-micro-anvarifard_k28r.rar/ HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.14
content-type: text/html; charset=UTF-8
content-length: 7244
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 18:08:54 GMT
cache-control: public,max-age=3600
age: 1289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 5807878908cba6c59385f6a0ab5e7640
4438afe83b70fc0764731b9a1f239c024f45b429
cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 5807878908cba6c59385f6a0ab5e7640
4438afe83b70fc0764731b9a1f239c024f45b429
cde24d630b96bbbf8f1eaf6344391ff7c4b1bf2b9070af3a5eaebf8487cfd822
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=306
Date: Sun, 27 Nov 2022 18:30:23 GMT
Connection: keep-alive
X-N: S
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5704
Cache-Control: max-age=144693
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:41:56 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtag/js?id=UA-25986871-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-25986871-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 4d1ccad134db9b3b8d7b29e680838674
543c82f16b5f0ae42c5380491ce1576c65c97454
b9720b6104de03091f478d08ca5a26734585e00d3295b352a0dc10f6b33d8164
GET /gtag/js?id=UA-25986871-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:30:23 GMT
expires: Sun, 27 Nov 2022 18:30:23 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:30:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uupload.ir/css/jquery-3.1.1.min.js
212.33.193.83200 OK 30 kB URL HTTP/2 uupload.ir/css/jquery-3.1.1.min.js
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type ASCII text, with very long lines (32030)
Hash c5b64fe5b819495e8f7411dc83193b5e
baeb1e59f372a105c01286e21547da0536957aa6
80cb424f7249dfb3de9a0054443abc76face0b9fb6da699a359d31daa76c959a
GET /css/jquery-3.1.1.min.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Dec 2016 08:51:54 GMT
etag: "152b5-58452aaa-f092a3b499796ba8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29460
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/loadingbrowse.js
212.33.193.83200 OK 425 B URL HTTP/2 uupload.ir/css/loadingbrowse.js
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type Unicode text, UTF-8 text, with very long lines (890)
Hash ce336bd9e8514f337b8c4f4d0e0a76bc
8a8f7b97b5f512508658cadbe6f9341cfb009db7
e5587b22a5742bb8e86ac37b35aabefc437bf95c2bd1db76626acf0d735b9bf2
GET /css/loadingbrowse.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Sat, 19 Nov 2016 18:46:32 GMT
etag: "458-58309e08-dc8462aaac834762;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 425
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/style.css?ver=16
212.33.193.83200 OK 5.3 kB URL HTTP/2 uupload.ir/css/style.css?ver=16
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type troff or preprocessor input, ASCII text, with very long lines (941)
Hash e37ba28faf56f25cb7bcc214212fe7e9
0b20aabab3061c8745432fd90a172a651c2151b6
36b0679fa79a9219fed541a9c2fe5bbdbce7467b6b504055c5498d07746dc761
GET /css/style.css?ver=16 HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 09:55:56 GMT
etag: "61ca-635e4a2c-6a3e364d9b138800;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5275
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/video-js.css
212.33.193.83200 OK 13 kB URL HTTP/2 uupload.ir/css/video-js.css
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (12483), with CRLF line terminators
Hash f1e0ef9b9a39899a35614d1c3d9c00e0
37d836f5d9b3c4a696cc2d9d7557821754810883
9c9a2d1422eaa7adf4cd68b602a8e2545c20dc8e50c1739df1c362bc217d58e6
GET /css/video-js.css HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: text/css
last-modified: Wed, 30 Nov 2016 11:06:58 GMT
etag: "b123-583eb2d2-75f0479d830003f5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12868
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/videojs-ie8.min.js
212.33.193.83200 OK 8.7 kB URL HTTP/2 uupload.ir/css/videojs-ie8.min.js
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Hash e503b26600415e716766470cba2b3cf6
c1bf2a576f9aed6a29f27ac02c30fd1ac2ff1117
01e39e3dbe1672f2eef8de9f80fa721477bffc4519d3c1d5c062d1fed55835aa
GET /css/videojs-ie8.min.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Sat, 22 Aug 2020 12:58:14 GMT
etag: "6a8e-5f411666-bf5a709f63c0468d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8733
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/source/includes/genjscript.js
212.33.193.83200 OK 2.1 kB URL HTTP/2 uupload.ir/source/includes/genjscript.js
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (839)
Hash 0f9cdb90568148a4b2142cba517c6c30
b7136edad0e3cd38ee6bc8eb5151d5ef2d14c526
f84fd13d504525b7d27ef617a5c20680bcfc0c8d3ab1be2dc68b4f5d9236ec31
GET /source/includes/genjscript.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: application/x-javascript
last-modified: Mon, 03 Oct 2022 15:30:24 GMT
etag: "1b1f-633b0010-6b576e61ed37cc4d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2073
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/images/logo3.png
212.33.193.83200 OK 4.2 kB URL HTTP/2 uupload.ir/css/images/logo3.png
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type PNG image data, 94 x 86, 8-bit colormap, non-interlaced\012- data
Hash e35b5da6ef367009d0a412c833c359e8
ce014f05b7ac3b74a2a2d5704533eedd55c752ce
e910834feadb5e6a7fec6e38b66f9ea8087ee71ef95057339ee3a99457da9381
GET /css/images/logo3.png HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/png
last-modified: Fri, 19 Jul 2019 15:16:44 GMT
etag: "106c-5d31dedc-b3fedeeb0ccf9315;;;"
accept-ranges: bytes
content-length: 4204
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/img/homeca3.gif
212.33.193.83200 OK 11 kB URL HTTP/2 uupload.ir/img/homeca3.gif
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type GIF image data, version 89a, 468 x 60\012- data
Hash 5771875a28df1c4d31ce7b0e5726c4ce
4c44f67771382990dd977c06e28c81ee43b74217
168ef90ddd4952c2edbbdba690247f54d8f4392de80ff4aa515d5076df50d17b
GET /img/homeca3.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Mon, 05 Sep 2022 07:59:49 GMT
etag: "2b28-6315ac75-f24cc27f7749c6dc;;;"
accept-ranges: bytes
content-length: 11048
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/img/persolco.png
212.33.193.83200 OK 26 kB URL HTTP/2 uupload.ir/img/persolco.png
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type PNG image data, 468 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash f67cfed99675ad9f9121915568692e72
270ede04d51c33a921db9a44128a2c9e30b334ad
12d585ea82bdb1aa5afb0477fcbf471576d055833e33fe3e0ada13070f387077
GET /img/persolco.png HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/png
last-modified: Wed, 28 Sep 2022 10:45:21 GMT
etag: "65b8-633425c1-e6888bc725427b35;;;"
accept-ranges: bytes
content-length: 26040
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/img/rsmta.gif
212.33.193.83200 OK 118 kB IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type GIF image data, version 89a, 468 x 60\012- data
Size 118 kB (118314 bytes)
Hash fa9fdd21be33a4bac8cc2075fb4c8dc6
62c9e9b37f34423775a5c1c0e2979549e46c17e8
97f61e6296c21b31be8f295e149ea1a0c2682fdc5f782496e9f89d5a7f315a23
GET /img/rsmta.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Wed, 29 Jun 2022 09:33:25 GMT
etag: "1ce2a-62bc1c65-57822d38826df0d1;;;"
accept-ranges: bytes
content-length: 118314
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/img/NAFIS.gif
212.33.193.83200 OK 40 kB IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type GIF image data, version 89a, 468 x 60\012- data
Hash fbdbfd7a28a014be0340dcd27be6f60c
3a6fe3c5f6b2112740549d364fd36f047d42c227
ab0b729da41d16c8230e06dc6868fc07319336889c489424b64023d14af06a3c
GET /img/NAFIS.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Wed, 23 Nov 2022 08:47:25 GMT
etag: "9d9a-637dde1d-a225eb8cf6f35c41;;;"
accept-ranges: bytes
content-length: 40346
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.188.211.138101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.188.211.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SAi2wQAdusgAjSRmLZ03oA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TpF6VAABk0eetUUTfylhUEkDpyU=
uupload.ir/img/my970.gif
212.33.193.83200 OK 138 kB IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type GIF image data, version 89a, 970 x 250\012- data
Size 138 kB (138431 bytes)
Hash 68f1197ba29535bca201c7839cacdd8b
15223c769c8d20a4094565186004021692ce7c0e
13e6a2c939ffa1e94cd7254870681c55c0b32462774ab2a5dba1b3307270bb0d
GET /img/my970.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:23 GMT
content-type: image/gif
last-modified: Sun, 02 May 2021 15:26:15 GMT
etag: "21cbf-608ec497-ede44925c5f7f205;;;"
accept-ranges: bytes
content-length: 138431
date: Sun, 27 Nov 2022 18:30:23 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/files/61xk_bg-body.jpg
212.33.193.83302 Found 683 B URL HTTP/2 uupload.ir/files/61xk_bg-body.jpg
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /files/61xk_bg-body.jpg HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
content-type: text/html
content-length: 683
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://s2.uupload.ir/files/61xk_bg-body.jpg
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/images/input_bg.gif
212.33.193.83200 OK 766 B URL HTTP/2 uupload.ir/css/images/input_bg.gif
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type GIF image data, version 89a, 30 x 30\012- data
Hash 740cb44a4c6ef85f68fcb4e32a89e3dd
0bd1ecf2c3efd5fa64cb05608989ae0575185946
ce9f3b3d4e7cea26831ac3bb251c4b354a377046a8df382500d5286459dca02c
GET /css/images/input_bg.gif HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
content-type: image/gif
last-modified: Sat, 27 Dec 2014 21:11:24 GMT
etag: "2fe-549f207c-b9f8a2d62fda9957;;;"
accept-ranges: bytes
content-length: 766
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
uupload.ir/css/font/IRANSansX-Regular.woff
212.33.193.83200 OK 36 kB URL HTTP/2 uupload.ir/css/font/IRANSansX-Regular.woff
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type Web Open Font Format, TrueType, length 36036, version 0.0\012- data
Hash 75aba455ed94293595b78ef3d2d68ecb
c5c7e045bebefd510c39d767303d96cd6c9625a3
7bef8d0772623f4dfd2765b978e8d0487eda575c3f22166e3cfb5f47aa02b6f9
GET /css/font/IRANSansX-Regular.woff HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uupload.ir/css/style.css?ver=16
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
last-modified: Sun, 09 Jan 2022 14:55:19 GMT
etag: "8cc4-61daf757-f4603d390a9d81b9;;;"
accept-ranges: bytes
content-length: 36036
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31544607a2ea9d4288acc4a12c8085cf
c731a6c672cf64dd59b9f1b621b106dab181dc7c
a8220456b1b92ad6401bf01ae4483a0c219e0deed237d06ca2b0d375e7a11aa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8220456B1B92AD6401BF01AE4483A0C219E0DEED237D06CA2B0D375E7A11AA2"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3773
Expires: Sun, 27 Nov 2022 19:33:17 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive
s2.uupload.ir/files/61xk_bg-body.jpg
212.33.193.85200 OK 3.0 kB URL HTTP/1.1 s2.uupload.ir/files/61xk_bg-body.jpg
IP 212.33.193.85:0
ASN #43754 Asiatech Data Transmission company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 4bf045bb130bca21e1729d7232459de4
a78d04501589cdc271f7ce416c9019a59f8a6b09
a2ebc0aa387a92f32b8738c999564d3247a99c89868fc2106b7a644443d98166
GET /files/61xk_bg-body.jpg HTTP/1.1
Host: s2.uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 18:30:24 GMT
Content-Type: image/jpeg
Content-Length: 3003
Last-Modified: Sun, 04 Jan 2015 12:27:30 GMT
Connection: keep-alive
ETag: "54a931b2-bbb"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22ca786898b9300c3b1b5ab2e70af4e1
f55aaa51363111244819eeb2ed1ef2e3c24a8bdb
1fa5c441aa233de4ab86024008d10b7161486a3801efb1f841d030f15144bd2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22ca786898b9300c3b1b5ab2e70af4e1
f55aaa51363111244819eeb2ed1ef2e3c24a8bdb
1fa5c441aa233de4ab86024008d10b7161486a3801efb1f841d030f15144bd2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1FA5C441AA233DE4AB86024008D10B7161486A3801EFB1F841D030F15144BD2C"
Last-Modified: Fri, 25 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Sun, 27 Nov 2022 20:37:00 GMT
Date: Sun, 27 Nov 2022 18:30:24 GMT
Connection: keep-alive
plus.sabavision.com/dox/dox.min.js
185.147.178.24200 OK 18 kB URL HTTP/2 plus.sabavision.com/dox/dox.min.js
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash 9e7a3b82ad261db7aecd7d3c09782eee
047fa8c5459877e945eddb67f04ed794bf3ab05c
6fa4b389e0b2038ec42094dcfd60db74a0237e0579991925c0aaf0b5f443baf8
GET /dox/dox.min.js HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 12:01:16 GMT
vary: Accept-Encoding
etag: W/"6357d00c-de79"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2
bfetch.yektanet.com/
87.107.144.247204 No Content 0 B IP 87.107.144.247:0
ASN #204544 Dade Pardazi Mobinhost Co LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bfetch.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:24 GMT
vary: Origin, Access-Control-Request-Headers
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
uupload.ir/najva-messaging-sw.js
212.33.193.83200 OK 144 B URL HTTP/2 uupload.ir/najva-messaging-sw.js
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type ASCII text, with no line terminators
Hash f876d348e4fa587effb2075becc3ea41
c6440dd14028e7ed281cc424c6fc7de1f65dec9f
63b58e9726bd2a6f18079cea9faea7f5d26ab0602ade611e389f970c309beccb
GET /najva-messaging-sw.js HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:24 GMT
content-type: application/x-javascript
last-modified: Fri, 09 Oct 2020 17:01:24 GMT
etag: "90-5f809764-128f422b655b026;;;"
accept-ranges: bytes
content-length: 144
date: Sun, 27 Nov 2022 18:30:24 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
bfetch.yektanet.com/
87.107.144.247200 OK 1.3 kB IP 87.107.144.247:0
ASN #204544 Dade Pardazi Mobinhost Co LTD
File type JSON data\012- , ASCII text, with very long lines (1280), with no line terminators
Hash 03e4b08bf0d89585384948ec4fac888c
1cbfbc243053c231b3959be737d19b1d002b5fb7
bce04aa36fdfa47f2dc5c027d5379ebfeb4d50e3d1ad78a5ee0bd275846e7f52
POST / HTTP/1.1
Host: bfetch.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 543
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json; charset=utf-8
content-length: 1280
vary: Origin
access-control-allow-origin: https://uupload.ir
access-control-allow-credentials: true
set-cookie: yn_bsb=L%2FgDAC74AwABAA%3D%3D.hxxC0sEkv001DLmhE997MVqrK5mcS85zlByASqaFlWE; Max-Age=3600; Domain=.bfetch.yektanet.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a32ee4e708b84188505655f9da1b1852
d60f6ee61cd9320d647764b25a37dcab1e566176
6ddbfc40817dc4a54da1e81a33a31c4493a99291b0ab0381e6470efaa21e4f82
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a32ee4e708b84188505655f9da1b1852
d60f6ee61cd9320d647764b25a37dcab1e566176
6ddbfc40817dc4a54da1e81a33a31c4493a99291b0ab0381e6470efaa21e4f82
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDBFC40817DC4A54DA1E81A33A31C4493A99291B0AB0381E6470EFAA21E4F82"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5329
Expires: Sun, 27 Nov 2022 19:59:14 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8808
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 18:30:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 74891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
185.143.233.120200 OK 13 kB URL HTTP/2 native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type JSON data\012- , ASCII text
Hash 0cc472257e75cca620bc003da4eea61e
e461ce3590f1874a64ae574b008d97ddc59ee074
f71258bb5e676b108d7a9807c4d20d56fbc7d00e70ae747ec33d378a54b78be3
OPTIONS /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1
Host: native-removal.triboon.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: href
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.558
ar-request-id: c07de9590ac9b61f5c3b9a5b8b2e5001
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 29630
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 21605
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
audience.yektanet.com/api/v1/scripts/preview/validate/?app_id=rT6uurJ5
185.143.233.120200 OK 5 B URL HTTP/2 audience.yektanet.com/api/v1/scripts/preview/validate/?app_id=rT6uurJ5
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type ASCII text, with no line terminators
Hash 68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /api/v1/scripts/preview/validate/?app_id=rT6uurJ5 HTTP/1.1
Host: audience.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
content-length: 5
access-control-allow-origin: https://uupload.ir
allow: GET, OPTIONS
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Authorization
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2074
ar-atime: 0.173
ar-cache: BYPASS
ar-request-id: 001e024f6fc80975ec0fb5d793887c58
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 16:41:08 GMT
expires: Sun, 27 Nov 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6557
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uupload.ir/css/images/favicon.ico
212.33.193.83200 OK 232 B URL HTTP/2 uupload.ir/css/images/favicon.ico
IP 212.33.193.83:0
ASN #43754 Asiatech Data Transmission company
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 41f9c6b41573c4d8ddc9dbebba0586f9
d9a8ce0dd7baa2823a22668ce86b48e7bfa83ddf
8955f2cfd8b44d06d901adb7749e1aa50ccb4effc7b3eff73afaa4859b92200b
GET /css/images/favicon.ico HTTP/1.1
Host: uupload.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Cookie: analytics_campaign={%22source%22:%22direct%22%2C%22medium%22:null}; analytics_session_token=ac70a35c-f59a-a40f-e706-f46b20aa5140; analytics_token=9a2a4992-7617-53c3-2815-0a9908b564e9; yektanet_session_last_activity=11/27/2022; _yngt_iframe=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 04 Dec 2022 18:30:25 GMT
content-type: image/x-icon
last-modified: Sun, 01 Mar 2015 11:19:14 GMT
etag: "47e-54f2f5b2-5019979f62de89b0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 232
date: Sun, 27 Nov 2022 18:30:25 GMT
server: LiteSpeed
access-control-allow-origin: *
X-Firefox-Spdy: h2
ad-management-cdn.yektanet.com/media/649d4472-2b84-42f3-968d-e2e102f04d59.gif
185.143.233.120200 OK 151 kB URL HTTP/2 ad-management-cdn.yektanet.com/media/649d4472-2b84-42f3-968d-e2e102f04d59.gif
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type GIF image data, version 89a, 728 x 90\012- data
Size 151 kB (150732 bytes)
Hash 4f1f11228eb3de5a156b8016d3abf40b
64d24fa414128c5e5a116e5e76d951cda29b769f
c25981334a43c43626c1916dab6cd04ebb4534a1967c1b61758185783f65a0d5
GET /media/649d4472-2b84-42f3-968d-e2e102f04d59.gif HTTP/1.1
Host: ad-management-cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/gif
content-length: 150732
last-modified: Mon, 07 Nov 2022 01:53:40 GMT
x-rgw-object-type: Normal
etag: "4f1f11228eb3de5a156b8016d3abf40b"
x-amz-meta-mtime: 1659283862.262
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cache-control: max-age=3600
x-cache-status: MISS
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
expires: Sun, 27 Nov 2022 19:30:25 GMT
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.000
ar-cache: HIT
ar-request-id: 19a9af15d6d9c15da1d5990595bd2661
accept-ranges: bytes
X-Firefox-Spdy: h2
ua.yektanet.com/__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
185.143.233.120200 OK 42 B URL HTTP/2 ua.yektanet.com/__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /__fake.gif?aa=event&abe=L&abf=fece3f7b-0338-44f7-b327-e5c7711906ec&abj=1&aed=pub&abh=None&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=rT6uurJ5&aec=58801&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1362&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/gif
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.211
ar-request-id: 626a90de61e0473b9b6804f0a737941a
accept-ranges: bytes
X-Firefox-Spdy: h2
native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
185.143.233.120200 OK 20 B URL HTTP/2 native-removal.triboon.net/?hash=433067274,855564774,559230688,90103240,689227295
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type JSON data\012- , ASCII text
Hash 4e56b6673e0b7be725ee9b917b351c05
9484234df4d9c83e138f9c2c4ee86b74fbc7a947
baab076eced52f60ca29321c081278072fc7fe58992c2500325c1c3511150103
GET /?hash=433067274,855564774,559230688,90103240,689227295 HTTP/1.1
Host: native-removal.triboon.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
href: https://uupload.ir/view/s1-micro-anvarifard_k28r.rar/
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://uupload.ir
access-control-allow-headers: *
cache-control: public, max-age=14400, s-maxage=14400, stale-while-revalidate=3600, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2063
ar-atime: 0.200
ar-cache: BYPASS
ar-request-id: 2f85bf6d16c88a1a2f53c1ab41bd60e9
content-encoding: br
X-Firefox-Spdy: h2
plus.sabavision.com/csync/inner/3P/yektanet/pixel
185.147.178.24400 Bad Request 26 B URL HTTP/2 plus.sabavision.com/csync/inner/3P/yektanet/pixel
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JSON data\012- , ASCII text, with no line terminators
Hash 9ca18d8ee17b13362c0bfa5b1aab31ce
c88b0fc731c713e22f073dc6d6eacdd4c0e7c543
cc63ab4ce0a9c54b305af86ae196060cafac51e040b6d5ccc8ac2fda08f290a0
GET /csync/inner/3P/yektanet/pixel HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json; charset=utf-8
content-length: 26
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.308
X-Firefox-Spdy: h2
plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.323
x-upstream: 0
X-Firefox-Spdy: h2
ua.yektanet.com/__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
185.143.233.120200 OK 42 B URL HTTP/2 ua.yektanet.com/__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /__fake.gif/?aa=event&abe=L&abf=35790ff0-8b75-4d85-aa11-1588c52a0053&abj=1&aed=pub&acs=%7B%22fingerprint%22%3A%22cd6de883aa0b83fe2df5faa278d53109%22%7D&ac=https%3A%2F%2Fuupload.ir%2Fview%2Fs1-micro-anvarifard_k28r.rar%2F&ae=%7B%7D&ad=uupload.ir&as=S1-Micro-Anvarifard.rar%20-%20%DB%8C%D9%88%20%D8%A2%D9%BE%D9%84%D9%88%D8%AF&aef=Y90qoqWk&aec=11031&aaa=direct&aab=null&ai=ac70a35c-f59a-a40f-e706-f46b20aa5140&abw=975&abb=1459&aby=1280&abz=1024&al=1280&am=939&abk=%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF%20S1-Micro-Anvarifard.rar HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/gif
content-length: 42
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:26 GMT
last-modified: Sunday, 27-Nov-2022 18:30:26 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.218
ar-cache: BYPASS
ar-request-id: 63b1340898d0db233ad45f023730d12c
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18
185.166.104.3200 OK 25 kB URL HTTP/2 cdn.yektanet.com/rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18
IP 185.166.104.3:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
File type ASCII text, with very long lines (30590)
Hash 833fdd9f4886594a7e390058be3efc09
f77d659035a6333a387ee31e50d1f8a439dd6cb4
312809f56d86829fab7d700e91bfd47e99f1f82d8eac58c481c556deeb8d9031
GET /rg_woebegone/scripts_v4/rT6uurJ5/complete.js?v=2022-11-27T18 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
cache-tag: ua_rT6uurJ5,ua
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Mon, 17 Oct 2022 15:10:58 GMT
x-rgw-object-type: Normal
etag: W/"25bb201e0076f0aadc198c4ef16f25b7"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 4f92ed74bb37ce72e888023403d6db7c
e7d7f13ebc91aa3d9d9841bb12e79df0f6c0feae
8e934d2c95e7f6b797cb680b218e1089ab104a6a885261db935bb784d2e4bd63
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=284
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=588
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=730
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 54b144990823552cfbb473e466605113
431a83f7a07e8cc4eb3ea599a05dcf6787f3f2ca
9b18366a42dfe92f23896c2c87db5557b57e37e595e9784dec89358470d75079
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=759
Date: Sun, 27 Nov 2022 18:30:26 GMT
Connection: keep-alive
X-N: S
ua.yektanet.com/cookie/set
185.143.233.120200 OK 671 B URL HTTP/2 ua.yektanet.com/cookie/set
IP 185.143.233.120:0
ASN #202468 Noyan Abr Arvan Co. ( Private Joint Stock)
File type JSON data\012- , ASCII text
Hash d8694e781f4687f029b14a9344a6e938
b9b21ab94249a63a5651468466e54f9cd41d33fe
651e14ec5f2f4ac032ad3914aa78d145e87bae9c0a8dfb4b5add9108ec86a17a
GET /cookie/set HTTP/1.1
Host: ua.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ua.yektanet.com/cookie/iframe/
Cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ArvanCloud
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-credentials: true
set-cookie: gearbox_ad_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
analytics_global_token=25a6e595-52cf4-4bc54-430e9-907dbd69ee8f1; Path=/; Domain=.yektanet.com; SameSite=None; Secure; HttpOnly; Max-Age=315360000; Expires=Wed, 24-Nov-32 18:30:25 GMT
last-modified: Sunday, 27-Nov-2022 18:30:25 GMT
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
pragma: no-cache
expires: 0
x-xss-protection: 1; mode=block
ar-sid: 2025
ar-atime: 0.232
ar-cache: BYPASS
ar-request-id: 58a3565068b193a5a7edfcdfc0438235
content-encoding: br
X-Firefox-Spdy: h2
static.cdn.asset.filimo.com/vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg
185.147.178.16200 OK 43 kB URL HTTP/2 static.cdn.asset.filimo.com/vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg
IP 185.147.178.16:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Hash a015ae77d49e80b3594b6ddefa95229d
6c5a675bbab43cc667cf466d260fd0cd7d60b2c6
9e4bad45ca14f718e73679fbcdd793b4744f1ef50ba97d655c7ac2e021b1d047
GET /vision-file/51318941-f760-41ba-9b70-e4d73ef72ffa-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 43382
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sat, 26 Nov 2022 14:58:51 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
static.cdn.asset.filimo.com/vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg
185.147.178.16200 OK 47 kB URL HTTP/2 static.cdn.asset.filimo.com/vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg
IP 185.147.178.16:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x400, components 3\012- data
Hash 7ab7179d943ecc66422526b6cfaadf0d
5afb78f2ab77e80c0c988f65cd07a963f4da9520
57f80e026929d6cd6f21fd43fe3f65b4e6827d1fae01c65bf7f1a5876caa9053
GET /vision-file/c2ac0323-1da6-4747-a163-d2d8b9664814-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 47110
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Sun, 27 Nov 2022 10:17:33 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
static.cdn.asset.filimo.com/vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg
185.147.178.16200 OK 88 kB URL HTTP/2 static.cdn.asset.filimo.com/vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg
IP 185.147.178.16:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=400, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=600], baseline, precision 8, 600x400, components 3\012- data
Hash de7bbd85cf06165dda93740182de4f23
635014c10ead6a16c5b494e9e8aeb21b55ca0146
4703d9dda39f08d67490aec74567009fe159de4baca2ab48ebce247ae224f758
GET /vision-file/19f05215-6c99-4b98-b72f-8b3f70f42c6d-native_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/jpeg
content-length: 87683
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Mon, 21 Nov 2022 16:34:34 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
plus.sabavision.com/public/logo_text.svg
185.147.178.24200 OK 3.2 kB URL HTTP/2 plus.sabavision.com/public/logo_text.svg
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1657)
Hash 43d8ed3bcb1bbebb870da013be96827c
fecf17a40d96302210b7fbb312a0f956387e551b
980c2273a2c8e2230d2731f7f24bc7109715acb1b3b2b8577f75269e9b839b21
GET /public/logo_text.svg HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: image/svg+xml
last-modified: Tue, 04 Jan 2022 13:25:41 GMT
vary: Accept-Encoding
etag: W/"61d44ad5-2071"
access-control-allow-origin: *
content-encoding: gzip
server: nginx
expires: Tue, 27 Dec 2022 18:30:26 GMT
cache-control: max-age=2592000
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
185.147.178.24204 No Content 0 B URL HTTP/2 plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/octet-stream
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.315
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19
185.147.178.24200 OK 2 B URL HTTP/2 plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25685-A151/a9cd3634-aecd-4606-9246-45c075edaf08?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26790-P030&cid=1381e816-00af-48b6-885a-1f0b73176da2&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=iP4YOUqdFkBptJLlcmUiVbIjKwhqTrEvl64k7gcIS6HIRxaoKdT4GQxJypI5-X2jUJoeBGvtYBNDGtXKaVxYAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.298
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
185.147.178.24200 OK 2 B URL HTTP/2 plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25575-A448/d6ac31a8-1d8a-4876-ba59-477558d5b7d5?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26663-P402&cid=75a60f87-d156-424c-ada6-7162ada46428&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=1ERJc2YDL7CxyyTG4wUz0lypo1Ge-GekRiEI4VOkwFCIi09Dra7jRPleDXzUjbgZwU7WkBVITO6e-d9IaSroAA&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.286
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
185.147.178.24204 No Content 0 B URL HTTP/2 plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://uupload.ir/
Origin: https://uupload.ir
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/octet-stream
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://uupload.ir
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.685
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
185.147.178.24200 OK 2 B URL HTTP/2 plus.sabavision.com/view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /view/6c891c69-9a5e-44b0-9449-9985ce43d684/9659-Z756/sabavision/25674-A053/263cca64-7090-4d56-b51e-8f6cd5b5794a?pageType=ALL&domain=uupload.ir&sspID=plus.sabavision.com&pid=26786-P385&cid=c7678183-9726-431a-b2f4-1560934bc108&sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13&resolution=1280x1024&programType=native&adType=native&sv=B7xa0SZvdVqBc7xzw1kj3kK6oGkWrrgeR5EEwL-MNQJogGPD-zHQyAnMXkCpElO0uWPKr1HTGX-vsN2F437FDQ&cats=IAB19 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: 8ef5bd70-6e81-11ed-9247-0050569747a6
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:28 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.267
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/dmp/dox/iframe.html
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/dmp/dox/iframe.html
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /dmp/dox/iframe.html HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/html
last-modified: Tue, 23 Aug 2022 07:01:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"63047b30-7bd"
expires: Sun, 27 Nov 2022 21:30:24 GMT
cache-control: max-age=10800
content-encoding: gzip
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.273
x-upstream: 0
X-Firefox-Spdy: h2
cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018
185.166.104.3200 OK 0 B URL HTTP/2 cdn.yektanet.com/template/bnrs/yn_bnr.min.js?v=2022010027018
IP 185.166.104.3:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
GET /template/bnrs/yn_bnr.min.js?v=2022010027018 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
vary: Accept-Encoding, Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
etag: W/"632978d6-5a34"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2
app.najva.com/static/css/local-messaging.css?v=2022010027018
172.67.210.235200 OK 0 B URL HTTP/2 app.najva.com/static/css/local-messaging.css?v=2022010027018
IP 172.67.210.235:0
GET /static/css/local-messaging.css?v=2022010027018 HTTP/1.1
Host: app.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 15:49:24 GMT
vary: Accept-Encoding
etag: W/"636fc084-29de"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=16070400
cf-cache-status: HIT
age: 5425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FyFanE44BtraGLueMrdy80jeNn0lKavacdRjuKGAvcDoPywoDk9KP%2Bcm%2BjxBBZ3evXlpb4Y1yYIDu9kebKr0ZSVZDJZkUWKVhY2KUoTse%2BxCAjuLb12E68gYa%2BebcIeF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770cef50dd6cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
172.67.210.235301 Moved Permanently 0 B URL HTTP/2 app.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
IP 172.67.210.235:0
GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1
Host: app.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: text/html
location: https://van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
cache-control: max-age=16070400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXmdn8UJ2qXjlkQMdPzRM2iEkcuh5PADbi6RAv7IowDzjBThCACh3YdYEgjcAmIBOXuWvdy49tkkBWBeOd5ixt7UHaIF9dOF70xJy1ww6yR7ZbdBRUrbZdWbOpXr1xHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cef50dd6eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
185.166.104.4200 OK 0 B URL HTTP/2 van.najva.com/static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018
IP 185.166.104.4:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
GET /static/js/scripts/uupload-729-6adc8766-5e22-450e-a236-d8ea9c8298a1.js?v=2022010027018 HTTP/1.1
Host: van.najva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uupload.ir/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 13:36:24 GMT
x-rgw-object-type: Normal
etag: W/"35b19a45a0f4a356a996602b8bcdab9e"
x-amz-request-id: tx000000000000004c442c0-0063835917-4707a33-default
x-zrk-us: 206
cache-control: public, max-age=300
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
access-control-max-age: 60
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=0
server: Delivery
x-zrk-cs: REVALIDATED
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2
cdn.yektanet.com/assets/images/yn-icon.svg
185.166.104.3200 OK 0 B URL HTTP/2 cdn.yektanet.com/assets/images/yn-icon.svg
IP 185.166.104.3:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
GET /assets/images/yn-icon.svg HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-177a"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2
cdn.yektanet.com/assets/images/yn.svg
185.166.104.3200 OK 0 B URL HTTP/2 cdn.yektanet.com/assets/images/yn.svg
IP 185.166.104.3:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
GET /assets/images/yn.svg HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:25 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Sep 2022 08:24:54 GMT
etag: W/"632978d6-2248"
x-zrk-us: 206
cache-control: public, max-age=3600
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2
static.cdn.asset.aparat.com/vision-file/dox.native.css
185.147.178.15200 OK 0 B URL HTTP/2 static.cdn.asset.aparat.com/vision-file/dox.native.css
IP 185.147.178.15:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /vision-file/dox.native.css HTTP/1.1
Host: static.cdn.asset.aparat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 18:30:26 GMT
last-modified: Wed, 01 May 2019 01:10:38 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
content-encoding: gzip
X-Firefox-Spdy: h2
plus.sabavision.com/dox/dox.min.css
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/dox/dox.min.css
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /dox/dox.min.css HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:23 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 12:01:13 GMT
vary: Accept-Encoding
etag: W/"6357d009-1449"
expires: Tue, 27 Dec 2022 18:30:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /site/6c891c69-9a5e-44b0-9449-9985ce43d684/ALL?zones=8239-Z573&zones=9686-Z661&zones=9659-Z756 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization:
x-screen-width: 1280
x-screen-height: 1024
Origin: https://uupload.ir
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:26 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://uupload.ir
access-control-expose-headers: Authorization
authorization: 8cdee8a1-6be5-4ab1-9015-a9950ba85e13
set-cookie: device-resolution=1280x1024; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
sid=8cdee8a1-6be5-4ab1-9015-a9950ba85e13; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding, Origin
content-encoding: gzip
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.355
x-upstream: 0
X-Firefox-Spdy: h2
cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018
185.166.104.3200 OK 0 B URL HTTP/2 cdn.yektanet.com/js/uupload.ir/article.v1.js?v=2022010027018
IP 185.166.104.3:0
ASN #202319 Avaye Hamrahe Houshmande Hezardastan PJSC
GET /js/uupload.ir/article.v1.js?v=2022010027018 HTTP/1.1
Host: cdn.yektanet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uupload.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:30:24 GMT
content-type: application/javascript; charset=utf-8
cache-tag: native_uupload.ir,native
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://csp-reports.yektanet.com"}],"include_subdomains":true}
last-modified: Tue, 01 Nov 2022 14:24:18 GMT
x-rgw-object-type: Normal
etag: W/"bed16501b21cf782703185bf64b19a9e"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=3600
content-security-policy-report-only: default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none'; report-to default
x-zrk-us: 206
access-control-allow-headers: *
access-control-allow-methods: *
access-control-expose-headers: *
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
server: Delivery
x-zrk-cs: HIT
x-zrk-sn: 3001
content-encoding: br
X-Firefox-Spdy: h2