firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 03:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7vmbctZ9hyDw7rKYeuSbHo89iA0DhXpKZFfsbQABQQG-fwWN4GfKNw==
Age: 2343
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6303
Expires: Tue, 27 Sep 2022 05:39:36 GMT
Date: Tue, 27 Sep 2022 03:54:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Mon, 26 Sep 2022 09:17:07 GMT
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7WpaMxnkOsKWbX2LB2zCx8usMBN-ZihhdTOXb-WbUbCvPj8XORgdcQ==
age: 67047
X-Firefox-Spdy: h2
narimanedu.ir/
185.116.163.16301 Moved Permanently 145 B IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash b23b2dedf7b9a4adbadbe7cc4b9e308a
dd5f40d5c4ff6b794c938dca342771de8e6b5f14
0eed7613d60534ed5840fa34cff39cfc6591795e2450add1f482a03f520fdecd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://narimanedu.ir/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Tue, 27 Sep 2022 03:54:29 GMT
Content-Length: 145
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 03:54:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 03:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 03:36:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aYGgpRG56q-d-1UJ6FhBclUpC5NigcV-SPfIb37phnmf2nUtC0KbTg==
Age: 2628
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3c83a817c88e9d54b349a7a34b71bc
9aa3d72e6c9c2982a54aa7b8e875a5dd34617813
6bbeb925e34f07e16673df78de17ec64169163775e8261322c87a59980b8bf57
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BBEB925E34F07E16673DF78DE17EC64169163775E8261322C87A59980B8BF57"
Last-Modified: Sun, 25 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 27 Sep 2022 09:54:34 GMT
Date: Tue, 27 Sep 2022 03:54:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 03:54:34 GMT
Last-Modified: Tue, 27 Sep 2022 02:35:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.163.196.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MUdqogI9jIQPoJA+bPVC8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yP51leDaoFSYydt96mJkMxqWyM4=
narimanedu.ir/
185.116.163.16200 OK 49 kB IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (422), with CRLF line terminators
Hash 29af150b99816281ae6e0260f9d93e25
30d0fa8c23449b501f302a7eba9514d9b74f2b53
3cfc8c2736678f0111c8a8116a3c107f8bd09465d6bb2fb80711098343cf9eeb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 48592
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 03:54:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 03:54:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
narimanedu.ir/Content/assets_main/css/font-awesome.css
185.116.163.16200 OK 42 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/font-awesome.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type troff or preprocessor input, ASCII text, with very long lines (374), with CRLF line terminators
Hash b107af09afb89761f6f71e997a454c57
48b721029c9bc1b469a8486e1c8606ca0dbaad7a
10d45256fe4ddfd6842e3c621a60d11a7624f1fe1bba4f7d34828b8cfeeea3a7
GET /Content/assets_main/css/font-awesome.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "5187e970be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 41775
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/magnific-popup.min.css
185.116.163.16200 OK 6.2 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/magnific-popup.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (6108), with CRLF line terminators
Hash 5dcacda8c5590c77e734af39e4e3b6c4
0f722a3af6840afc2611abaebc656f01caf58fd8
f209fd4a138d2142d221cfd19bb80758732ab1b53f4111e650e8ffd00a0429f7
GET /Content/assets_main/css/magnific-popup.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "cc57ed70be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 6161
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/jquery.fancybox.min.css
185.116.163.16200 OK 14 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/jquery.fancybox.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type Unicode text, UTF-8 text, with very long lines (13705), with no line terminators
Hash eae93949d3c21e08afceb1277454b46c
dc2229a8dd9651f100866535239e2a376f753657
e6f78b2c57f2e5f20dffcfa3b755203576b86d99527d930c675fc1c25cdbc667
GET /Content/assets_main/css/jquery.fancybox.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "1e83eb70be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 13729
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/owl-carousel.min.css
185.116.163.16200 OK 6.1 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/owl-carousel.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with CRLF line terminators
Hash 9e7f947d2dd506c8f4c07d9df88c55ff
b1b3492b26ad285eeed7a17e8f882a583d777135
8a3acb0b790eb53c353f1ba70c23399afb9adb5c12a95e4b62019477b036859f
GET /Content/assets_main/css/owl-carousel.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "a1aaf470be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 6145
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/slicknav.min.css
185.116.163.16200 OK 2.5 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/slicknav.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with CRLF line terminators
Hash 4b5f934e191c6d844401e95ebaedbca4
093d1d04cf8d7c57730acce5a281b9f19357faea
fe0903403a9faab3564ebee3924b4bcfad047bc001eef2964c9a687cdf7dcc2d
GET /Content/assets_main/css/slicknav.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "dbab671be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 2525
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/reset.css
185.116.163.16200 OK 23 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/reset.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Hash e7e4a48c13a310e525ecde2b33c7a211
c44eb3f2e04b615d33645ec066c267ae48feaf8d
cd93b2793797fe628a3d9a9a686be7ff68a7fad1c3d59fd8a77957185371c566
GET /Content/assets_main/css/reset.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "b242f770be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 23228
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/responsive.css
185.116.163.16200 OK 15 kB URL HTTP/2 narimanedu.ir/Content/assets_main/css/responsive.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Hash 094a057be52b9b9ef51d2dc64dcc171f
3149002a44847c4a22e18136eb3646e8b181d661
6ccd624392a01b86c313a1fc9f65a4def6ae64296c4b966829712f9eaa314da4
GET /Content/assets_main/css/responsive.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "ee90f770be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 14931
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/logo.png
185.116.163.16200 OK 6.3 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/logo.png
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type PNG image data, 74 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 725c13595e2743ceae9370a8f9359d7d
9402ca432d9a433f9b2d1789f88608ddc5b42603
4805420c594a5dc539070fcbfd385c049b9a6dee47669f5880bba32af04e74cf
GET /Content/assets_main/img/logo.png HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 10 Jan 2022 12:30:15 GMT
accept-ranges: bytes
etag: "88cce7d11d6d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 6283
X-Firefox-Spdy: h2
narimanedu.ir/
185.116.163.16200 OK 49 kB IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (422), with CRLF line terminators
Hash 29af150b99816281ae6e0260f9d93e25
30d0fa8c23449b501f302a7eba9514d9b74f2b53
3cfc8c2736678f0111c8a8116a3c107f8bd09465d6bb2fb80711098343cf9eeb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 48592
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/why-choose.jpg
185.116.163.16200 OK 25 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/why-choose.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 400x400, components 3\012- data
Hash c8ddeee39488e2a0ebdb17bb55b25bc8
2443c6c69a7d147f33cdb8af5399c14f82bdbcba
d9a6229e47ce858d5f744475544f98e690c01d8147e7c7e95c76da608d385d08
GET /Content/assets_main/img/why-choose.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 10 Nov 2020 04:11:46 GMT
accept-ranges: bytes
etag: "ba47f09a17b7d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 25407
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/News/1553/1553.jpg
185.116.163.16200 OK 29 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/News/1553/1553.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 19x19, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 385x302, components 3\012- data
Hash db167e84b87027af009ab32cf6f06b2b
aaa1ec96fcf301b70590a10090075133edf81926
d6f0e1c45c4b4fd0c74f01e58ee3348ff238c688cc1add7e16d5c4f68d626081
GET /Content/assets_main/img/News/1553/1553.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sat, 17 Sep 2022 19:21:43 GMT
accept-ranges: bytes
etag: "49c866b8cacad81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 28595
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/News/1554/1554.jpg
185.116.163.16200 OK 66 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/News/1554/1554.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 30x30, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 608x477, components 3\012- data
Hash 920c50091d6554e88ebfda870799fe0c
940215264088cb6c8d05d8c114b7a8d3b733bfa8
e09f42e537d70b1bf45435a9b510bef906ee997d7c8b0c50935cec1a23e7f3f6
GET /Content/assets_main/img/News/1554/1554.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 19 Sep 2022 19:09:51 GMT
accept-ranges: bytes
etag: "8f2dd3645bccd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 66343
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/News/1552/1552.jpg
185.116.163.16200 OK 62 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/News/1552/1552.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 34x34, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 694x544, components 3\012- data
Hash bd5a2edc740fa79ed02234e626fbb6ca
50c2dce3bf6bef4d6b2672fba59a43150de65b30
26bc8b7cfa808edfe5759b4576fe4f934416c939f7200720f7659134c9efd5c6
GET /Content/assets_main/img/News/1552/1552.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 16 Sep 2022 16:03:29 GMT
accept-ranges: bytes
etag: "1f87c0dce5c9d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 61822
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/News/1550/1550.jpg
185.116.163.16200 OK 77 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/News/1550/1550.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 36x36, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 724x568, components 3\012- data
Hash dca5c60527d43e1eee9eb6e42128d205
bb0475df374baecc4360f1f38518b5852489326b
ea647e8186e1864c18b575f01384660c71c9e39e2850b46e8d2f6ad2ea18e96f
GET /Content/assets_main/img/News/1550/1550.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Wed, 14 Sep 2022 18:56:04 GMT
accept-ranges: bytes
etag: "f9ccbea36bc8d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 77425
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/News/1549/1549.jpg
185.116.163.16200 OK 79 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/News/1549/1549.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 42x42, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 853x669, components 3\012- data
Hash 295b1c4a99f9965d3523b59a7aa153ff
3da916375f67898d2a392e5846891d9ab02f551f
8e3bf166c702f65d1c1e741b2f04308e05d25f72f975bf60a79e528794e7d4aa
GET /Content/assets_main/img/News/1549/1549.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 12 Sep 2022 17:30:28 GMT
accept-ranges: bytes
etag: "83e2a759cdc6d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 79299
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/jquery-migrate-3.0.0.js
185.116.163.16200 OK 7.1 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/jquery-migrate-3.0.0.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (6986), with CRLF line terminators
Hash a20e0bee9b65243390f5005ff2ab527e
42a9e07bc8fe9f02efff550a4ab72f860d643d8c
10c7448ddd9978f8d8b69af80bafa56244fb6d2534fee9fb3a39fd2abc10eb25
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/jquery-migrate-3.0.0.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "3fcde74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 7107
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/popper.min.js
185.116.163.16200 OK 19 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/popper.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (19063), with CRLF line terminators
Hash bb4953b93faef9afba01d2d318a6a75e
5179cfea29e3b7bdfefa1d8acad464b2e35cbd6d
18b925d4c0d1c7b64fc21f5d517529ff2d77bd13115a27036f21f5c66abe75e3
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/popper.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "9cd6975be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 19264
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/modernizr.min.js
185.116.163.16200 OK 16 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/modernizr.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type HTML document, ASCII text, with very long lines (14856)
Hash 1e6f766e7566c6fe94ddfeb0ce65fa6f
71c7ef66a020adc5d7ed5f677ce8897722187c34
8377932efad380d8a36d6d74b85cb72dc957ceac2eb6b2460bf2d6d21ead3537
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/modernizr.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "32b3fe74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 15537
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/scrollup.js
185.116.163.16200 OK 2.1 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/scrollup.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type Unicode text, UTF-8 text, with very long lines (1872), with CRLF line terminators
Hash 8038f2f22de38ffd61d439dc216b2ef9
c2936fe0172ae14301bad76b0db493f1b117a046
2802e3e967f0bfcfa95cbfb937cfd8017e265f79b93474a02c7be724e22f0861
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/scrollup.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "032d75be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 2070
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/jquery-fancybox.min.js
185.116.163.16200 OK 52 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/jquery-fancybox.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type Unicode text, UTF-8 text, with very long lines (32007), with CRLF line terminators
Hash 69d20e54abb6970e1e38146c4fa0e1b6
b0f70df17e946abd0c5eb97e7aa7d9b4144a1bb5
9c2e016a7f1bb2545d7639acb30a1e9040c6d302a9b4e7eb7ebe295ee93dd016
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/jquery-fancybox.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "e680d574be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 52345
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/waypoints.min.js
185.116.163.16200 OK 17 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/waypoints.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with CRLF line terminators
Hash cd93b4a2d2cb8f771d5ea8d2a8f82a51
47ec7679b1c6ee9c2b0afd9d8047a5354fed6a13
413f57d1057adb0f9c13e5e720138b43989ffd7021c14c1eea834b56fad0336f
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/waypoints.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "66ed1a75be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 17390
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/jquery.counterup.min.js
185.116.163.16200 OK 1.1 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/jquery.counterup.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (917), with CRLF line terminators
Hash 336d654945e483505535427ac0cdce8c
0af34742b9be56eefb0b077015f5232f6ad24a80
e2b91f346d8ee29a1c48762380f46eb3554c5b5dc7ec0dd458b86568ea5951e9
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/jquery.counterup.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "c01ddf74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 1097
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/owl-carousel.min.js
185.116.163.16200 OK 55 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/owl-carousel.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (1559), with CRLF line terminators
Hash f22309c51d9233030e4f993201480c80
0f2e511a25a4daca71bbf6e77d068209ba8f15bf
8c5814b794ce38137c52a77364e4c52052777891e10276541feec196a270342a
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/owl-carousel.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "65c0175be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 54581
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/easing.js
185.116.163.16200 OK 2.3 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/easing.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (2280), with CRLF line terminators
Hash a90f1eb476549ed9504a0b8010b971a6
e3887febe5aeb0d3a8a9bdc2bc6b312ae0241d32
aeb7c94b5fca5b72693e43f54f6e9f52fed51f47b857a442b60fb752d057bc59
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/easing.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "31bcc74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 2322
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/theme-option.js
185.116.163.16200 OK 2.4 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/theme-option.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with CRLF line terminators
Hash f49a5c4debd58d625367afdd481f134f
8e713fc9f7c391e6c2cf53747e9634ac1c2be9c3
86287c94a8ce8fef5c55f722ee3b713ac6c65328d81da331c9cbedf98f297c9c
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/theme-option.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "a5ca1875be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 2420
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/magnific-popup.min.js
185.116.163.16200 OK 20 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/magnific-popup.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type ASCII text, with very long lines (20092), with CRLF line terminators
Hash 147e5fa9e801a3ef28516559c877ce7a
3304cf948dedc8525a893d962aa9e4e98a505e67
0bf00f74852e514cb976cade800ac9ea753b5f3694f830d7246a54a3c477ce08
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/magnific-popup.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:06 GMT
accept-ranges: bytes
etag: "71b7fc74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 20247
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/active.js
185.116.163.16200 OK 5.8 kB URL HTTP/2 narimanedu.ir/Content/assets_main/js/active.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Hash d1e4f14bde589a16f4cd40be6130ea45
31e613cda9e4cdda8407e5dfc42dece66daa0a21
4f9e5e3253cd7f6cf6167033be0e5b8d8ac9f0dc1bfd76627ba8b1bc9f0481b0
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/active.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "92dda974be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
content-length: 5809
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3684
Expires: Tue, 27 Sep 2022 04:56:00 GMT
Date: Tue, 27 Sep 2022 03:54:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3684
Expires: Tue, 27 Sep 2022 04:56:00 GMT
Date: Tue, 27 Sep 2022 03:54:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3684
Expires: Tue, 27 Sep 2022 04:56:00 GMT
Date: Tue, 27 Sep 2022 03:54:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe29cee89-5693-407a-b182-e52f8fe5734f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe29cee89-5693-407a-b182-e52f8fe5734f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f0a1508f459d7774c0d63ff682532c0
03edfe254fa4f5c88bf9c8868edd9cdf07bf5d0d
eebf3b550e7a675a2231e97575e8be57e8d1216126a711cdef73ccbc5dd1e773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe29cee89-5693-407a-b182-e52f8fe5734f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11885
x-amzn-requestid: a8f6d57a-8bd3-42b9-80ba-695c5baac04b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshLpHZPIAMFZiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328157d-4ef5eb306dde741502e46f24;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:08:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JSWNUGbYq_zNf2L2AwkLuPfnGUTsX6iqCB5ESRr3dX-0voDgtu4KnQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:59:27 GMT
age: 21309
etag: "03edfe254fa4f5c88bf9c8868edd9cdf07bf5d0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3140ec95f33c36599de95b25cdade940
932c74fa24b61ee1b1c672b6c19b1e736caab8d3
f7488246ca75fddc504812f4c5944a5a2494cdb14b6ef1db5fb28beca5cff194
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9737
x-amzn-requestid: aec3c3e9-42e5-4de5-8882-118002369ef8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreGJxoAMF-oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-527ccd70654c22891262279d;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ukn4d6yPeJJHN5trYK3xbhik2pX41zHki3nG5r6fCzQgm3vYw5lhAA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:43:16 GMT
age: 22280
etag: "932c74fa24b61ee1b1c672b6c19b1e736caab8d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5538bec-989b-434a-bf80-699456665fd7.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5538bec-989b-434a-bf80-699456665fd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62ece01d7e0036711832df5a25175b3b
c80d9ce02eeaa7b0166a696e811d2cffde4997d0
8a1968c18b44495571ff382a9cacfb7f98d3e1275d650e84cb310d635eae7e70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5538bec-989b-434a-bf80-699456665fd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6829
x-amzn-requestid: cc3229a7-7c7e-472b-b7a4-1216594c4068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yshb2FwhoAMF2EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632815e5-0964e463192712fb08a29ee7;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:10:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5cPZZOqAPyLdASSDpGDdne0bUt_SswKXMjufitPEjmp6tG5XtYz5Ag==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:05:59 GMT
age: 20917
etag: "c80d9ce02eeaa7b0166a696e811d2cffde4997d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 22309
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9bc23ab347b5f2e2ec15d69f41f0cf0
a92af0438aa2b6637c0f69dabd0be00b3a43caf8
4382f21ee6727d4b4d21bd7d16b1821a57d9fec6c78dbf7e74bfdfbde51ec206
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4327
x-amzn-requestid: 59493149-3c46-42c6-96aa-92c945fb4c40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlA1HzioAMFzxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9e-5bd13d5719a119a25650f405;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nZuilN7CTsQ_XYx39le70nZKRzVBDyygmYdaHVmBnpi8teTUB1Faxw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 21918
etag: "a92af0438aa2b6637c0f69dabd0be00b3a43caf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/slider-image/slider-image5.jpg
185.116.163.16200 OK 114 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/slider-image/slider-image5.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=766, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1728], progressive, precision 8, 1728x766, components 3\012- data
Size 114 kB (114390 bytes)
Hash df2b67a792dac711aefcdc2e7363a911
3365e84333511039fa8eb52bfd509714e3ffd231
3aaed549a13d878c21eb0cfb5035004b03029267b6696455ee9bbd330e5ddd91
GET /Content/assets_main/img/slider-image/slider-image5.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 25 Jul 2022 17:40:01 GMT
accept-ranges: bytes
etag: "6f8528914da0d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 114390
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/slider-image/slider-image3.jpg
185.116.163.16200 OK 137 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/slider-image/slider-image3.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=766, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1728], progressive, precision 8, 1728x766, components 3\012- data
Size 137 kB (136574 bytes)
Hash 47ac997b3892d446f87f90cfd7a8f6f7
bb68538289f155a6737dc21355f73cb5d08a0675
36b6e94c4e8e60db959fc13ae8919fe298b5f83d4023ac930f2280c0ade5374d
GET /Content/assets_main/img/slider-image/slider-image3.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 25 Jul 2022 16:26:34 GMT
accept-ranges: bytes
etag: "485e234e43a0d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 136574
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/map.png
185.116.163.16200 OK 11 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/map.png
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type PNG image data, 946 x 388, 8-bit/color RGBA, non-interlaced\012- data
Hash 8dbf4412b3671edfd5e5b82bc3288fd1
cd98f38c1370adbf965275cf818ff1ac2c8403af
14d6274f8b2fe9f0ddafe1de420584c90005f740560c4785c5d76687996064fd
GET /Content/assets_main/img/map.png HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 07 May 2020 13:32:28 GMT
accept-ranges: bytes
etag: "0be8df37324d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 11278
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/slider-image/slider-image4.jpg
185.116.163.16200 OK 134 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/slider-image/slider-image4.jpg
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=766, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1728], baseline, precision 8, 1728x766, components 3\012- data
Size 134 kB (134207 bytes)
Hash 49f1545e647e3a9d0b4b2750c7db6d0c
8f111e980cdc8c49b4fe79f076c13fbf40e6296a
38ba58576b56843c4fad246ece1ccb625f540cb6ba41abe598382afa179c4c58
GET /Content/assets_main/img/slider-image/slider-image4.jpg HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 26 Aug 2022 06:20:55 GMT
accept-ranges: bytes
etag: "41b3c9ff13b9d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 134207
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/fonts/fontawesome-webfont.woff2?v=4.7.0
185.116.163.16200 OK 77 kB URL HTTP/2 narimanedu.ir/Content/assets_main/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /Content/assets_main/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://narimanedu.ir/Content/assets_main/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff2
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "f8244671be4d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 77160
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/fonts/IRANSans(FaNum)_Bold.ttf
185.116.163.16200 OK 96 kB URL HTTP/2 narimanedu.ir/Content/assets_main/fonts/IRANSans(FaNum)_Bold.ttf
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type TrueType Font data, digitally signed, 15 tables, 1st "DSIG", 30 names, Macintosh, Copyright (c) 2015 by www.fontiran.com (Moslem Ebrahimi). All rights reserved.IRANSans(FaNum) Bo\012- data
Hash e1f0ce3483d8fa5a0e1054e2ca70e8d6
e8593dee709f31dea789a79472e350d4e7ed8429
1f4cb878b3db3a10614590138080fdbd612617a12103ef5e05a5ab7f009520e6
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/fonts/IRANSans(FaNum)_Bold.ttf HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/Content/assets_main/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "f2515f71be4d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 95588
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/img/favicon.png
185.116.163.16200 OK 17 kB URL HTTP/2 narimanedu.ir/Content/assets_main/img/favicon.png
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
File type PNG image data, 32 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d7590caa369b5fabd73dd241cbdad731
468d5115a38673af9402c1d9539d6511fe640adb
3efa04048a5366e8e5bf3ed2a22a73a2305752b66a647cb9463781dca60e7e26
GET /Content/assets_main/img/favicon.png HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 11 Jan 2022 15:42:52 GMT
accept-ranges: bytes
etag: "711ac5e417d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:32 GMT
content-length: 17090
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/animate.min.css
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/css/animate.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
GET /Content/assets_main/css/animate.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "c6cd970be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/bootstrap.min.css
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/css/bootstrap.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
GET /Content/assets_main/css/bootstrap.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "b59ddf70be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/css/cubeportfolio.min.css
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/css/cubeportfolio.min.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
GET /Content/assets_main/css/cubeportfolio.min.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "d9dde570be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/bootstrap.min.js
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/js/bootstrap.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/bootstrap.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "d6eaac74be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Poppins:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 03:54:35 GMT
date: Tue, 27 Sep 2022 03:54:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/style.css
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/style.css
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
GET /Content/assets_main/style.css HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:34:59 GMT
accept-ranges: bytes
etag: "9f8ed370be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/jquery.min.js
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/js/jquery.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/jquery.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "285e274be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2
narimanedu.ir/Content/assets_main/js/cubeportfolio.min.js
185.116.163.16200 OK 0 B URL HTTP/2 narimanedu.ir/Content/assets_main/js/cubeportfolio.min.js
IP 185.116.163.16:0
ASN #61173 Green Web Samaneh Novin Co Ltd
Analyzer Verdict Alert fortinet Phishing
GET /Content/assets_main/js/cubeportfolio.min.js HTTP/1.1
Host: narimanedu.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://narimanedu.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sat, 08 Jan 2022 18:35:05 GMT
accept-ranges: bytes
etag: "3e20c274be4d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Tue, 27 Sep 2022 03:54:31 GMT
X-Firefox-Spdy: h2