uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
144.76.120.25301 Moved Permanently 169 B URL HTTP/1.1 uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c5d032bb218722c5d2420a7b8cf679e2
bac41d77b6ee9bad9b4c1bc35c59c1f8c4447510
e747b55d811ed8e20cf82a6e8084b4affbb475bb279a7bcbbcc36e4fb431477a
GET /f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe HTTP/1.1
Host: uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:53 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2581
Expires: Sun, 26 Mar 2023 13:54:54 GMT
Date: Sun, 26 Mar 2023 13:11:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2869
Expires: Sun, 26 Mar 2023 13:59:42 GMT
Date: Sun, 26 Mar 2023 13:11:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14064
Expires: Sun, 26 Mar 2023 17:06:17 GMT
Date: Sun, 26 Mar 2023 13:11:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 26 Mar 2023 12:15:35 GMT
content-type: application/json
age: 3378
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8pWm1Rp2yS9yiQP+ZPnFYNIA/SweGc26Ci5mIARx7qFA/c/dMkIJkgQ24jTpe6AW6qHHQftD+lc=
x-amz-request-id: G2Q76V5Z06R7PCE4
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 26 Mar 2023 12:55:19 GMT
age: 994
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2b05767ce14950fe9c963a4eb4a35cb5
8c957fede2e4e9e20a7ba4c4764892a665c73c39
93972afc4298746276a45d3e2f682b52f2d910f19d7a0b627dbb8dde62693918
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Mar 2023 13:11:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:37:27 GMT
Expires: Thu, 30 Mar 2023 04:37:26 GMT
Etag: "8c957fede2e4e9e20a7ba4c4764892a665c73c39"
Cache-Control: max-age=399756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adfa45e9f500b4d-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 26 Mar 2023 13:11:53 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
144.76.120.25301 Moved Permanently 362 B URL HTTP/1.1 uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 23085e7926e6dcdd91774cac34a2f9f6
3950966be2ea63c8328f18e2976221632f616240
e7346e504d652f93a116ab7ec958565462a75b6823625da9e01da9d02b25edbe
GET /f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe HTTP/1.1
Host: uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 362
Connection: keep-alive
Location: https://www.uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
www.uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
144.76.120.25301 Moved Permanently 8.3 kB URL HTTP/1.1 www.uplooder.net/f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5510)
Hash cd62a4da201fd7d1687b7ee06c37182b
cf66f04aa34157dcd68edbd34819615660a8fda6
853abb80bda70ef73b2d1ac3dc3b62c417db8e8dc47f8b53f93db37f53cc40cd
GET /f/tl/6/47e49fe51cff78c75fe83d7b78cdde7c/tminer.exe HTTP/1.1
Host: www.uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 26 Mar 2023 12:17:24 GMT
age: 3269
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
144.76.120.25200 OK 4.4 kB URL HTTP/1.1 www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- assembler source, Unicode text, UTF-8 text, with very long lines (334)
Hash 90688a6b4c6f6b1aafd65e4ec44dde8b
b3ff8d5e109171376e6a94f5dea3ec6c51e0b585
3b4827a8aecd1d126c45e978deebca0fe5f6917a7e5d0889198024fa6c5be6f1
GET /files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html HTTP/1.1
Host: www.uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 4385
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 717ebcc65cb1390c2509851bac7b5878
1e04e3058329f3809bc01022d441172dcacc1aaa
3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6056
Expires: Sun, 26 Mar 2023 14:52:50 GMT
Date: Sun, 26 Mar 2023 13:11:54 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 246261b53af433ee1403e18666d27c80
b90a668ae54cac874cb1b70ba3225d3f1ccdbe23
9faf66424ef5f10f160860a1292f515aac42e66e3054b889c665cde09fcfa938
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=861
Date: Sun, 26 Mar 2023 13:11:54 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 5c317674be341c0576441533194a3a9b
4b8abf04c3b6b3e094c11b2330b05609cc8c9346
dff1ef5c1c45f82e8228cc9f966cd8837ea975f1308677cdb1a1e013d782de13
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=878
Date: Sun, 26 Mar 2023 13:11:54 GMT
Connection: keep-alive
X-N: S
push.services.mozilla.com/
52.35.228.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.228.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dLdT1KxXCIqhdyi8j5LCBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b7wJrO1X/17giiUbUZ16W+CoOxQ=
www.uplooder.net/font/DroidNaskh-Regular.woff
144.76.120.25200 OK 103 kB URL HTTP/1.1 www.uplooder.net/font/DroidNaskh-Regular.woff
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 103360, version 1.1\012- data
Size 103 kB (103360 bytes)
Hash 6b911caefe9f3db97928a48f8605b52d
bb71277348ece012a0e4d4448c031d257d74634b
3c4f16d151e7e79620a10e94feded6f0df0e730e94526601da71f6f62d01a755
GET /font/DroidNaskh-Regular.woff HTTP/1.1
Host: www.uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:54 GMT
Content-Type: font/woff
Content-Length: 103360
Connection: keep-alive
Last-Modified: Sat, 18 Jun 2016 01:10:39 GMT
ETag: "193c0-5358323abc1c0"
Accept-Ranges: bytes
www.uplooder.net/images/uplooder-logo-download.png
144.76.120.25200 OK 18 kB URL HTTP/1.1 www.uplooder.net/images/uplooder-logo-download.png
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bc41ac23d6b3e54ec7d053c9b771be1
da6b0c138fa6e8813e279caf2001619e608531e3
e1f277fcd165a06c4a733d5a8e3b028a1e81b512dd40bd897a5171e040c729db
GET /images/uplooder-logo-download.png HTTP/1.1
Host: www.uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:54 GMT
Content-Type: image/png
Content-Length: 18542
Connection: keep-alive
Last-Modified: Sat, 18 Jun 2016 01:12:03 GMT
ETag: "486e-5358328ad7ec0"
Accept-Ranges: bytes
www.uplooder.net/images/dl.ico
144.76.120.25200 OK 4.3 kB URL HTTP/1.1 www.uplooder.net/images/dl.ico
IP 144.76.120.25:0
ASN #24940 Hetzner Online GmbH
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 140b9b4c1e61f16cde3b5f2223810c89
6d6c585fe69d02935c1e4450f48c0c18cca353e2
3e8ddcf590d6150396260c37e1f7453447f2d71c4fc7fa5257b192320172e8ee
GET /images/dl.ico HTTP/1.1
Host: www.uplooder.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/files/47e49fe51cff78c75fe83d7b78cdde7c/notfalse.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 26 Mar 2023 13:11:54 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Sat, 18 Jun 2016 01:11:46 GMT
ETag: "10be-5358327aa1880"
Accept-Ranges: bytes
plus.sabavision.com/site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://www.uplooder.net/
Origin: https://www.uplooder.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:54 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,HEAD
access-control-allow-origin: https://www.uplooder.net
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.271
x-cache: O-
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/csync/inner/3P/yektanet/pixel
185.147.178.24200 OK 597 B URL HTTP/2 plus.sabavision.com/csync/inner/3P/yektanet/pixel
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Hash 91c97a3dd65bdf0bcd2fa45d5b1c1b86
68cf099726f6e1cc8f3b31ff481a1d2479fc682d
af64a6f3ffc388b91cd70eae25893f7bea7e8e7d84d2c2b41c378cfbe13651ff
GET /csync/inner/3P/yektanet/pixel HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:54 GMT
content-type: image/jpeg
content-length: 597
cache-control: no-cache
cache-directive: no-cache
expires: 0
pragma: no-cache
pragma-directive: no-cache
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.280
x-cache: O-BYPASS
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/dmp/dox/iframe.html
185.147.178.24200 OK 864 B URL HTTP/2 plus.sabavision.com/dmp/dox/iframe.html
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash acd0953c376afd7879f76abdf093713d
eceeaa58b76d8f6c7cbe00621cfffa0537ed1bb2
bcc0dfd33ff2f333b43cfbe204ced35eece7b4fa1ebcb44c6931bf3632cede50
GET /dmp/dox/iframe.html HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:54 GMT
content-type: text/html
last-modified: Tue, 23 Aug 2022 07:01:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"63047b30-7bd"
expires: Sun, 26 Mar 2023 16:11:54 GMT
cache-control: max-age=10800
content-encoding: gzip
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.296
x-cache: O-BYPASS
x-upstream: 0
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 0c23a47a6e4fc2aa8eb157cf99c1fc61
0776e608933dd4f87e8a121b99f82c91cecac45d
0c01f4eee1f7b0801ff6869f8f6901d1a68710dc1281ea76fd146df06eff705d
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=862
Date: Sun, 26 Mar 2023 13:11:55 GMT
Connection: keep-alive
X-N: S
static.cdn.asset.filimo.com/vision-file/fa45a03b-b246-4d3f-b79a-e3e711045ada-banner_ad.jpg
185.147.178.16200 OK 44 kB URL HTTP/2 static.cdn.asset.filimo.com/vision-file/fa45a03b-b246-4d3f-b79a-e3e711045ada-banner_ad.jpg
IP 185.147.178.16:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 728x90, components 3\012- data
Hash ac2f2047d41f74a97afb637bfa2db572
55b8f248fe6ab23eb87ea048aa6c74885762574f
f0fd745039461c37fb34dcf93dc3939662c5e57e08536c6ef58ad3ee42518658
GET /vision-file/fa45a03b-b246-4d3f-b79a-e3e711045ada-banner_ad.jpg HTTP/1.1
Host: static.cdn.asset.filimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:55 GMT
content-type: image/jpeg
content-length: 44432
cache-control: max-age=2592000
expires: Tue, 25 Apr 2023 13:11:55 GMT
last-modified: Wed, 08 Mar 2023 15:00:50 GMT
access-control-allow-credentials: true
server: nginx
x-cache: O-HIT
x-upstream: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2161
Expires: Sun, 26 Mar 2023 13:47:56 GMT
Date: Sun, 26 Mar 2023 13:11:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2161
Expires: Sun, 26 Mar 2023 13:47:56 GMT
Date: Sun, 26 Mar 2023 13:11:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2161
Expires: Sun, 26 Mar 2023 13:47:56 GMT
Date: Sun, 26 Mar 2023 13:11:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2161
Expires: Sun, 26 Mar 2023 13:47:56 GMT
Date: Sun, 26 Mar 2023 13:11:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Olik0rOopNpu03_GQWvvGeuS0D579nAdtuk9RGWUQSopMavKHDn1cQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:53:15 GMT
age: 55120
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: CgU9j02Bnw0UdIwQ3sRCDvJoPitHIAUTRDhLH_PMXYlAPoAwSbv6Iw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 06:24:41 GMT
age: 24434
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:40:28 GMT
age: 55887
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e19767dbe464134f0ab81b0eadb98fa
007758853c1d1605db69131eb50ff433a4da5f8c
63f1f08cd038e7b6d3316bbdc59a598b01c3bedd1ef04ba1986152e239fa128c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12991
x-amzn-requestid: 16bc16bf-b87e-4ed7-a559-3e900595928e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smH_kIAMF5oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-21e7ce61788315866c752f28;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 0XTrJJ-Z6-GCn2VJUUt8tqhvG4E8b_TYTBiDBu1Qr35g7THOqp5Zkg==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:13 GMT
age: 55242
etag: "007758853c1d1605db69131eb50ff433a4da5f8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1782dd235045315ec9b8d127a4a61dfd
4242d3ff0a1ca9f76166585532a815c4b1f15175
c404e097daf50098edf2d46b1d314fb2ab95f1d655293f0a9e123867fc11a982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7778
x-amzn-requestid: 5794fe13-ddf8-4a4d-86e3-53da34af0c98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2QAF91IAMFoNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6a66-1f6247aa2651e9a35dbccec7;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:40:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ym5ku830id9iQl1QzIRpIo1jrMq7KILCx91VgOKApAkkDpEdLi_lug==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:12:28 GMT
age: 53967
etag: "4242d3ff0a1ca9f76166585532a815c4b1f15175"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe0a145a-86f7-4b1e-b358-642fa12ca205.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe0a145a-86f7-4b1e-b358-642fa12ca205.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10516a123390334c320d8773ea821dc9
2fc3d5240bebf7f3bd842cc6492529751340cd50
1c37df0c0a20975f417624558d414b2d983cb94e1ad3ba1f3925b4dfdb380cba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe0a145a-86f7-4b1e-b358-642fa12ca205.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3448
x-amzn-requestid: 3e8be4b7-166b-4f0b-9d45-ec9d65900fd2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1soGkMIAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-7bbb03ed537b36ac30a1eb69;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ySslg2duOeZw2nfTf01WAyyX3PHQ0goMWdXgTjaiyDOxk0rLvv_9tQ==
via: 1.1 6af36c6902a46beec743522a9bbb3ab0.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:20 GMT
age: 55235
etag: "2fc3d5240bebf7f3bd842cc6492529751340cd50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
plus.sabavision.com/view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24
185.147.178.24204 No Content 0 B URL HTTP/2 plus.sabavision.com/view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-screen-height,x-screen-width
Referer: https://www.uplooder.net/
Origin: https://www.uplooder.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 26 Mar 2023 13:11:57 GMT
content-type: application/octet-stream
access-control-allow-credentials: true
access-control-allow-headers: Origin,Content-Length,Content-Type,X-Screen-Height,X-Screen-Width,Authorization
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,HEAD
access-control-allow-origin: https://www.uplooder.net
access-control-max-age: 43200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
server: nginx
x-upstream-ct: 0.001
x-upstream-ht: 0.281
x-cache: O-
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24
185.147.178.24200 OK 2 B URL HTTP/2 plus.sabavision.com/view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /view/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/6472-Z824/sabavision/88383-A870/b2a47c76-44c6-4980-bcad-223e469748e8?pageType=ALL&domain=uplooder.net&sspID=plus.sabavision.com&pid=28748-P654&cid=23e134b5-c195-438e-b3d3-3d3c59e7f71c&sid=43f476fa-714c-4b52-87b7-ca600810cc3f&resolution=1280x1024&programType=banner&adType=banner&sv=MEzd53XQ2oaY_axRWD3cvKGLHM7pB9udH6vVsUmmtxMwsvZaA9Rlf3JSDj4pJImLYwSadZADKBASQdWoQwTzBQ&cats=IAB9&cats=IAB19&cats=IAB22&cats=IAB1&cats=IAB24&adCats=IAB9&adCats=IAB19&adCats=IAB22&adCats=IAB1&adCats=IAB24 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-screen-width: 1280
x-screen-height: 1024
Authorization: c7e036aa-cbd7-11ed-9247-0050569747a6
Origin: https://www.uplooder.net
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:57 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://www.uplooder.net
access-control-expose-headers: Authorization
vary: Origin
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.258
x-cache: O-BYPASS
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/dox/dox.min.css
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/dox/dox.min.css
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /dox/dox.min.css HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:54 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 12:01:13 GMT
vary: Accept-Encoding
etag: W/"6357d009-1449"
expires: Tue, 25 Apr 2023 13:11:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-cache: O-HIT
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/dox/dox.min.js
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/dox/dox.min.js
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /dox/dox.min.js HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:54 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 12:01:16 GMT
vary: Accept-Encoding
etag: W/"6357d00c-de79"
expires: Tue, 25 Apr 2023 13:11:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
server: nginx
x-cache: O-HIT
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /site/89b1dbd4-5127-4f50-bbfd-03bea05fa48b/ALL?zones=6475-Z689&zones=6472-Z824&zones=6476-Z179&zones=6473-Z610&zones=6474-Z815&zones=6478-Z777 HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization:
x-screen-width: 1280
x-screen-height: 1024
Origin: https://www.uplooder.net
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:55 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.uplooder.net
access-control-expose-headers: Authorization
authorization: 43f476fa-714c-4b52-87b7-ca600810cc3f
set-cookie: device-resolution=1280x1024; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
sid=43f476fa-714c-4b52-87b7-ca600810cc3f; Path=/; Domain=plus.sabavision.com; Max-Age=5000000; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding, Origin
content-encoding: gzip
server: nginx
x-upstream-ct: 0.000
x-upstream-ht: 0.325
x-cache: O-BYPASS
x-upstream: 0
X-Firefox-Spdy: h2
plus.sabavision.com/public/images/ad_logo.svg
185.147.178.24200 OK 0 B URL HTTP/2 plus.sabavision.com/public/images/ad_logo.svg
IP 185.147.178.24:0
ASN #44932 Fannavaran-e Idea Pardaz-e Saba PJSC
GET /public/images/ad_logo.svg HTTP/1.1
Host: plus.sabavision.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uplooder.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Mar 2023 13:11:55 GMT
content-type: image/svg+xml
last-modified: Sat, 13 Apr 2019 10:32:34 GMT
vary: Accept-Encoding
etag: W/"5cb1bac2-1168"
access-control-allow-origin: *
content-encoding: gzip
server: nginx
expires: Tue, 25 Apr 2023 13:11:55 GMT
cache-control: max-age=2592000
x-cache: O-HIT
x-upstream: 0
X-Firefox-Spdy: h2