cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942d85-180d"
last-modified: Thu, 22 Jun 2023 11:16:21 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 16040
expires: Tue, 20 Aug 2024 17:37:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n7YkRkOmYk1A4pxSzF5o5hFj%2FH%2BGI0He8KFCRhKhlXyDBKsVQ6n5lRfFDHWhvoS41nbuGzqdiFDktgx1dHIbKyY0FaIZnvVCTSoR%2FUxuFrebr%2BhMrcUe%2ByxuNjct1hzaHUQ9FU6A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ff70ab0fc2b56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1693503449.dop016.sk1.t,1693503449.cds002.sk1.hn,1693503449.cds253.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a400cf16b1d7599abf0c3d84396d4dcf
ee7008d9c5ab4e79ebdad5508831a050248115de
d25b07b54abb9acaff33f0bb887bab3b6eb1568bf0bf204364269716f22302c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 31 Aug 2023 17:37:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 92863e68af4291e55b0bd28ec5cd26f8
1de2b2f643ea36f1067d46e0fd86aca4e04ec102
8c2e98db7573c6d3c76454f96035b06d5e58eb36c4811de2e93a04ca8966d162
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 31 Aug 2023 17:37:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
200 OK 83 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint4E:35:EC:AC:A4:3A:09:F9:F3:9A:26:43:94:A7:BA:2C:01:54:DA:12
ValidityMon, 07 Aug 2023 12:16:40 GMT - Mon, 30 Oct 2023 12:16:39 GMT
File type ASCII text, with very long lines (3034)
Hash 84152c1ba440dd1e5c9d30c123c59dcd
0c4f616da0357e81e1d7b7fc8f49d3b38f4ac637
a487463b91bbad1c7eb35100e776996347f3bf28bcde4e5172d47cc6cf36ffa0
GET /gtag/js?id=G-88CJJ1TFNT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 31 Aug 2023 17:37:29 GMT
expires: Thu, 31 Aug 2023 17:37:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82841
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a400cf16b1d7599abf0c3d84396d4dcf
ee7008d9c5ab4e79ebdad5508831a050248115de
d25b07b54abb9acaff33f0bb887bab3b6eb1568bf0bf204364269716f22302c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 31 Aug 2023 17:37:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 92863e68af4291e55b0bd28ec5cd26f8
1de2b2f643ea36f1067d46e0fd86aca4e04ec102
8c2e98db7573c6d3c76454f96035b06d5e58eb36c4811de2e93a04ca8966d162
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 31 Aug 2023 17:37:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
200 OK 1.3 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type gzip compressed data, max compression\012- data
Hash f9c01fbc5fcd4a0a22a22acc7b84efd4
f42b8046e67ffb568039842f4d7ed9378c245305
c101b45d91ffe7ba0ac1c14933f5a5ff57896a01858f02b9f9374cf5a13dd34d
GET /css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 31 Aug 2023 17:37:29 GMT
date: Thu, 31 Aug 2023 17:37:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type Web Open Font Format (Version 2), TrueType, length 14892, version 1.0\012- data
Hash 9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Aug 2023 07:39:48 GMT
expires: Thu, 29 Aug 2024 07:39:48 GMT
cache-control: public, max-age=31536000
age: 122262
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9ff321dba5f34d500a8f4a2ea4d3b0e4
cdn-cache: HIT
cf-cache-status: HIT
age: 13234
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ff70ab39b82b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type Web Open Font Format (Version 2), TrueType, length 14712, version 1.0\012- data
Hash 3afeae0d768769f5e5f30ac9805c5b70
3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d
0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 31 Aug 2023 15:16:10 GMT
expires: Fri, 30 Aug 2024 15:16:10 GMT
cache-control: public, max-age=31536000
age: 8480
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/api.js
302 Found 471 B URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hash 3f3748de57691f2f1755a7268854f753
65725a8df6ce3217b7f0d38d5f6e9834dc7d25f1
37142f58e3d799f83113c070edfe50406e272a8919035abf45477f746acdea38
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 31 Aug 2023 17:37:29 GMT
vary: accept-encoding
cache-control: max-age=300, public
location: /turnstile/v0/b/be88c2a1/api.js
access-control-allow-origin: *
server: cloudflare
cf-ray: 7ff70ab0fa05569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scribd.vpdfs.com/favicon-16x16.png
200 OK 1.5 kB URL GET HTTP/3 scribd.vpdfs.com/favicon-16x16.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9e04892c5f2c0ae369413a9777302e96
9d0c66ab452e04973fb1730979434515ac4f48e9
b1e29c0b9fb80cc752e70d5519e372685d9a0ce607ba8bcebe13b2aa6f734a8d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon-16x16.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=m1pc1afimd7040aq6cabtlsqj5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: image/png
content-length: 1510
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-5e6"
expires: Sat, 30 Sep 2023 15:48:06 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 6893
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BEVZS4wH0hmfp5w9J1LTEohoPDlmoaK2d3yYwBYWHtJbf8JtxXVg46r9jQqn1a3E7yMRWWyfYgAXuesfYEGxR5XYMY9pNl8ql9TQHfjloajq1PD4BexWT7T2u3NXzh%2FHAb9c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ff70ab43dc256a2-OSL
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/android-icon-192x192.png
200 OK 15 kB URL GET HTTP/3 scribd.vpdfs.com/android-icon-192x192.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash f2294e51784deb608902690ca767cf88
b1dbae75d4d25dd111d5f4ecbb9b879c04ca2efd
b6edfb737d3d8ec5fea9f72eba2a7485718aaedc4528b66f6e000e9e16615e88
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /android-icon-192x192.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=m1pc1afimd7040aq6cabtlsqj5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: image/png
content-length: 14608
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-3910"
expires: Sat, 30 Sep 2023 14:23:37 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 11962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J5jQxXvGJoPQiLS1Ie97TqtADybNA%2BXpJymMe0Nw0ALby4TqS9CC9Jw4n5KE9BvOqHph2lWR1tnY0ieI4E2vQRXUmi51ALpXiOtZaLx6dhXOI2pGHF78WRXmq98nqkvFAelY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ff70ab43dc156a2-OSL
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
280 B IP
Hash 2b832d5b2334fb1abdcf72b49eb34ad4
9dbfe10d61ace4dc787c600c8e83c34ea23e1dd8
a99af0dc0d597976bc536ba8d860859c553890b41a3b6b208c13a828545c7541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 31 Aug 2023 17:37:30 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Thu, 31 Aug 2023 10:04:13 GMT
Expires: Thu, 07 Sep 2023 10:04:12 GMT
Etag: "9dbfe10d61ace4dc787c600c8e83c34ea23e1dd8"
Cache-Control: max-age=577858,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ff70ab41ebe56c1-OSL
static.a-ads.com/a-ads-banners/406685/728x90?region=eu-central-1
200 OK 658 kB URL GET HTTP/2 static.a-ads.com/a-ads-banners/406685/728x90?region=eu-central-1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://ad.a-ads.com/2102186?size=728x90&background_color=abbdff
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type GIF image data, version 89a, 728 x 90\012- data
Size 658 kB (658334 bytes)
Hash 96e1a1f6a465ffb1996646a4932ba18b
95316a340412448c7b2298022f95018a84bd06b9
3779aca15c0cd71ccd037bc921af5cf96adfc673d7f5ca6f4bf1f57080e499ef
GET /a-ads-banners/406685/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: image/gif
content-length: 658334
x-amz-id-2: vNlj94/s22pcI18EwKOT6SIaaAlsLEVRwIEXG8hp4W1MK7qtZvWtZdI2fkd3mDatkPWLSJGg3do=
x-amz-request-id: VQ04EY6FFKSZSZX6
x-amz-replication-status: COMPLETED
last-modified: Thu, 04 Aug 2022 08:12:39 GMT
etag: "96e1a1f6a465ffb1996646a4932ba18b"
cache-control: max-age=315360000
x-amz-version-id: dSwIG7baX58cw3WRkIIoRJVF5bmIjlTM
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
scribd.vpdfs.com/document/560317954/The-War-on-Gold-by-Antony-C-Sutton-76-Press
302 Found 9.2 kB URL User Request GET HTTP/2 scribd.vpdfs.com/document/560317954/The-War-on-Gold-by-Antony-C-Sutton-76-Press
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /document/560317954/The-War-on-Gold-by-Antony-C-Sutton-76-Press HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 31 Aug 2023 17:37:28 GMT
content-type: text/html; charset=UTF-8
set-cookie: scribdvpdfssess=m1pc1afimd7040aq6cabtlsqj5; path=/; domain=.vpdfs.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
location: /dokument/
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wmy319tQLTA0coRBvxbruiVL6Ag0jCKeQj2L1TRCrK8dC%2BCC2noslMe5JnjBeeLPRb%2BGm6%2Fqd6jeYvbS4%2BitnQ3i%2B6hTxG1H5M44YfqleJw%2BTRrAUBmAL5tVOAYdwtTFPlFi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ff70aa95e5f5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f
200 OK 3.3 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3312), with no line terminators
Hash 04c8dd079cec4afe7196448df1de45ac
9f08f32effd97be01b1fe912ae2c3348011917fd
be150f714da0eca1aa43107cfa2db0d39b9b85c2f2e0d8d05c83932b9f90966e
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 20c1ebdb646b94f
Content-Length: 24426
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:34 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 2rQsdiVa0+X/pbK/hOw4RT8vzkK1lxUcLHJGS/2E/V+XSuK9onHsGbYMnz0eBQtpMEodQ49ZnVC039bzXEct6oEKHHAg1IClBO0TZggu9O9XAc96sVMpDaeshrCbaY51$sOMr+RC6gIGcoKteR5GS+w==
cf-chl-out-s: g/ywYy+mqnN4q9ZJz8S2zdYS8YvT1GisyMGKXAl5yRZ8cpU93r+wbbyT+jBjYkE0iR0TdcSL+dyZ0IC+Sh1zBmB2GVlihPkPhgY4xWKHSW3Ebob++siX9KKBKU0WQmvXrhc6p9vFZQs3hY+dzOOMi/vOAzxLdk6QlOLjF8OsApyWZpwrUQmBfzCqKj7OKGJ2yh2Xt0HH/Yub6wwCeQzmcVHBM+60cfSNSbEaWD1Nn4zhc+xmyLXhTz6OobWgn+uFQ2nVzRHbB++rczSpmkAWpg==$Dg4B0fqMacbUFlnvp7OMrQ==
server: cloudflare
cf-ray: 7ff70acf680e56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7ff70ab4384d56af/1693503450935/xAn74_fL9T0NgjL
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7ff70ab4384d56af/1693503450935/xAn74_fL9T0NgjL
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 23 x 54, 8-bit/color RGB, non-interlaced\012- data
Hash d0564b49fddf36be09fc642648d2bfec
415e7d418e4a95e4b9badd797ce6dc9f8719fc6c
e5c52ab2cf83ba5eb92b4f1660d713ca67c90092e6538b773183d6dae50cff00
GET /cdn-cgi/challenge-platform/h/b/i/7ff70ab4384d56af/1693503450935/xAn74_fL9T0NgjL HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:31 GMT
content-type: image/png
server: cloudflare
cf-ray: 7ff70abd188e56af-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ff70ab4384d56af
200 OK 174 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ff70ab4384d56af
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 174 kB (174379 bytes)
Hash babf11aec03bc52fa63f46e2b5998ef2
fa40739799d4a52d8f28cf773140b1743867edaf
cab99cef9de964fc12b4cba61a3fd40701e8ad2fe789f240dffebe558d670bf8
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7ff70ab4384d56af HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 7ff70ab5195d56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/dokument/
200 OK 9.2 kB URL User Request GET HTTP/2 scribd.vpdfs.com/dokument/
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9584), with no line terminators
Hash 1aec94c64a0acde0fd4cea078a51806c
cc9d9a7992fa323ac06b20789ab04c03213204a3
c1900621a6c29aa2bbb0c91d4317161497d975e380dcbcce9a6529ba7cb57f38
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /dokument/ HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scribdvpdfssess=m1pc1afimd7040aq6cabtlsqj5
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SCs95VJLGEHcsseMaSVTidRM%2FJrnX%2FXtLGcakZu1ZqaUZpc7c0a3CMjx7BSvvdyxNWOGoU6qkhyWWM9s9EmJPXTtd8pEInRMayZcwGoqefHyZYMch8zCEA2M8Vxx2ZaLDW61"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ff70aac49335687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/b/be88c2a1/api.js
200 OK 30 kB URL GET HTTP/3 challenges.cloudflare.com/turnstile/v0/b/be88c2a1/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (29684)
Hash 321c4f06ddad5749830573a903803db5
a3564508f8fbcb4e97e6af2c96bc09ded76b273c
92cefd873feda547496b569ec49cc16ea82c1c28959c46bc8b096b57afe04be7
GET /turnstile/v0/b/be88c2a1/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scribd.vpdfs.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ff70ab1cdfb56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U=
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U=
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/9DKbiDfWH6ZjHxgSNTG3KHa3ucVmP6rj9MHN3bQn2+U= HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 7ff70ab5195c56af-OSL
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/assets/css/bootstrap.min.css
200 OK 167 kB URL GET HTTP/3 scribd.vpdfs.com/assets/css/bootstrap.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65184)
Size 167 kB (166995 bytes)
Hash 22f429a09e4df21a76606bb9abf6043d
6fd61e8119720e1117668b37f4e61e51be3ee12b
4ad19d5d7668eb40975d9ff8f9335571c3a03dc39278b0aadd97f39979db40cf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=m1pc1afimd7040aq6cabtlsqj5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: text/css
last-modified: Sat, 31 Oct 2020 00:27:46 GMT
vary: Accept-Encoding
etag: W/"5f9caf82-28c53"
expires: Thu, 14 Sep 2023 21:16:20 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 1369596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fQqhGKQXd6iIry6Fs83Laxer8JwvAKyizCR%2ByJefdYAJSyC4MNXTijtDVZdO8ZdOlQurgY%2B9Bzgj%2FA2Uz2k3B0Z3kzHWPgjjTBrqP1a0VVFyTWyM%2BymDbYgTNWtsfugd5byy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ff70ab09a3a56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
200 OK 25 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11051)
Hash 1e785a6a9701a170c630776f8e8ee482
fcb178b08dc28be0b17c8e7ce88cf4bdc10fd66b
e2723d6ead65ead2ae79647de4c52d41b87949e5cc3ef7e0e951daa1c1327431
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7ff70ab4384d56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f
200 OK 80 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a97c9650b6a3f125da4a6594eda944b
e2f857f480274d912dbef5f628d1ddd44f678177
fbf8774c4ba0b03cf61ebc5d192f1b2b90663fdbf04035b529db9d923b8e7f76
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/791559514:1693495710:FuFWkTmeAlvIsp8ZLvgtPh7ZrjS5BBqKypyjiTjRe94/7ff70ab4384d56af/20c1ebdb646b94f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 20c1ebdb646b94f
Content-Length: 2220
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: SUb2nOwLbt5zmLK0MAUf/R7CA/E3qjsZOej/GCmG/jtdAST/KwKCIgfiWPsot1KbnZuER5hNyrAv06JsY6KSda1iSSw+dozjG8a3qG6xABL9Tp2T8/PyA6t+U3Y6IsGTE7jPYtKzZq+3ce07mWpFMG22ioJnydMweEN4mwZGnC/pOrLC8rfXYZ+hY8mjoHIY9rp62hK7Ey9pnlPNO6Tzqi1cXuYzcnLtPsXIgw2KCJwEqvlhlwJcMdlw5WTwgwwKCkY/6PxrHjSynYt2+a7ucZjJon7Dl7qNfo5SBufmWIDqqpN2RmRLSQIlZ39/1sLHkkhrFXCCXVOznH4sA5hUXjo/xCW661K9GYrTI3K8/y4n4EAklZhISFO3SpWkAdA4$yqAZhMzNiNs6atbK04xK+w==
server: cloudflare
cf-ray: 7ff70ab84ca556af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7ff70ab4384d56af/1693503450936/6b96362d4b1271fca0469a9cacf2540b57cd26749f79941050e5d0bc43556433/JF-9kEybi1HaOsh
401 Unauthorized 1 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7ff70ab4384d56af/1693503450936/6b96362d4b1271fca0469a9cacf2540b57cd26749f79941050e5d0bc43556433/JF-9kEybi1HaOsh
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/7ff70ab4384d56af/1693503450936/6b96362d4b1271fca0469a9cacf2540b57cd26749f79941050e5d0bc43556433/JF-9kEybi1HaOsh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/m8bcd/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Thu, 31 Aug 2023 17:37:34 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20ga5Y2LUsScfygRpqcrPJUC1fNJnSfeZQQUOXQvENVZDMAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAu7i9EsINGo8Zj2PHW6HE4-U2p6tERrZ_L4I3vRJpge4IHIXay6gPikUTxIGPLCOumol43QnjItQe9lFXAsnfhRPevKzBE-N9gjtYigjI0vfPbKuFdzvQPG-Ew3We3mS8hfABUBL8sIGvcItxrGKQOzNNfFMe7Q3dtEi3H3_GbEvwRErrxi9ajv9WhA_Bt7DjBgI6iCDS54WC9ydjZo6OoNU6i9i4SWDB822XUV4UWmksTcfBKjGXTgXIj6-Xze2Fg5-Pxmjs6FR9e-KRi-JH-TEQZVMZn5lJK7rrq_GBN0EFPFlfZYFgaU7sbbQGA2U1WPaWkb0VIA5UF3vK9wKtLwIDAQAB, max-age=20
server: cloudflare
cf-ray: 7ff70ace7f5d56af-OSL
alt-svc: h3=":443"; ma=86400
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6cf219faedeeb5fa58df4c5eec537e3c
cdn-cache: HIT
cf-cache-status: HIT
age: 1397486
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ff70ab0d982b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 31 Aug 2023 17:37:29 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: a6eb734a51fba67aebe8fc32930febca
cdn-cache: HIT
cf-cache-status: HIT
age: 1397486
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ff70ab0e995b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ad.a-ads.com/2102186?size=728x90&background_color=abbdff
200 OK 12 kB URL GET HTTP/2 ad.a-ads.com/2102186?size=728x90&background_color=abbdff
IP
ASN #24940 Hetzner Online GmbH
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash 2459bfd6cb08aa2293c56e225b12f28e
c2b05284574a89adb67e932ee787cff0295ed628
f675462361d98ba60f16f406a2dd65239b65e28a12c1469ed0005a614efbc8ef
GET /2102186?size=728x90&background_color=abbdff HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 31 Aug 2023 17:37:30 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://scribd.vpdfs.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
188.114.97.1
104.18.10.207
216.58.207.227
213.239.205.245