www.footballshahr.ir/wp-content/plugins/wellsfargo.com/
213.108.240.16301 Moved Permanently 707 B URL User Request GET HTTP/2 www.footballshahr.ir/wp-content/plugins/wellsfargo.com/
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wellsfargo.com/ HTTP/1.1
Host: www.footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:07 GMT
location: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
vary: User-Agent
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
footballshahr.ir/wp-content/plugins/wellsfargo.com/
213.108.240.16301 Moved Permanently 707 B URL User Request GET HTTP/1.1 footballshahr.ir/wp-content/plugins/wellsfargo.com/
IP 213.108.240.16:80
ASN #200296 Hamed Kavosh Vira Co. (PJS)
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wellsfargo.com/ HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:07 GMT
location: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
vary: User-Agent
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css
213.108.240.16200 OK 12 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (54926)
Hash e4c542a7f6bf6f74fdd8cdf6e8096396
3a0571a695a35f238026b9398386dc99d9a0c56d
eeb17a45a48aca1d7adbcf04de155dcd0b47cb36ad036310446bb471fea9aaa3
GET /theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11588
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/css/font-electro.css
213.108.240.16200 OK 645 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/css/font-electro.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2508), with no line terminators
Hash 75dbbd01c65e3e69e513f9bdc6214057
327507f2299a0db98071ff3478aaeafe3ca5245b
16f50a69c13e4d274c8aad996dca3fe68a49843e99d648b217c52ed5779427be
GET /theme_asset/electro/assets/css/font-electro.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:53:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 645
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css
213.108.240.16200 OK 497 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1913), with no line terminators
Hash 5a9203a1cadb558fba830c22de439ab5
6c563aad9f054009f68e1b657a77526a68e0174e
79fcb0d0f806d23f37ebfca54de3f0975ed71a7447abf2c5f6ed155f8d0fee9b
GET /theme_asset/electro/assets/vendor/ion-rangeslider/css/ion.rangeSlider.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 497
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/animate.css/animate.min.css
213.108.240.16200 OK 4.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/animate.css/animate.min.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (57790)
Hash c78e4003414fbf2814dc097a5e1c784a
de9d5645ef10c5362ec1f893bb83995594eadf99
1ed082521f47921ffff14d4ec1c6c3f1ea55114741bee23cc23d4ab6a3213642
GET /theme_asset/electro/assets/vendor/animate.css/animate.min.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4019
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css
213.108.240.16200 OK 522 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2941), with no line terminators
Hash a70c1f3910bdba853b7e5114f8188c63
17322df10322f236e5abbcc4cbc29e7a0a0f2d2a
40cb71a77d81fea8546fdb97f0296b9f912a6a92b621c815364d43dfc83f8c18
GET /theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:56:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 522
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css
213.108.240.16200 OK 3.8 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (43174), with no line terminators
Hash 22c75bfb6ac1cc51223ff8a03ba5129d
b72711c1d8628b60e398edaa8e3bfaed0bdecc78
22e5024d754deff6df56c038b8363e662f670dac54bb51f987277fc6503d8d12
GET /theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 10:59:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3803
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css
213.108.240.16200 OK 3.2 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Unicode text, UTF-8 text, with very long lines (14095), with no line terminators
Hash 7427de3dcf5d4f9f7da5fd0460a14204
c46cd11718a40999a085d677a0fc753c8e0885e1
88bdc81e5b40517d31c39b50d5bcd9370c2f421699a9d2340912e0567765ba3a
GET /theme_asset/electro/assets/vendor/fancybox/jquery.fancybox.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:00:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3156
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css
213.108.240.16200 OK 395 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1327), with no line terminators
Hash da4e146913da6966d85a6b8686886edb
03a28dac9dfc6c33e6175c9c185911c56525d31b
fb3ed351cd5c0f1f30f88778ee1f9b056598e6d25ac4fdcab1eebcd8be521cd9
GET /theme_asset/electro/assets/vendor/slick-carousel/slick/slick.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:01:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 395
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css
213.108.240.16200 OK 2.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (10879), with CRLF line terminators
Hash 2d868f5f03695620ad1c172dfb4ebbdc
ca09c1cfac0e43f60db2f0845768caa5838cecab
69279bee49c5f3502f7a3f07358da1562cc0a10d57e8a56cfc0f8977d367c99f
GET /theme_asset/electro/assets/vendor/bootstrap-select/dist/css/bootstrap-select.min2.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 09:33:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2004
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/css/theme.css
213.108.240.16200 OK 72 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/css/theme.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (65307)
Hash 6eebd71eddd246a9a7106326bcc22d2c
e2953ee4c9215dea4a3aee5444fe2a86bf92b1e4
f35d589b1345d45b69dd3d8f181306d54315a5b4dfddb0c5b68128a0800d802c
GET /theme_asset/electro/assets/css/theme.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:05:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 71852
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/css/all.css?ver=85335
213.108.240.16200 OK 4.5 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/css/all.css?ver=85335
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash c349c3371e3d2514a8d4888765c60442
d9510ae72c11c96bcbd71370fe46cd3b59cfd0c2
c51f06fe7b9458742e427209677ae6200e8cc1f5c479e6c24a246116f3e3d31c
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/css/all.css?ver=85335 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 24 Dec 2022 10:34:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4544
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/css/rtl.css?ver=314359
213.108.240.16200 OK 1.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/css/rtl.css?ver=314359
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type assembler source, ASCII text, with very long lines (3293), with no line terminators
Hash 99b4f643d0bbfea6926de19f67261fb0
0908781f7063832d3dfd5129d1771ba549659c6f
13d662a7efaa298252bb441559a69411fd675ff1875694c4b0ea115cc52366c5
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/css/rtl.css?ver=314359 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 11:06:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1017
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.css?ver=2
213.108.240.16200 OK 3.7 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.css?ver=2
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (20452)
Hash 9f43788738ac9b6e6d5c0acb9439d0f1
0b6cfd88d1aca43ce7529c2bb1186917e18fcb40
93a0fe4cf50374b90492f05d8d4a897f8aed0e8ff392bb276e81784360209218
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/zoom.css?ver=2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3698
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/site/color?ver=692523
213.108.240.16200 OK 925 B URL GET HTTP/3 footballshahr.ir/site/color?ver=692523
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type assembler source, ASCII text
Hash bafcbd822b1f9d1de518ad64325b9713
7837b41cc890191fbaea7ebed444269de1022a46
39bd78900efff3d9c060b12f9fbbf17684be6289a5e4c6e676aab18d3086ff5f
Analyzer Verdict Alert fortinet Malware
GET /site/color?ver=692523 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/css;charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 925
content-encoding: gzip
date: Fri, 26 May 2023 04:11:08 GMT
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css
213.108.240.16200 OK 3.6 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (21527), with no line terminators
Hash c4fe4c39847373118ed654764a0d16dc
634e5b00aa18c50e4b9d0c015fddacd638d1943d
e23dcd159d8f6bb9a6d6ce481bbf4223ac00dffc19ef0a22ea937a6720595eb9
GET /theme_asset/electro/assets/js/zoom/lgjs/css/lightgallery.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Thu, 10 Feb 2022 16:08:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3599
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/backend/web/rest_library/toast/jquery.toast.css
213.108.240.16200 OK 2.5 kB URL GET HTTP/3 footballshahr.ir/backend/web/rest_library/toast/jquery.toast.css
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (893)
Hash ec478074f1e313acda29ba97c1c5f459
857f12ece13fb8cfb40910eee51e5a83a41d80d1
372190448cecd04378f02e414079e27d0001d4af0e89161d742d8bd72b42eabb
GET /backend/web/rest_library/toast/jquery.toast.css HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 06:37:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2457
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js
213.108.240.16200 OK 3.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (8419), with no line terminators
Hash 5020df2f97199efea38e67af551a7dd7
22277e05b36814a3f801af3217e0cdd0e5a9bf4d
a8e4ad453744734ee74bec4a888c481fa5fc84893a05d3a987096dc036290735
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/jquery-migrate/dist/jquery-migrate.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:10:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2953
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js
213.108.240.16200 OK 7.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (20363)
Hash 84910d80281fc6b554f4ae2d14612494
af6f046adaab7e1501adee034fb7c366b8c059fc
106b3d4f5c4c1ddbccd6078cf233e9a28f04675575551b26709cfc381c8434b0
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/popper.js/dist/umd/popper.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7007
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js
213.108.240.16200 OK 15 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (57791)
Hash e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/bootstrap/bootstrap.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14764
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
213.108.240.16200 OK 864 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2088), with no line terminators
Hash 2c932d2e89a7b5fc8734d52ffaa7ceeb
7fc8a238eb264a2a431c73222ceaef515449d4f0
0be473eaa663335384c702e4e23bf3f133cebce946456096437c4dc0d70e3f27
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/appear.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:11:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 864
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js
213.108.240.16200 OK 2.2 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/jquery.countdown.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (4136)
Hash 5d3ff3c3fbaa67cc639501f44eeb07be
bd66e4cd58de09c198e7abc77fa4c883955d189e
2249399b2268c260d0698542503d16afebc80e437c846239f12196744ebbd40f
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/jquery.countdown.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2238
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js
213.108.240.16200 OK 2.5 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (11343), with no line terminators
Hash 966e8e43ca70f8d93ac6cfacd8938d34
88c1b3a0f6ba82aadc1e769a797d54f88dc4bb4b
cad4bdd0c1cd9fdfe00c8fd8cf9d6681734c4e6b60153c6aa1b438c9a057c2a1
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/hs-megamenu/src/hs.megamenu.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:15:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2511
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js
213.108.240.16200 OK 2.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (4335)
Hash ca13b5502c9296d0931c85eab9ca11fd
924dc02731d9dfde3e1774448afd5b508a4a4dd6
0a306526fc6a2c25361cccc5ba74de9592c51c225daa00e81e2fea18959d4499
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/svg-injector/dist/svg-injector.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2022
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js
213.108.240.16200 OK 11 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (39884), with no line terminators
Hash 273eb3e98756c261fba6049f716c056b
1c84588d328b60c75b977fe5f4908ac52862d27e
f98e54ed7bf9bda32a9479cde705656b547db35e0d4a4c2a63dd190b44b63567
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11343
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js
213.108.240.16200 OK 7.3 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash 93c1dd8416ac2af1850652d5b620a142
6a76e4c7db479053350580469aa010febfdcacd0
17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/jquery-validation/dist/jquery.validate.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7260
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js
213.108.240.16200 OK 8.7 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (632)
Hash 564f698afdf84d959325ffb4fdd42b97
c5ae747a001c5b04821fb9e6c732653074787ae2
7b2ece6a3be35cccac5de58b6c08f49928afb409d2dff0e7372892f9cbd2b167
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/ion-rangeslider/js/ion.rangeSlider.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8725
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js
213.108.240.16200 OK 10 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (43006), with no line terminators
Hash 88530d2b47ba1d1f2a490b52a702d070
b90c2237c6c3a226ec97a1527bb6c2759896d4e3
a15ed5d5889f5c9b6ee63cabd3cf4871a285394c664f1107cbd29e61242c68eb
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/slick-carousel/slick/slick.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:31:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10152
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js
213.108.240.16200 OK 15 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (51959)
Hash ba9d5bbe072f5626909db4e31da3ba4d
44f87f163f71d0bac27876272fa98f615381fcf8
6763de73150d26e3296cd0154ff12dede3b5d39251c734c0ae4f8af4e437e4cc
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/bootstrap-select/dist/js/bootstrap-select.min2.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Fri, 18 Nov 2022 09:34:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 15031
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/hs.core.js
213.108.240.16200 OK 692 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/hs.core.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash 3742ce050ebfb55ba445d2ecfe2523c4
13eca3e12ad5edb7deba39ea3dd653c36794e156
eed8352c2d007c6195c5cd713973bf8f5d6f578fcb8a413680ee6c6773540bbc
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/hs.core.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:38:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 692
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js
213.108.240.16200 OK 1.2 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.countdown.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (5383), with no line terminators
Hash 9a4e8aa12dd5d1dd1bdb9989f81940da
a1e1aeaae89cfceef6ee1c5d81d53a8a7088a2a3
cb42790bef1bd75b9cea02d167f863a41354ef08ca717a5e61e271614de8985e
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.countdown.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:39:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1165
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js
213.108.240.16200 OK 3.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.header.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (23731), with no line terminators
Hash 2a75ec8d82702caae04ffff8017ce2dd
6128212b17689d00f174a2f6390faeae7c05cc82
1b88926d15f21ab7e44913e8cb0de6d34028de785379b818208f03de9ac9d60a
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.header.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:40:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2974
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js
213.108.240.16200 OK 380 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.hamburgers.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (791), with no line terminators
Hash 83fabd2c671de18c4101732d2088cd71
f376afb2ca881e9a7576d6b1accdf1622b6a3b4b
53db84f8c3742ea19382f0aa071c1f3c9d1760a1a9e0b4d990a464eeb20fc3c2
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.hamburgers.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:42:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 380
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js
213.108.240.16200 OK 2.1 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.unfold.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (8700), with no line terminators
Hash d047cfc79198fabf470f0c83fef9fe4b
b47dc5b5a7402e73bb2dea3c14c9bb68781012fa
e94efbb581e03d5dabcbdb2510aa547a995877931797212cdb2b125ccf6dfd19
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.unfold.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:45:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2149
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js
213.108.240.16200 OK 188 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.focus-state.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (403), with no line terminators
Hash bb3c1560631963393d8434e8e47afe2c
149922382a90119750935309d7445c81d215c3ab
716c26fbaa7b702b7f1af84d5e122bc174f09ab8bd346a56a2adbd222fa159a4
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.focus-state.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:47:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 188
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js
213.108.240.16200 OK 365 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (803), with no line terminators
Hash f2bffb7a90f27212657d5e24b827c943
9da163b6e7734b4dee9d25433fe7a98de1908863
53be627ad8b64da029ad666f1a344b998edac96a3b91eb398049efd842308268
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.malihu-scrollbar.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:50:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 365
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js
213.108.240.16200 OK 627 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.validation.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1781), with no line terminators
Hash a6b8c33a4c36033935bead3510c8efcd
d4b7ec1f2643ccafd5a04417d1739faba6ee9e59
8cd748c3ddcbfff8d819bbb507f14ecc9cf2f6c2b034050583ed391f1984246d
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.validation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:50:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 627
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js
213.108.240.16200 OK 719 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.onscroll-animation.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2487), with no line terminators
Hash 0b21f4728a6e63f8d2e38d7cd68f6260
ce0e94d4ca71621f32a850de50656f0e2595feaf
2f8fe7ad3600468b211c1acd8922e80d8f817831451c86ead270e2fa272cc180
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.onscroll-animation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:52:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 719
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909
213.108.240.16200 OK 2.3 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type HTML document, ASCII text, with very long lines (6889), with no line terminators
Hash 397d53fa9b98c1bc6be64a4de318cf98
edc1ad65cab5ed6a1208fe4355f0374b4068eb98
76949d345bbb35143d7390c8a0529cf235befa856d0d1229892a1627a9735807
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.slick-carousel.js?ver=j17938909 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:56:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2312
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js
213.108.240.16200 OK 324 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.quantity-counter.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (676), with no line terminators
Hash da85878bfc064fb6a8ce7e89edf1491d
85a65c76947910117473118ae97fa6b984e66018
ce82eb5ae6788b11193861ec4320f12cb9b6dc7772b70a15708e977e1dc7eea3
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.quantity-counter.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 15:58:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 324
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js
213.108.240.16200 OK 866 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.range-slider.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (3035), with no line terminators
Hash cceb7a29a3a56af3b25851a68d636f5c
e53123af1bb46463f6956cec568329679d1658d7
5718b1d98756200a1da90fb49a01ef7158b87ab218b93e91270a120ccb3f4206
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.range-slider.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:00:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 866
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js
213.108.240.16200 OK 465 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.show-animation.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1111), with no line terminators
Hash aeb41e5bebc0263322629809a1df383b
52eb6efa8f8f51a48bc8d7992de4b3979a30e4e8
ed4b6ae32d43ec372185f0bc52f3471fb4ad970e9ce07d822fd507a28b0c9a92
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.show-animation.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:00:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 465
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js
213.108.240.16200 OK 388 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.svg-injector.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (744), with no line terminators
Hash c2db1aa23f3fa0ba18e123680603e272
24741d21513606981aee47f827df8de4eac95fed
100a1bddebc8ea7bbf62a49066c0ec9315df22219ea4e43f39aad74bc6ca1eff
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.svg-injector.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:01:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 388
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js
213.108.240.16200 OK 1.2 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.scroll-nav.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (3918), with no line terminators
Hash 3f759eb63655a4f0078ad88e78e5ce91
4c4d09ca58255eb1007b7c99b3a2c1a07d540765
b9fb988109e98b82144652f01d8dff367e0d6fd480c3b7f5858f39aca0368789
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.scroll-nav.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:03:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1216
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js
213.108.240.16200 OK 675 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.go-to.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1954), with no line terminators
Hash 01b594be786064a0bba2abf03e63a386
7d632bdc97567fea8b1fd623d8b3beff895f6325
d103e5a6f1d256cb723e5ee0396263fbace1b279834c59e4e5ef7799a03572d5
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.go-to.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:03:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 675
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
trustseal.e-rasaneh.ir/trustseal.js
78.157.38.183200 OK 1.8 kB URL GET HTTP/2 trustseal.e-rasaneh.ir/trustseal.js
IP 78.157.38.183:443
ASN #62442 Dade Samane Fanava Company (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3649), with CRLF line terminators
Hash 691f95d11bb50d8d4d2ffad24f42fae6
bfd031c475e6b3b8d649e9b89c1bd046d6afd022
e07982f29c9565b6bd9f7a020e3f183370857ccc0f6a579b454ba5ffaa620683
GET /trustseal.js HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 11 Oct 2022 07:40:17 GMT
accept-ranges: bytes
etag: "8046e7b444ddd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:07 GMT
content-length: 1781
X-Firefox-Spdy: h2
footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js
213.108.240.16200 OK 1.2 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/zoom.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2550)
Hash ca7efc2fb569e05fea2e6d02c205cee6
41400aed1f02d9c76a2d593b98d031e3ddd5d926
30f10a9936e73adabebf270c03bd10c0fbd518faa36cc2072cc8eea9f9bfb936
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/zoom.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1164
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js
213.108.240.16200 OK 6.6 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (24803), with no line terminators
Hash 383e127bb225cd358d082bc7a3cc9af0
b389d5798caad6a6c7c5dea63cf38a1fae144460
1ed6e56fbf8407e331818c7f98d993b28093b90a8c77574789a868c4444e8a3a
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lightgallery.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:10:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6649
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js
213.108.240.16200 OK 999 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2798), with no line terminators
Hash 41518f8e5c82f1a1e6996e22dbf8018e
0ade7ecad16b59578e9cb39e1d5ae9d4e13afd25
b6b8ec8d7d7c46a84a76877bd7eeca7e232823d43c00716ac2a56d3825dca985
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-pager.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:10:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 999
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js
213.108.240.16200 OK 1.3 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (4064), with no line terminators
Hash 4a0b281e1d206d768e9593a003ec40f7
78304097dae21190ac18c6f4167ed6a6cfb956fb
67dc778a8de5e3a3410f9f9859a6401447c1ddea6cd892826b963c7380f911ac
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-autoplay.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:11:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1271
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js
213.108.240.16200 OK 972 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2863), with no line terminators
Hash 65402c8667947cdc9fe067c1fc89e1fd
ac18d6c11aab585604d4b7970158230fda318039
c7c59aee4620142913be5e216a5cc08bf0026d8210227be1687263d572566470
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-fullscreen.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 972
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js
213.108.240.16200 OK 3.1 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (11858), with no line terminators
Hash a78fac6c0dcad54563ba941b7c83487a
a6d9caa0e669a43486418a5a4ed49b03f84baecc
d0fe31bc9232e96f6b0063210c7cde57df445ccf34508f9e0780645dbfa5f71c
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-zoom.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:13:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3118
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js
213.108.240.16200 OK 820 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (1934), with no line terminators
Hash 5aae2cd5b773dec96fd8939646fb81a0
3a8b634c001fdaa3ee336b2e8f2156a3e80224f0
5a3b8dc59f6d4152d80da8cc6ec2dbb13ee139f644ffd47d608bc3be8450dd2c
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-hash.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:14:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 820
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js
213.108.240.16200 OK 2.6 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (9080), with no line terminators
Hash 69d2abdd9d48f0cff59aef61f3476b41
28a9ea2ea9a1b7ce3e791a4cf3f3b0212f32cfec
55dac825f2c8434e9063727d0e3915d396d514285ff36a26f3c626a71e486f06
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-thumbnail.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:14:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2594
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js
213.108.240.16200 OK 1.3 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (4256), with no line terminators
Hash dac7aa87cb1c95920f9b27499ed9f5a1
91c66940367cb0d14f685cf94d5f7bb3dc12008e
8807072094eb0dbb729f021874d70497658119defeefda2d990ef885e0d3be6e
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/zoom/lgjs/js/lg-rotate.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 16:16:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1297
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/backend/web/rest_library/jquery.cookie.js
213.108.240.16200 OK 1.2 kB URL GET HTTP/3 footballshahr.ir/backend/web/rest_library/jquery.cookie.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash 0f1f6cd6e0036897019b376d38593403
498b29de6e170fffc8535183b7d6550490f0a159
8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69
Analyzer Verdict Alert fortinet Malware
GET /backend/web/rest_library/jquery.cookie.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 25 Jul 2021 08:34:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1235
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js
213.108.240.16200 OK 2.4 kB URL GET HTTP/3 footballshahr.ir/backend/web/rest_library/toast/jquery.toast.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash d965adbbe561c096e20cde1500dda2ee
cc349d57c34b836a44178b459ba670f3ada6d12e
e67c49f53176a9ba4260f3192b19558c1c79391e114e7532b1d3347ad1acfc38
Analyzer Verdict Alert fortinet Malware
GET /backend/web/rest_library/toast/jquery.toast.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 29 Jul 2021 07:36:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2369
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016
213.108.240.16200 OK 5.1 kB URL GET HTTP/3 footballshahr.ir/backend/web/rest_library/util.js?ver=j13523016
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Unicode text, UTF-8 text, with very long lines (330)
Hash 38c9faea21a3d300d05701f895915ca0
aab196bfa5320ad7af80038956e3e675e1051afd
e5e18b5c8185880e5caca70a4550efee28a67cdd17c418daac86b9fb3f9dbb57
Analyzer Verdict Alert fortinet Malware
GET /backend/web/rest_library/util.js?ver=j13523016 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 21 May 2023 14:07:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5111
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371
213.108.240.16200 OK 1.0 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b89cde560f8547d5f57cfdeb8c483dbd
1bc398a27de5ca28ff0a45b70d36cd16892c0737
aed674e8e0fe027e7c09cb0c65cfc3a8a040a43c628fb9f876da806150a8baa0
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/components/hs.selectpicker.js?ver=j14187371 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 10:44:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1025
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/backend/web/assets2/js/reset_pass.js
213.108.240.16200 OK 1.2 kB URL GET HTTP/3 footballshahr.ir/backend/web/assets2/js/reset_pass.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash 2680dc591f92306a76fa462ae18bb6cb
20b88f7e891490ab3ba4c182971f9028666b564a
5eff8b0e08ebfb8259be0c0ee3c5f1dc6d24a9fefaea9a67c45af2d22fff7c09
Analyzer Verdict Alert fortinet Malware
GET /backend/web/assets2/js/reset_pass.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 14:35:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1219
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567
213.108.240.16200 OK 1.6 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/cart.js?ver=j12066567
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (741)
Hash b3856df37843a18a87e20066e7d1d1fc
983ccd32f8cf4f71433c320ea8c6e11ab025a5d1
cec279e41f9ab9e66457166575e706d96cf0f285ab8c3bd81e5d19dd098c53d9
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/cart.js?ver=j12066567 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Mon, 13 Jun 2022 11:44:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1593
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869
213.108.240.16200 OK 6.7 kB URL GET HTTP/3 footballshahr.ir/theme_asset/all-needed/essential.js?ver=j19493869
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Unicode text, UTF-8 text, with very long lines (748)
Hash 28d670b18d56cd352a1d33658f794c60
2a5942d4f1e1a9fca732c5fd2b4c83216c53d60e
e0297584c346305ca0face7472162df91842dad32a3dae323e19263def9caed9
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/all-needed/essential.js?ver=j19493869 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 09:55:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6653
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372
213.108.240.16200 OK 850 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/checkout.js?ver=j16606372
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash ab379ea3cdb9ce825fdd0108a7cd17ea
f42fcf769d4154c9bb79474cd657f5c19292ad99
d1dd270307440c3008aaed5c9704bec6b8bc74a46e4645dcf0ce025e2e411d32
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/js/checkout.js?ver=j16606372 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 12:29:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 850
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216
213.108.240.16200 OK 0 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/js/custom.js?ver=j11441216
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /theme_asset/electro/assets/js/custom.js?ver=j11441216 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 10:36:51 GMT
accept-ranges: bytes
content-length: 0
date: Fri, 26 May 2023 04:11:08 GMT
vary: User-Agent
access-control-allow-origin: *
lab1.avisapp.dev/globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg
213.108.240.16200 OK 47 kB URL GET HTTP/3 lab1.avisapp.dev/globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 614x274, components 3\012- data
Hash 9c35fec5f60a6319edee2472a75b42c6
eaab5ebe7071dc1244dfa7feb05c3a20b1e1ea8c
9342aa469c470ac08e0b7257e1cd60931b39bd0938d8131051c2754c152cfc42
GET /globe_uploads/338966396/2022/11/338966396-120095784020730-1667302291.jpg HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: image/jpeg
last-modified: Tue, 01 Nov 2022 11:31:31 GMT
accept-ranges: bytes
content-length: 47347
date: Fri, 26 May 2023 04:11:08 GMT
vary: User-Agent
footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js
213.108.240.16200 OK 30 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/jquery/dist/jquery.min.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:08 GMT
content-type: application/javascript
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29664
date: Fri, 26 May 2023 04:11:08 GMT
access-control-allow-origin: *
cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
104.17.24.14200 OK 1.0 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
IP 104.17.24.14:443
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (2609)
Hash d5843dbdc71ff8014a5eafd346a262da
127e1d971efab9341db8079f10663dc28e8e0a2f
8e73a30d35c83ea6a597c3343324d2b7df097ad26e67b62efb5266ee12d317b5
GET /ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 04:11:09 GMT
content-type: application/javascript; charset=utf-8
content-length: 1046
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-ad3"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4273192
expires: Wed, 15 May 2024 04:11:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zaxSlliyYwzMGQVFtc5hQDeqMje55bMWSyN47vJo3fMVVD6hKoFRt8CwI%2FMqCCN7PTqwC22K6Jk81kyWNIs%2Fei07r0PTspt40mQ%2Fc%2BeSXQuADQq8IVXqiX%2BrqsQkAuToTUcuvBb1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd32c25be33b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
footballshahr.ir/fonts/shiva_roar_light.woff2
213.108.240.16200 OK 36 kB URL GET HTTP/3 footballshahr.ir/fonts/shiva_roar_light.woff2
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Web Open Font Format (Version 2), TrueType, length 36456, version 2.0\012- data
Hash 34c8c0194922b7987785f3f14a9f0181
cf1c5333e046e819964ce7fae3e2d78599fbcdfa
a1e5f5d868406af7427ba44409a805db099b53109cc1433109d23c8edf58bdff
Analyzer Verdict Alert fortinet Malware
GET /fonts/shiva_roar_light.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/site/color?ver=692523
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 06 Nov 2021 08:28:26 GMT
accept-ranges: bytes
content-length: 36456
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/fonts/font-electro.woff
213.108.240.16200 OK 8.9 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/fonts/font-electro.woff
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Web Open Font Format, CFF, length 8864, version 1.0\012- data
Hash 9b2f99f18869f448ba8f2d6c7af416e6
6f1024724f2267d4dbf2ae016c59865513a43692
94516a5ee70cc31bde343c26d191420263540f4141756f246582855d946338cb
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/fonts/font-electro.woff HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/theme_asset/electro/assets/css/font-electro.css
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff
last-modified: Sat, 25 Dec 2021 06:03:14 GMT
accept-ranges: bytes
content-length: 8864
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2
213.108.240.16200 OK 74 kB URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Hash 418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/theme_asset/electro/assets/vendor/font-awesome/css/fontawesome-all.min.css
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 25 Dec 2021 06:03:15 GMT
accept-ranges: bytes
content-length: 74256
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *
footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
213.108.240.16200 OK 864 B URL GET HTTP/3 footballshahr.ir/theme_asset/electro/assets/vendor/appear.js
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with very long lines (2088), with no line terminators
Hash 2c932d2e89a7b5fc8734d52ffaa7ceeb
7fc8a238eb264a2a431c73222ceaef515449d4f0
0be473eaa663335384c702e4e23bf3f133cebce946456096437c4dc0d70e3f27
Analyzer Verdict Alert fortinet Malware
GET /theme_asset/electro/assets/vendor/appear.js HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: application/javascript
last-modified: Thu, 10 Feb 2022 11:11:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 864
date: Fri, 26 May 2023 04:11:09 GMT
access-control-allow-origin: *
footballshahr.ir/fonts/shiva_roar_bold.woff2
213.108.240.16200 OK 36 kB URL GET HTTP/3 footballshahr.ir/fonts/shiva_roar_bold.woff2
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type Web Open Font Format (Version 2), TrueType, length 36328, version 2.0\012- data
Hash 58dfaa0dd4917658c6ae61035587d4b5
1a6e31546592fcb6a2644532d255ac284a1bf49b
f965d8268cf0c0a9c52a1ca1656892eaa1be3089f59db7da65c9ceb6da7a86d8
Analyzer Verdict Alert fortinet Malware
GET /fonts/shiva_roar_bold.woff2 HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/site/color?ver=692523
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31536000
expires: Fri, 02 Jun 2023 04:11:09 GMT
content-type: font/woff2
last-modified: Sat, 06 Nov 2021 08:28:23 GMT
accept-ranges: bytes
content-length: 36328
date: Fri, 26 May 2023 04:11:09 GMT
vary: User-Agent
access-control-allow-origin: *
trustseal.e-rasaneh.ir/Trustseal
78.157.38.183200 OK 0 B URL POST HTTP/2 trustseal.e-rasaneh.ir/Trustseal
IP 78.157.38.183:443
ASN #62442 Dade Samane Fanava Company (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /Trustseal HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://footballshahr.ir/
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
allow: OPTIONS, TRACE, GET, HEAD, POST
server: Microsoft-IIS/10.0
public: OPTIONS, TRACE, GET, HEAD, POST
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
content-length: 0
X-Firefox-Spdy: h2
lab1.avisapp.dev/order/load-cart
213.108.240.16200 OK 20 B URL POST HTTP/3 lab1.avisapp.dev/order/load-cart
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
POST /order/load-cart HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------349120627832599256091326838876
Content-Length: 305
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 20
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT
footballshahr.ir/site/get-mchin
213.108.240.16200 OK 52 B URL POST HTTP/3 footballshahr.ir/site/get-mchin
IP 213.108.240.16:443
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type ASCII text, with no line terminators
Hash e333bf7e9379bb6db49ff5c58590cd71
67baf093a886a634b4a210aefeae7e7e5480cb87
bee4de5d52803764ed19670bdf366dcb74f8a3330d1315e79c234b4602435dd4
Analyzer Verdict Alert fortinet Malware
POST /site/get-mchin HTTP/1.1
Host: footballshahr.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Cookie: advanced-frontend=7e6d42cd08f4442e4f293c38dcd3c50e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-length: 52
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT
trustseal.e-rasaneh.ir/Trustseal
78.157.38.183200 OK 453 B URL POST HTTP/2 trustseal.e-rasaneh.ir/Trustseal
IP 78.157.38.183:443
ASN #62442 Dade Samane Fanava Company (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (387), with no line terminators
Hash b01410a4e62b24503d585536c487af91
956a7f4284310e0aac859c6740dc81c2f8acc43f
73d6183a21720eebd54875deab4b5502e35d87d7dc59c0dfcdf37ad4d497e2a4
POST /Trustseal HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 181
Origin: https://footballshahr.ir
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: application/json; charset=utf-8
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=bghilegz52lcxkn2e3544h0c; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
content-length: 453
X-Firefox-Spdy: h2
trustseal.e-rasaneh.ir/Image/215597-KEIDJLKFIK
78.157.38.183200 OK 7.5 kB URL GET HTTP/2 trustseal.e-rasaneh.ir/Image/215597-KEIDJLKFIK
IP 78.157.38.183:443
ASN #62442 Dade Samane Fanava Company (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerUnizeto Technologies S.A.
Subjecttrustseal.e-rasaneh.ir
Fingerprint12:EE:2F:B4:F8:11:35:FD:88:FF:CD:28:AF:C3:94:29:7F:43:B1:C9
ValidityWed, 31 Aug 2022 12:19:08 GMT - Thu, 31 Aug 2023 12:19:07 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 1916f5d4443d038904c5bca18a291c8a
8a3756ab330c987e582486299da69d7c01435984
6a2753957bf03a32fd0d7d17f83cfbf385d7f0b6bf96c3430c6cdc5af5774efe
GET /Image/215597-KEIDJLKFIK HTTP/1.1
Host: trustseal.e-rasaneh.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
content-length: 7458
content-type: image/jpeg
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=zz140fhc401vnugwdyvpeq5q; path=/; HttpOnly; SameSite=Lax
content-disposition: filename=True.jpg
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS
access-control-allow-credentials: true
date: Fri, 26 May 2023 04:10:08 GMT
X-Firefox-Spdy: h2
lab1.avisapp.dev/globe_uploads/338966396
213.108.240.16 707 B URL GET lab1.avisapp.dev/globe_uploads/338966396
IP 213.108.240.16:0
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /globe_uploads/338966396 HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://footballshahr.ir/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 26 May 2023 04:11:09 GMT
location: https://lab1.avisapp.dev/frontend/web/globe_uploads/338966396/
vary: User-Agent
lab1.avisapp.dev/frontend/web/globe_uploads/338966396/
213.108.240.16 747 B URL GET lab1.avisapp.dev/frontend/web/globe_uploads/338966396/
IP 213.108.240.16:0
ASN #200296 Hamed Kavosh Vira Co. (PJS)
Requested by https://footballshahr.ir/wp-content/plugins/wellsfargo.com/
Certificate IssuerLet's Encrypt
Subject*.avisapp.dev
Fingerprint4C:66:FC:34:34:B0:BF:9B:1A:DF:6E:4B:DB:84:E5:45:CD:62:1F:A9
ValidityWed, 12 Apr 2023 01:30:10 GMT - Tue, 11 Jul 2023 01:30:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (429)
Hash 5d7c93be97df75484fbf0dd803cfe91b
7fb7fdcc80b1cc564e9a1318db2a7a8f8a2074f1
15b9f1ee928db17e457acb43e63a5dd5105d0dcee103793e3a11171cef204052
GET /frontend/web/globe_uploads/338966396/ HTTP/1.1
Host: lab1.avisapp.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://footballshahr.ir/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
content-length: 747
content-encoding: gzip
date: Fri, 26 May 2023 04:11:09 GMT