cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 9034115
expires: Tue, 30 Jul 2024 07:56:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CnUgwIb1Z2amjq6cnL14HxYpIBnngKf1O6euCPvXe%2FqIsE5k4uwnWd3pV2%2BICu5WVfkToSksR1P7%2B%2F1%2Fbr3%2BHOdVBERVaHx6oDkv4qk%2BKxeiGJ5FJrjebqe%2FEeyN4Ys5mN6OCInO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7f46af7a6f951c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1691654219.dop230.sk1.t,1691654219.cds251.sk1.hn,1691654219.cds253.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 476408ce6d43eda5fd135654b07edd4d
bdd5003d7d1e926bdfc338f0404c71495c6988fb
aeaad84052fcbe40b81e72af0fcd6a2a7a428711d7e219182b0bb8bf41f5aace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash b100c1d0401a01fbdf9a2412d8a9bae2
ef218a1ca642da3f38bb10f48e7f661ac11409bd
4b510b3f3105fc3585160bc5badc501b17eb0dd654fe9cd19f25bd5101fc846c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
200 OK 82 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDD:70:56:93:2B:32:FA:EA:25:D4:3B:17:50:BC:E0:4A:6A:BA:DB:8B
ValidityMon, 10 Jul 2023 08:16:15 GMT - Mon, 02 Oct 2023 08:16:14 GMT
File type ASCII text, with very long lines (3034)
Hash b8b5d0d62b2a2daec18499bb19f61944
b422947dee87d6570bb57502df6d8046dcf7b2a1
222d37939ce7a4493775d8c72f24330d73bb55e693306619e9ba0ea8363a2e42
GET /gtag/js?id=G-88CJJ1TFNT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Aug 2023 07:57:00 GMT
expires: Thu, 10 Aug 2023 07:57:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81911
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 476408ce6d43eda5fd135654b07edd4d
bdd5003d7d1e926bdfc338f0404c71495c6988fb
aeaad84052fcbe40b81e72af0fcd6a2a7a428711d7e219182b0bb8bf41f5aace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash b100c1d0401a01fbdf9a2412d8a9bae2
ef218a1ca642da3f38bb10f48e7f661ac11409bd
4b510b3f3105fc3585160bc5badc501b17eb0dd654fe9cd19f25bd5101fc846c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9ff321dba5f34d500a8f4a2ea4d3b0e4
cdn-cache: HIT
cf-cache-status: HIT
age: 39199
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7f46af7ca9d3b524-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scribd.vpdfs.com/assets/css/bootstrap.min.css
200 OK 27 kB URL GET HTTP/3 scribd.vpdfs.com/assets/css/bootstrap.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65184)
Hash 22f429a09e4df21a76606bb9abf6043d
6fd61e8119720e1117668b37f4e61e51be3ee12b
4ad19d5d7668eb40975d9ff8f9335571c3a03dc39278b0aadd97f39979db40cf
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=kjb0dv7173v4dospep4t9pnsv2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: text/css
last-modified: Sat, 31 Oct 2020 00:27:46 GMT
vary: Accept-Encoding
etag: W/"5f9caf82-28c53"
expires: Tue, 15 Aug 2023 19:34:30 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 2118470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1N2Qjljqd2xHS16jixzKkqB%2BzlrYTacGbjdq9vDou2VNT%2B1kRbmK8xVgYY3YBZdvxR1Fx79AJTcXrD6svpLMMKffW%2BPkKpNU%2BlZ2yG4h58bZf1TIsLKrnCTHyIjYQgp6VU8W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f46af7a2cd00b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
471 B IP
Hash 9115403309710ae628c8f6577fc80585
3f53060b6f0e9f599b952c07f4bea5ff67c2e098
92a4cd331add3ed01c2c090c90618890decc6e6d7a848e22cbd5522f1579c5fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 14892, version 1.0\012- data
Hash 9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Aug 2023 07:39:48 GMT
expires: Thu, 08 Aug 2024 07:39:48 GMT
cache-control: public, max-age=31536000
age: 87432
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
282 B IP
Hash c953ee928ee100cf58f52b28f7a13f47
4e130cac22e5cf125f255251ec5d1678a29baf3e
fd0d4a392ec69c336e28e70f3b86eacf55c8265e7630b89f91e13049be118aa5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 10 Aug 2023 07:57:00 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Thu, 10 Aug 2023 04:43:22 GMT
Expires: Thu, 17 Aug 2023 04:43:21 GMT
Etag: "4e130cac22e5cf125f255251ec5d1678a29baf3e"
Cache-Control: max-age=593880,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7f46af7d28abb500-OSL
fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1D:CB:14:A0:BA:14:B6:03:59:6D:D5:E2:F5:4C:73:E3:FF:73:57:90
ValidityMon, 10 Jul 2023 08:21:12 GMT - Mon, 02 Oct 2023 08:21:11 GMT
File type Web Open Font Format (Version 2), TrueType, length 14712, version 1.0\012- data
Hash 3afeae0d768769f5e5f30ac9805c5b70
3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d
0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Aug 2023 15:16:10 GMT
expires: Fri, 02 Aug 2024 15:16:10 GMT
cache-control: public, max-age=31536000
age: 578450
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 9115403309710ae628c8f6577fc80585
3f53060b6f0e9f599b952c07f4bea5ff67c2e098
92a4cd331add3ed01c2c090c90618890decc6e6d7a848e22cbd5522f1579c5fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Aug 2023 07:57:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scribd.vpdfs.com/android-icon-192x192.png
200 OK 15 kB URL GET HTTP/3 scribd.vpdfs.com/android-icon-192x192.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash f2294e51784deb608902690ca767cf88
b1dbae75d4d25dd111d5f4ecbb9b879c04ca2efd
b6edfb737d3d8ec5fea9f72eba2a7485718aaedc4528b66f6e000e9e16615e88
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /android-icon-192x192.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=kjb0dv7173v4dospep4t9pnsv2; _ga_88CJJ1TFNT=GS1.1.1691654217.1.0.1691654217.0.0.0; _ga=GA1.1.1692035472.1691654217
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: image/png
content-length: 14608
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-3910"
expires: Thu, 07 Sep 2023 16:39:54 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 141751
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ft3av1vhyyfFu51XYKqFIwbLvPNpX6siLIUWZYb4aBiW1vVATom7JmzZR0IFHi5yKz%2Ftw%2BGRuptmUdSzzCpAVT6JjMdk5M8HpnF8%2B%2BrF1Tq634gxFwNqbzB%2B1qR8dDDINsAs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f46af7de86e0b3d-OSL
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/favicon-16x16.png
200 OK 1.5 kB URL GET HTTP/3 scribd.vpdfs.com/favicon-16x16.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9e04892c5f2c0ae369413a9777302e96
9d0c66ab452e04973fb1730979434515ac4f48e9
b1e29c0b9fb80cc752e70d5519e372685d9a0ce607ba8bcebe13b2aa6f734a8d
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /favicon-16x16.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=kjb0dv7173v4dospep4t9pnsv2; _ga_88CJJ1TFNT=GS1.1.1691654217.1.0.1691654217.0.0.0; _ga=GA1.1.1692035472.1691654217
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: image/png
content-length: 1510
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-5e6"
expires: Fri, 08 Sep 2023 20:01:28 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 43258
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lJRULX6LSDVYzM%2BeDn7ZL7YSN4rYpMbRmvyup0GXMGu0QWD2%2Fv8H%2BBknUfcsgvBuqhjXLV3U%2F%2Bt7Ngw0ykOmMukcaz0%2BWzM6BaKf19NncKB%2FiqM%2ByCOFOOyh2BFpQHOl%2FRJb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f46af7de8700b3d-OSL
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
200 OK 236 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10966)
Size 236 kB (236230 bytes)
Hash bc16550299ad91fa40b73931d0523664
10662a525ec5a85675b45e7af4b6ff5db6e36c35
72f26433920220077f6147c24076fc0b1f40586a478bff92f39b707b03e54cc4
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7f46af7cdae81c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2
200 OK 3.4 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (3408), with no line terminators
Hash 78b3af87f2c4cb5d7f81c1650f6df5b8
c622b855c573cf953ccec67ba616d9a968a70707
eb33c8913bf21d7d302bf48e3c1f7a607bdfa9d482e5eb3ae4b383844d9d3a7a
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3f6bc763ca856d2
Content-Length: 24801
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:04 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: grohOsnLqURqMT2hG7ygSfIoiwN4lBXoWklGC0MhzlW6GgKUoVXwI/hwzOj43sLBzaGgfPHAvuGeZWosru1L2gLX8SD3QzKxIz4HqkOS15wBI2bfypodJM2/k5YX5aZa$KlPiVfAr6hruqCw0Ty9nxg==
cf-chl-out-s: 3h0lLx/10lkZseP78N2wZfYVNXPGTBTMY6aN6ruAGfPv4TGQpI5+0iuHY2fvYQ4hz6CSiWD+b6zvmJzDxbzsAVmAYMeuTTIOmgsZmwvm+vGMcQ9E5TJgJdyZRFhWmVSoXPayYqNzithTDmfsx4F9yPwuwSG3f6CgReBQjVj6/MI1r/zPdu9kXz8kcaCFTVMZ$/eMYQkvdCtyQUAJTzksqWQ==
server: cloudflare
cf-ray: 7f46af94cc8e1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/dokument/
200 OK 9.1 kB URL User Request GET HTTP/2 scribd.vpdfs.com/dokument/
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9564), with no line terminators
Hash 70596cf68ba59e7a914e1e9dcc24e031
c59c8e6f96a41b10534012f73aff789124518384
e642557712ee68679e083b8c0cea84ff461980b130c1f59a4d107fc4b1016e82
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /dokument/ HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scribdvpdfssess=kjb0dv7173v4dospep4t9pnsv2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ucRvpVlC5bLp2uHTkeOqNRXKhtIPRvb%2Bq9WvWRrZq7bHO88VgfCAw4f%2BUgnrtSTpolYvJSmuzY%2FOu%2FY9YH%2ByM88whSRlBCUXQgV6hT0crvRrppb7Og%2BVThhycvIkSzJr2zzP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f46af769f37b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.a-ads.com/a-ads-banners/468597/728x90?region=eu-central-1
200 OK 229 kB URL GET HTTP/2 static.a-ads.com/a-ads-banners/468597/728x90?region=eu-central-1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://ad.a-ads.com/2102186?size=728x90&background_color=abbdff
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type GIF image data, version 89a, 728 x 90\012- data
Size 229 kB (229152 bytes)
Hash c49123d739b494112cfa9eaffecd1c80
42d801de1bda31ad4ec59e26e65a3bbe0b363774
715c7a9365b5b570cfd47a139942867c466374a3743f83ecfd66ad30bbb04cfd
GET /a-ads-banners/468597/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: image/gif
content-length: 229152
x-amz-id-2: k6I4ah4k6gDxTrdIyZ9BoB4Aoa8aO3LkydJGizAkT/XF32f8xOxUC9KphtY36YQtQtU2K+txk44=
x-amz-request-id: QGKJG1FGX86BH809
x-amz-replication-status: COMPLETED
last-modified: Tue, 04 Jul 2023 10:57:31 GMT
etag: "c49123d739b494112cfa9eaffecd1c80"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: 0Cyk4gp4KB0oN9i6SLEEeHGsMqKKYBNA
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6cf219faedeeb5fa58df4c5eec537e3c
cdn-cache: HIT
cf-cache-status: HIT
age: 915401
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7f46af7a5ef1b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/api.js
302 Found 28 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 10 Aug 2023 07:56:59 GMT
access-control-allow-origin: *
cache-control: max-age=300, public
vary: accept-encoding
location: /turnstile/v0/b/7186c00a/api.js
server: cloudflare
cf-ray: 7f46af7aa8f8b505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7f46af7cdae81c06/1691654221037/9d51cfd27fe655f4d55d20e7244e60ac88bd80dc91e78f56000a90908972519d/x8bNAloVWmSoLUt
401 Unauthorized 1 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/7f46af7cdae81c06/1691654221037/9d51cfd27fe655f4d55d20e7244e60ac88bd80dc91e78f56000a90908972519d/x8bNAloVWmSoLUt
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/7f46af7cdae81c06/1691654221037/9d51cfd27fe655f4d55d20e7244e60ac88bd80dc91e78f56000a90908972519d/x8bNAloVWmSoLUt HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Thu, 10 Aug 2023 07:57:03 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gnVHP0n_mVfTVXSDnJE5grIi9gNyR549WAAqQkIlyUZ0AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApOucRrt2aWEiyBFpbPMTGPhVdmJzKSLpJn642X_H4ja-OV4JyOzb3gos_GPfsQsqZAOMK1Tp-qyICICjDNtNvkreSNXPfIULCK8zDVzHXlbTssHA-x01TPmuqMUKJLRUwo6323WHf0VyfL6VSm0x5dyB9ipWVrVdLuU3XFKuE_PwMtqyrFaCiK85rmELKnt6T5OJUiZKbejnOJ0dJaOEBqLKqzRva0QfTNNBEZJ8uhAbiY_jvfn1D_9PH8BG_yt1H0oUp-RDGuyYc1KMxaTUe0TExitipgxRngpMW7YNWkfEzMZ9Aqx-uaDmAnEGXsSmMhQ9wYue-U78HQxG-cuZ4QIDAQAB, max-age=20
server: cloudflare
cf-ray: 7f46af93db931c06-OSL
alt-svc: h3=":443"; ma=86400
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: a6eb734a51fba67aebe8fc32930febca
cdn-cache: HIT
cf-cache-status: HIT
age: 915401
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7f46af7a6f14b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ad.a-ads.com/2102186?size=728x90&background_color=abbdff
200 OK 12 kB URL GET HTTP/2 ad.a-ads.com/2102186?size=728x90&background_color=abbdff
IP
ASN #24940 Hetzner Online GmbH
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash 3a4c5396ac765e8d7f21f807c87ddc97
35177d43e62cfdfb657fc7fc2852c3a39d48c4c4
b45ed28b89bfa3d1ecac528f9264a2934de883ef14cc339a34d8dbac81c0ec3c
GET /2102186?size=728x90&background_color=abbdff HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://scribd.vpdfs.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
scribd.vpdfs.com/document/510641745/Top-Tips-to-Diagnose-an-LCD-TV
302 Found 9.1 kB URL User Request GET HTTP/2 scribd.vpdfs.com/document/510641745/Top-Tips-to-Diagnose-an-LCD-TV
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 malicious Sinkholed
GET /document/510641745/Top-Tips-to-Diagnose-an-LCD-TV HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 10 Aug 2023 07:56:59 GMT
content-type: text/html; charset=UTF-8
set-cookie: scribdvpdfssess=kjb0dv7173v4dospep4t9pnsv2; path=/; domain=.vpdfs.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
location: /dokument/
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Szd1tCOdu9BsSKqUlQtiqhQZP3IqllpviTXIpSnZHZfxxqjza4X1%2Fr62qq%2FZ0QGSj5LdXCL%2BXKPFcTWnw%2FGEds7W6r2jtuaUp4T4cXbbcobraxwv4y2bUWgccLevufQk6nef"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7f46af73caa4b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/b/7186c00a/api.js
200 OK 28 kB URL GET HTTP/3 challenges.cloudflare.com/turnstile/v0/b/7186c00a/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (28080)
Hash ebb6c998704c3ee8d6051e3eeb32d2bc
567d91b1f72c423454c6840d8e8dfb0a460bac87
27cf9c50f0d7817a79937d0115486db7debe659260a7a3b584a172cc0908d8b2
GET /turnstile/v0/b/7186c00a/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scribd.vpdfs.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7f46af7b594b1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2
200 OK 88 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6af0faf22f89610c971f416ee71ea561
f04eabe7cdbd8dd5d659853eaae9bb5edccdf409
da3793f6291676a90b707627e64ed5a219a08f72ea1a002ee67327f6cb707672
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1261299470:1691651273:juN-izaExJMryxn5yzD695UYV4TPPXAUvdAGqpDR8LY/7f46af7cdae81c06/3f6bc763ca856d2 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3f6bc763ca856d2
Content-Length: 2206
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:01 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: GhxJ7ca6UCCEsRbjlGzZWjXt3bXRYswetYPhbtO98ZxKH4neA+UaZ4PIezeYT5T8vhfcSrClJVplwXaG/Uv8PBX9Ou6LhrQBhQ1gO35bqKc0xFCgQweYpeHMFlM2EFxl05DqbJIuVR/mfN4KtTavVT5k0Z/1z8B38NVmsLSDjElAnfxgwYM+ZZyiGWTRhRWf5TBY5moSN1UMikB5LJeOucfx23idgJl6b8vRQHLtRja7NMkvf7OSANtfdI73NMfSv/YX7oTVHTtvA14o/rS0bc3wAht7UaRs8UBNHpQliTvJ3cMfGTgS62HGTD/iuUhDdgLNBD3jDA7WIyx3+A+6trhEvmrNvjRzpnl3PVgXiosv2dJ890IHIPlQ5G4Qnkqgcv6sEFAE1eEn2gQRbLntgw==$z/YnOYJIer8dafx7FrSyUA==
server: cloudflare
cf-ray: 7f46af8168cc1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7f46af7cdae81c06/1691654221037/SeuTkyqF26mnAEN
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/7f46af7cdae81c06/1691654221037/SeuTkyqF26mnAEN
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 34 x 97, 8-bit/color RGB, non-interlaced\012- data
Hash cf997e8d1d50637d5252ef30e48efcd5
28769114549f5582877a2bea849796e665d30d44
be8a05262058816d8a8fbfbf9b486f4b87fe72d35f2ba3b3cea7ae84cfc6db4c
GET /cdn-cgi/challenge-platform/h/b/i/7f46af7cdae81c06/1691654221037/SeuTkyqF26mnAEN HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:03 GMT
content-type: image/png
server: cloudflare
cf-ray: 7f46af932acc1c06-OSL
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
200 OK 9.9 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:6B:FF:33:88:3C:50:72:1C:E1:96:2F:6E:FB:D0:D9:32:9D:FF:2F
ValidityMon, 10 Jul 2023 08:21:11 GMT - Mon, 02 Oct 2023 08:21:10 GMT
File type ASCII text, with very long lines (10137), with no line terminators
Hash 15408dfe751cb9e47451aa3da1faf636
2c3660fb27f7dfb54cf39bf14f063fe24fcab529
1d799e4480b85e5c52fa8f544af846f4ae038df305a5c4e65812f101439c0b25
GET /css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Aug 2023 07:57:00 GMT
date: Thu, 10 Aug 2023 07:57:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7f46af7cdae81c06
200 OK 174 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7f46af7cdae81c06
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 174 kB (173638 bytes)
Hash e62b9b78a7b605fdecfabc6d64c55838
50a7655bd5b4078eb44c639a09fb7d619d96a15d
020d6212f40021ec9ad0010494ddb18239eb25db70f3d42e83c1162036cac31b
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=7f46af7cdae81c06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/eaedz/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 10 Aug 2023 07:57:00 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 7f46af7e9db11c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.97.1
104.18.15.101
213.239.209.209
142.250.74.131