Report - yes-pdf.com/book/2984/read

Report Overview

Submitted URL
yes-pdf.com/book/2984/read
IP
104.21.48.146
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-30 12:53:17
Access
public
Website Title
Group by Christie Tate Free Download
Final URL
yes-pdf.com/book/2984/read
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-04-29	410 B	327 B	192.243.61.225
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-29	826 B	57 kB	172.67.180.87
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-29	1.5 kB	846 B	192.243.59.13
yes-pdf.com	555013	2021-04-11	2021-04-11	2024-02-16	16 kB	2.4 MB	104.21.48.146
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-30	1.1 kB	42 kB	216.58.207.227
generationdissolvedplease.com	unknown	2023-09-18	2023-09-20	2024-03-22	444 B	31 kB	192.243.59.12
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-28	423 B	418 B	3.126.111.42
conceivedtowards.com	unknown	2024-04-29	2024-04-30	2024-04-30	917 B	17 kB	172.240.253.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-30	medium	generationdissolvedplease.com	Sinkholed
2024-04-30	medium	unseenreport.com	Sinkholed
2024-04-30	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

Files detected

URL
yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
IP
104.21.48.146
ASN
#13335 CLOUDFLARENET

File type
PDF document, version 1.4
Size
66 kB (65536 bytes)
Hash
63eb588a002c1b95116a0850eeaaa8a0
2ec5c5fb01260c780a524ec215e595e3b79f7f79
c4fc756dfdd32cb83cea8619b995cc8cf8bca40f1ab98f8c20191b902e8fe348

URL
yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
IP
104.21.48.146
ASN
#13335 CLOUDFLARENET

File type
PDF document, version 1.4, 261 pages
Size
1.9 MB (1922313 bytes)
Hash
0d12f16b7f2570ce91345e02cf056e7e
8953b525db49055d778f0c62e38f1f109982c25e
93f642fba0f3f84793b96a0eea2296efdeeda7a9624eb43bcbd622631f00fee4

JavaScript (11)

	URL	Size	First Seen	Last Seen
	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-21
Pretty URL capaciousdrewreligion.com/advertisers.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-21 03:56:08 Times Seen37905071 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	yes-pdf.com/themes/default/resources/js/pdfjs/build/pdf.js	595 kB	2023-06-18	2024-04-30
Pretty URL yes-pdf.com/themes/default/resources/js/pdfjs/build/pdf.js IP 104.21.48.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-18 15:25:56 Last Seen2024-04-30 14:53:25 Times Seen20 Hash 2930b87de659ebddfe62fb26a3284523 c35ab91f0085587c8bad47105acec98ea2ce001f 0faf237f900ab5f8b7a28ccd53d390860d66be6a2c7c0a2019c44160a83a616c Loading...

	yes-pdf.com/themes/default/resources/js/custom.js	8.2 kB	2023-03-11	2024-04-30
Pretty URL yes-pdf.com/themes/default/resources/js/custom.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:40:48 Last Seen2024-04-30 14:53:25 Times Seen69 Hash b1a5cdc47279076afff92b686a994960 68818645865811b56b40b3b3dda3c732bcd3bad2 c35355a763e74bbd9a72e94aa3775296ca065a4fb0c9a17d91bfeeeb7aed1df6 Loading...

	conceivedtowards.com/c1/3e/1d/c13e1d131793ff6e54c9449b617baa80.js	44 kB	2024-04-30	2024-04-30
Pretty URL conceivedtowards.com/c1/3e/1d/c13e1d131793ff6e54c9449b617baa80.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 14:53:25 Last Seen2024-04-30 14:53:25 Times Seen2 Hash f7077c4c4187829640252d225723beca c455d992206bb04ed7d887115c7d723d4639d309 e2e93890189e15026fc0e2279496cf868f04638199e10c0e113de38047bf4a92 Loading...

	yes-pdf.com/themes/default/resources/js/popper.min.js	19 kB	2023-03-07	2024-05-16
Pretty URL yes-pdf.com/themes/default/resources/js/popper.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:10 Last Seen2024-05-16 23:22:39 Times Seen681 Hash 135fa9e662ea1d3b1277246db64b8372 af20d218eb3097c5d752e22a0a5712c8df9c127c 5353f2b2a0fc4032834e44c622da9f519ca08b12252c849389fcf8fa60fe8c42 Loading...

	yes-pdf.com/themes/default/resources/js/bootstrap.min.js	49 kB	2023-03-07	2024-05-20
Pretty URL yes-pdf.com/themes/default/resources/js/bootstrap.min.js IP 104.21.48.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-05-20 08:35:20 Times Seen402 Hash fe1457ee36b1ce754d11d5708492c960 03efb6335562caf52cb91eb3e7c2f5f18c62fb96 65f97dab23e8383e4f9e5b07722014f704b9cb5dc820086014ec715c55e75e33 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.js	364 kB	2023-06-18	2024-04-30
Pretty URL yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-18 15:25:56 Last Seen2024-04-30 14:53:25 Times Seen19 Hash ce2005d420a4fc0a354ec4758f0bc3c5 bb0dca771491644b476919495c9bd4ab78c03f7e 74e13a18e2cd0833b6810c2b528ec7a30044a8b33ef2a7e4b397aef3d64fac6b Loading...

	generationdissolvedplease.com/52/39/00/523900b911cd53a7e857cecb4de50693.js	82 kB	2024-04-30	2024-04-30
Pretty URL generationdissolvedplease.com/52/39/00/523900b911cd53a7e857cecb4de50693.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 14:53:25 Last Seen2024-04-30 14:53:25 Times Seen2 Hash bd7f5605b52403b8e35cbab949c8e7f4 829581ec78a16078778bbb10f2d6b2ff66a8e9aa 74f18e74fff89164318ac7657122985dd29085d3128c36cbc422a66cc0a6a7d1 Loading...

	yes-pdf.com/themes/default/resources/js/jquery.min.js	87 kB	2023-03-07	2024-05-21
Pretty URL yes-pdf.com/themes/default/resources/js/jquery.min.js IP 104.21.48.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-21 03:13:18 Times Seen115608 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	yes-pdf.com/themes/default/resources/js/plugins.js	81 kB	2023-03-11	2024-04-30
Pretty URL yes-pdf.com/themes/default/resources/js/plugins.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:40:48 Last Seen2024-04-30 14:53:25 Times Seen63 Hash 7e69d9cd5193824963c11aad7840191f 1184abb512d85588b5feb20fb3a9734b2452d406 2f0be7626fc56feccf3ea6e6250f4bdce5825e1bafced82bfe556460a20137ae Loading...

HTTP Transactions (36)

URL IP Response Size

yes-pdf.com/images/site-view-options/Yes-PDF.png

104.21.48.146

4.2 kB

URL
yes-pdf.com/images/site-view-options/Yes-PDF.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 164 x 38, 8-bit/color RGBA, non-interlaced
Size
4.2 kB (4150 bytes)
Hash
6478539c9928db5bc77e5efab89aa3a1
96944b4c89c6c082f93b0b4b30c4d4af9d8c0385
7b7116bd498fe8ff8bc8d7f0313c8d2aedeb0df80ef3f0067e4fe60285b2d0d5

HTTP Headers

GET /images/site-view-options/Yes-PDF.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: image/png
content-length: 4150
cache-control: public, max-age=604800
expires: Sat, 04 May 2024 12:29:26 GMT
last-modified: Sat, 02 Jan 2021 06:55:26 GMT
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 260606
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vYB5dx0yZkmv4TXlozwn6TL5L0W5DR25FfZEO91k8uYJQ13jBD6N5pf%2BaTPxcNjXXTHbayU9pknPD6OlWuga%2FE0Z%2BDaMJH7WEu%2FF04XUAHE5ANtwWyCMStNTP871jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abe29ea656b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/css/plugins.css

104.21.48.146

82 kB

URL
yes-pdf.com/themes/default/resources/css/plugins.css
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (51483)
Size
82 kB (81487 bytes)
Hash
1065ff4085f0a4b1fc48cb5d93d961ea
62d74507556ed2f4278275d59ab62857174220d3
704653f76f28e2fa142345b97b08fe28aafe8791099933ecba1020924806889b

HTTP Headers

GET /themes/default/resources/css/plugins.css HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=604800
expires: Sat, 04 May 2024 12:03:51 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 262141
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k%2BVwbUj2duYOWbUNC3fkZ4bQ2wJgUi%2FE5434lFsviC9cnQkgjdxwFM29626CAsW7wDpsmjI%2FGdFHdJW0eDMVIuldMeltGANfKHtEr5cdz6PL63XQ3jdi4G9edKmDOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abe29e9f56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

7.7 kB

URL
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yes-pdf.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 03:25:26 GMT
expires: Wed, 30 Apr 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 34046
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

yes-pdf.com/themes/default/resources/js/bootstrap.min.js

104.21.48.146

21 kB

URL
yes-pdf.com/themes/default/resources/js/bootstrap.min.js
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (48664)
Size
21 kB (21338 bytes)
Hash
fe1457ee36b1ce754d11d5708492c960
03efb6335562caf52cb91eb3e7c2f5f18c62fb96
65f97dab23e8383e4f9e5b07722014f704b9cb5dc820086014ec715c55e75e33

HTTP Headers

GET /themes/default/resources/js/bootstrap.min.js HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=604800
expires: Thu, 30 Nov 2023 07:11:18 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 1830
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zu9OOJVyoJGW6djrVxXa2MTcoF6HjwarfsUVGY%2Bm0IgxA2Mu52kstSjBW2cqZ%2BiwnfCIpYSBmuG4Vdv%2B%2Fm7gXdudVD%2BX8MEHblxxfAtyqIalleFOdrAou8SJp7LjYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abe29ebc56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

generationdissolvedplease.com/52/39/00/523900b911cd53a7e857cecb4de50693.js

192.243.59.12

30 kB

URL
generationdissolvedplease.com/52/39/00/523900b911cd53a7e857cecb4de50693.js
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30057 bytes)
Hash
bd7f5605b52403b8e35cbab949c8e7f4
829581ec78a16078778bbb10f2d6b2ff66a8e9aa
74f18e74fff89164318ac7657122985dd29085d3128c36cbc422a66cc0a6a7d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /52/39/00/523900b911cd53a7e857cecb4de50693.js HTTP/1.1
Host: generationdissolvedplease.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Apr 2024 12:52:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 26f26cffab419f51c3cd1308c499347d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

33 kB

URL
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yes-pdf.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:38:02 GMT
expires: Fri, 25 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 468891
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

yes-pdf.com/themes/default/resources/fonts/fa-regular-400.woff2

104.21.48.146

12 kB

URL
yes-pdf.com/themes/default/resources/fonts/fa-regular-400.woff2
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 12188, version 1.0
Size
12 kB (12188 bytes)
Hash
33f727ccde4b05c0ed143c5cd78cda0c
0654fee7e908814ecc3baf36bfc556520f491c17
1b4c97a2809cdb53153139544e1f5db34e4917c8f01d2dd94cb9519e24e1ab3c

HTTP Headers

GET /themes/default/resources/fonts/fa-regular-400.woff2 HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://yes-pdf.com/themes/default/resources/css/plugins.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:53 GMT
content-type: font/woff2
content-length: 12188
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 11:14:01 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 437932
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PZIYAeffMqA1RasTlMuMVJnGsac6hZ9c9PPbi84FzqtxDLMVKGunCvfeKveBgDe9D%2BBVFFHdUdKp9xO70n20U320mAovTPd67amcextsx%2BE%2F%2FwHJvdk7prcUt9ENpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abe86d6056b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/book/2984/read

104.21.48.146

41 kB

URL
yes-pdf.com/book/2984/read
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (680)
Size
41 kB (41251 bytes)
Hash
1fe8df8e91aedc006f78da472bcc5476
c7495b111ab948d8ab6bcf2e0ca56842ad65ebad
5741d1299295417211dfa29dff91ab96218fc2ee953e23c017ccb7e642138ab0

HTTP Headers

GET /book/2984/read HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; path=/; secure
activeLanguage=en_US; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bk%2FTJ53T5aUf5Nm13XJLTlKwUacApzUasB61s8OKAZ7w0z31r%2FFXqfgPn5S5%2FrGz2rdktaPozx%2BXp8wJBJXX7U19iL17xE5PlQLZA7Zdg%2FYNS8mTwTL8EiqC2lb5ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abdbefc6b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

3.126.111.42

40 B

URL
proftrafficcounter.com/stats
IP
3.126.111.42:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
151f974314cec5416fb949d1646e483a
eae158a5092f7f97c21642679c448b7ae81e9f13
1f6c1b41860861a23b6526542eb04032b814b000d34cda9c0cf436e8ebe32bf7

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yes-pdf.com
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Apr 2024 12:52:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://yes-pdf.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=fba15c2d-56cd-40d4-be1a-03c37835f049:1:1; expires=Fri, 28 Apr 2034 12:52:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

yes-pdf.com/themes/default/resources/css/style.css

104.21.48.146

11 kB

URL
yes-pdf.com/themes/default/resources/css/style.css
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (59327), with no line terminators
Size
11 kB (11144 bytes)
Hash
121b175e0cce89a3ed2943159b504985
e78a77017c290d9f2a40f0b24998a9b7fad68518
fd95dd0942752db7e0efa413793ac8612986eecaac5e70b6067da6aa6a156180

HTTP Headers

GET /themes/default/resources/css/style.css HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 08:36:39 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 447373
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FRkqE%2BV7ip5sF6vemukGp92lHYRQGpKW3x42UADNCtY8AclIph5WMU7z6%2Fyep%2BaGkQyUR6I6ScWE4y1M6iNP2AE0z54QW7b%2FyDn4%2BhvDzmlz2JkW9t34v8c3cB26pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abe29ea456b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

conceivedtowards.com/pixel/purst?dl=0&th=0&sc=0&rs=1945&rd=1945&fd=877&bv=24.4.6923&tmpl=70

172.240.253.132

0 B

URL
conceivedtowards.com/pixel/purst?dl=0&th=0&sc=0&rs=1945&rd=1945&fd=877&bv=24.4.6923&tmpl=70
IP
172.240.253.132:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1945&rd=1945&fd=877&bv=24.4.6923&tmpl=70 HTTP/1.1
Host: conceivedtowards.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Apr 2024 12:52:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

conceivedtowards.com/c1/3e/1d/c13e1d131793ff6e54c9449b617baa80.js

172.240.253.132

16 kB

URL
conceivedtowards.com/c1/3e/1d/c13e1d131793ff6e54c9449b617baa80.js
IP
172.240.253.132:0
ASN
#7979 SERVERS-COM

File type
JavaScript source, ASCII text, with very long lines (44107), with no line terminators
Size
16 kB (15834 bytes)
Hash
f7077c4c4187829640252d225723beca
c455d992206bb04ed7d887115c7d723d4639d309
e2e93890189e15026fc0e2279496cf868f04638199e10c0e113de38047bf4a92

HTTP Headers

GET /c1/3e/1d/c13e1d131793ff6e54c9449b617baa80.js HTTP/1.1
Host: conceivedtowards.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Apr 2024 12:52:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f0b0eec2b39fe61a54e73705e3a66629
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

capaciousdrewreligion.com/advertisers.js

192.243.61.225

0 B

URL
capaciousdrewreligion.com/advertisers.js
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Apr 2024 12:52:53 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1b842ca66cc34a5d829ed43fac89d2c4
Strict-Transport-Security: max-age=0; includeSubdomains

yes-pdf.com/images/site-view-options/images.png

104.21.48.146

4.2 kB

URL
yes-pdf.com/images/site-view-options/images.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 225 x 225, 8-bit colormap, non-interlaced
Size
4.2 kB (4157 bytes)
Hash
654879526f4c2e73c31a9bafd7ccd5bd
f148e0c21bf883e52a65e76c11b7db45dd2647a2
a3c4511f4cdb60058ee8728630a76126cf67b082850b0c7a2ea8e9222310a57d

HTTP Headers

GET /images/site-view-options/images.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:53 GMT
content-type: image/png
content-length: 4157
cache-control: public, max-age=604800
expires: Sat, 04 May 2024 13:55:33 GMT
last-modified: Fri, 22 May 2020 18:39:12 GMT
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 255440
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=volC8hZN7X0tpjSYhs9f4nUV6ST7IAMmbuZ%2FFpFbTGBfkzBMp%2B8bkT3qmcl9HRG%2FhVBEG3ynACA2GmpiiNubu9N1EkYDHxGGkWCe51WFnkAw4YjsPzwa8pNQZ1FW2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abecda7856b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/book-texture.png

104.21.48.146

200 OK

11 kB

URL GET HTTP/3
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/book-texture.png
IP
104.21.48.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectyes-pdf.com
FingerprintF7:F2:22:54:EB:F2:33:06:5E:59:F3:E3:7D:03:B6:60:17:61:CC:0B
ValidityWed, 17 Apr 2024 11:38:41 GMT - Tue, 16 Jul 2024 11:38:40 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
11 kB (11318 bytes)
Hash
b0c431efaf3e4cae886f745329f4f230
42780eb211af46a99634a62aad3224971d90ad57
60830356da086d79fd811b3dadd0cd21c72b07ead6216570c9ad1f174396c24b

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/book-texture.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 11318
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 09:53:18 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 10776
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A8bDD9hYrt5kab6ymlRUpWu4xpOFwPbGOMFQqUVXDv%2Bumbf2uop04hQPvDtgOxP1XsNb7u65sxAxp1n7B98RAKh%2F9KK%2F0x2XUbWaw2BOOaOACMXuOjHfhsDN8n%2BbPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abefad7556b4-OSL
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

28 kB

URL
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27646 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:53 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 1213cc220f1175327dae8810d2b6b0e6
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 30 Apr 2024 12:52:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I4bO4yY376WXLABqTFZsV%2B9Jbv2Taqm55qMivigRrLRjHztx%2F4pepBlC%2BQOpqi2qIEouT7aSZiqVNNBcePf8qh8yC2tpT4CGywd8L6TGZ7qa4N5tf2UMDKUX%2BkX5DZi5425gy6NNJvqRABAKH1imSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abeb7a761c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/build/pdf.js

104.21.48.146

200 OK

114 kB

URL GET HTTP/3
yes-pdf.com/themes/default/resources/js/pdfjs/build/pdf.js
IP
104.21.48.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectyes-pdf.com
FingerprintF7:F2:22:54:EB:F2:33:06:5E:59:F3:E3:7D:03:B6:60:17:61:CC:0B
ValidityWed, 17 Apr 2024 11:38:41 GMT - Tue, 16 Jul 2024 11:38:40 GMT

File type
JavaScript source, ASCII text, with very long lines (1670)
Size
114 kB (114002 bytes)
Hash
2930b87de659ebddfe62fb26a3284523
c35ab91f0085587c8bad47105acec98ea2ce001f
0faf237f900ab5f8b7a28ccd53d390860d66be6a2c7c0a2019c44160a83a616c

HTTP Headers

GET /themes/default/resources/js/pdfjs/build/pdf.js HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ny%2FMJIVuxwJPJR6R6jS9f7HokTXqtYpnyK7y7wlg907t%2FPM2%2BZSp2OBGyp2uobsjgGnyJgqwU1FymNOkRnNrKBrHFMVjEUXEQuK0VzVDN5M%2BxnBZU84HxfVaYrS8yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abeb98d556b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

28 kB

URL
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27845 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Apr 2024 12:52:53 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c73688cc6333dd478615fa8fd0d04828
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 30 Apr 2024 12:52:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yYO6gWtNysVztZUaTStnzQn53dBPd5AiVmsIMSklbF20lRiWk9o5p8lE6BvibZ6aSgtxnIq6gMJsVIBzDAnKfhsOQZLkGm3pxWDo0DkwIGg7baD0nEcxv%2FlR0t7Fj9dDaUE0ejPpDQR69hKxnobh0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abe83cddb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-sidebarToggle.png

104.21.48.146

225 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-sidebarToggle.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
225 B (225 bytes)
Hash
6c365a103073ff2d8303c68856df0a4e
ff7ef30371233abe8c548c2f3d5cbb335183ca92
b97006dda25f0b3908ce7604108261ff8ab1e1984118f3dac296428bcf34b1a3

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-sidebarToggle.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 225
cache-control: public, max-age=604800
expires: Mon, 06 May 2024 17:03:05 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 71389
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EP9crvAJuRQpfcVFVstH89i8mKHKyi%2F%2B7P%2FKF%2Bq8nqebf8VHci0IZJLGATjCS5wrs3wXg0Cx0ky0YldBxPYt44hyGXd0GQh4aM9N0EgYvNFxj85W6k0VvYXrhK6lrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6556b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-menuArrows.png

104.21.48.146

107 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-menuArrows.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 7 x 16, 8-bit/color RGBA, non-interlaced
Size
107 B (107 bytes)
Hash
0f776a81f64ed3775ce1917917879e4b
acbbc7071a0641a10e1d50991d1abbfa26b5dce9
59280ac4ec15b3176cd6948fa4d2319698d484c971f432eb8454dd851416e5dd

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-menuArrows.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 107
cache-control: public, max-age=604800
expires: Mon, 06 May 2024 17:03:06 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 71388
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QUGRvilg%2BRlBJu1p9ab%2FFBwQlVydffouJaNW%2FzdSohdi3A5hD5dX14HpD0BQnCgKO1ZufgK%2FzDPKsdJker9irLUgIZKWRVzUhIllLpoIbb2JrEGZIzLxESVODsTe6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be7056b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomIn.png

104.21.48.146

136 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomIn.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
136 B (136 bytes)
Hash
1ec009b6c54709afa73d99db10c57039
838adbe15d84daceec25cfd4d8d6ac1580b4f693
1f18129857ba039238716c12d5dab4e23e30ff73e3e4d217cf7b65bc058fb22c

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomIn.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 136
cache-control: public, max-age=604800
expires: Mon, 06 May 2024 17:03:05 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 71389
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HzuY%2F0yyQX2Ndbg%2FzUKqxNnrUFEMqHyBSgg4Ook7QPpErW2p2TLVJ09lFh6JEsx9afoQ6I0T%2FV9hrWphcKTMdZYKbkmMWZvqDgRgaVaeExmN%2BrDKPuZume5adnJC4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6e56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomOut.png

104.21.48.146

88 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomOut.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
88 B (88 bytes)
Hash
e1256ccd98a1865848fb957009e6f7a9
63a719d5e6a708a22014f20abc0722cd54ffb0f6
bea530f1ac565fe3b95be3d4599508b9947fa6ef50114bc33216802342ff5187

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-zoomOut.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 88
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 09:19:42 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 531192
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=16OZnIB1teVX%2F8NEvl5gIO0vAZIVwIXWj6yb%2BGm%2F5knCvZJ48MLn1Q1TubrVYlJG2Yo0q6hJBwBDBJOYD8GBff3G7HYwNgDAhTV2D8g%2FnUIvB797ggJJcbEm67%2BN1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6d56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-search.png

104.21.48.146

309 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-search.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
309 B (309 bytes)
Hash
273cffad049d5b4e1f0a9d7af149e597
14c3ef60d3979df9e8d13cf39cad10ed043f5578
0a0c8700265901b93feb0814d2db720d0e4f0b66ebfa98f717d1dc4e28e36646

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-search.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 309
cache-control: public, max-age=604800
expires: Mon, 06 May 2024 17:03:05 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 71389
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rFK0to5eDRD5X%2FpGgrbovjN4hKid6ScU2uvj5myGjQ7ppqffes867BEfp89E82bZxb32UoCBfQjunuQHIWKUWLHv7KCvCszyueIKDA1PLz0oFF%2FWWYsIkxkZ0%2FJbWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6656b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-pageDown.png

104.21.48.146

238 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-pageDown.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
238 B (238 bytes)
Hash
d86ed7c2ca30e08f7f3b499de2dca107
6e10286da3a52e0bba782d0fc4a7c33d10c8f4b9
3e1aa1df58b9ba316c01f4e6ce1099e0fc56948836433b9fb34939de5a5e0e98

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-pageDown.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 238
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 05:59:59 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 24775
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tJgBRh%2FKz2BXT9TJnW6WwjDH3TJSA8Hljtd9e%2BUfsyLYlKB6a2g2zbmAxMdm9W%2FAS8zNixh8wtD7j1ght7g%2FtkSc4KCYCLgKBkPWYb%2BSPNa2inKmFe1WhfEkaqcEWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6956b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-pageUp.png

104.21.48.146

246 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-pageUp.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
246 B (246 bytes)
Hash
c270b41d7a0ff9892ba9ac67d789a841
b1eae4614fb964b6d0483f114f3dd2b49ec1b64a
8722c44457c51f5090545306b32627b6907ace334e615bb5eba264e7aeba1b18

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-pageUp.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 246
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 05:59:59 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 24775
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i%2BVhNWzO9z2SIkSdUnKLMydpmM80sLt20JgBIEqWv%2FmS9V2ZS4%2FsAOjssIv%2FlDI%2FNBD1O4%2Fb1WpNPeTdpvUamWiHW8BAZniG9Pcw8ekb4CAZ7IXL%2FZFOgtkKu6hsSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6856b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-presentationMode.png

104.21.48.146

321 B

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/toolbarButton-presentationMode.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
321 B (321 bytes)
Hash
fb94ca39aec07d85a29fdb62b0b03b24
3d206e303f9663dca95482df9abe55a08851c574
f386bff1c7c4986544a70003bd5b6b730153f0788e4d12ffb1372b709d2468b9

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/toolbarButton-presentationMode.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:54 GMT
content-type: image/png
content-length: 321
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 07:06:10 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 20804
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5gkFgJYngQpD8MIuQIRCpZOynwgwaRupMMCLAuYigMZBW50J4fDog9tzYSLW0QOmTQwOeO0INLDKtiVqL%2BJojfUYGXgj6FnodE7dhQqfFODC3YbjS2KXF%2FpOQIs3mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abf0be6b56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/locale/locale.properties

104.21.48.146

4.3 kB

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/locale/locale.properties
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.3 kB (4314 bytes)
Hash
f91e7e8bc10148bcdcb953758a59a9fb
ebf2bace4f530a3f959bdf2a18e1a80aed0b2274
5ed602d2a1d37bae21dad34f1b933b6709cdcc8bbce9da0594e73946c83d01a9

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/locale/locale.properties HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:55 GMT
content-type: application/octet-stream
content-length: 4314
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yDbyRRI1Oifvo909LpUTt1nS%2FFtxx46wMlpNwKB711ZKhOk1gSb0xgQkuezJKtbE5OjHffMpGNTFjX1HArS%2Br1wXSmjg70rzmquZNLlLCTHghgB3Wgjw1%2FAUOTaMsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abf0be7156b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/locale/en-US/viewer.properties

104.21.48.146

7.5 kB

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/locale/en-US/viewer.properties
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text
Size
7.5 kB (7539 bytes)
Hash
6e373faff4857e0dd3539b2dec5db752
2210dcf8920f2d5d58984b8266264262b9a61cea
1d4bb18d02f92ae53db21aef31cecafd6f465f3a636e83ee4bc29968f33c5976

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/locale/en-US/viewer.properties HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:55 GMT
content-type: application/octet-stream
content-length: 7539
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0nohB4nMjOMNPPGypdnddq8W9KTUZN%2FPD%2BkeFtljoVUVcJ3fdS4%2Bw824SBjS0d%2BZohxuQMksFU2UTnVzW%2FFJcSsg8rmELjrvwnPyj%2BpNWwSZwqIJB8rPyjHxiCrokw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abf44a5956b4-OSL
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=523900b911cd53a7e857cecb4de50693&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12

192.243.59.13

1 B

URL
unseenreport.com/pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=523900b911cd53a7e857cecb4de50693&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=523900b911cd53a7e857cecb4de50693&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Apr 2024 12:52:55 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7c5d2f159ac2db6a4bb23f883b4a11b1
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c13e1d131793ff6e54c9449b617baa80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12

192.243.59.13

1 B

URL
unseenreport.com/pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c13e1d131793ff6e54c9449b617baa80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=fba15c2d-56cd-40d4-be1a-03c37835f049&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c13e1d131793ff6e54c9449b617baa80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=12 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Apr 2024 12:52:55 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a1ac8cf6fa405b4b321271d81d1ba3a
Strict-Transport-Security: max-age=0; includeSubdomains

yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf

104.21.48.146

66 kB

URL
yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PDF document, version 1.4
Size
66 kB (65536 bytes)
Hash
63eb588a002c1b95116a0850eeaaa8a0
2ec5c5fb01260c780a524ec215e595e3b79f7f79
c4fc756dfdd32cb83cea8619b995cc8cf8bca40f1ab98f8c20191b902e8fe348

HTTP Headers

GET /eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
range: bytes=0-65535
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Tue, 30 Apr 2024 12:52:57 GMT
content-type: application/pdf
content-length: 65536
last-modified: Wed, 18 Nov 2020 18:01:56 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
content-range: bytes 0-65535/1922313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FU1MOk6aH2L%2BeU%2FEB0d2uDHgkKEmOBG0Fop9eHnt8jUyasChjeyoqNz%2BjzgUk6U4rdhW2sWrgIz4tt8fEiGJzti%2FDSmU8FUp0pl2D%2FDM7QnTBho7FgoXUXLqIls68Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7ac01086456b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf

104.21.48.146

1.9 MB

URL
yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PDF document, version 1.4, 261 pages
Size
1.9 MB (1922313 bytes)
Hash
0d12f16b7f2570ce91345e02cf056e7e
8953b525db49055d778f0c62e38f1f109982c25e
93f642fba0f3f84793b96a0eea2296efdeeda7a9624eb43bcbd622631f00fee4

HTTP Headers

GET /eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:57 GMT
content-type: application/pdf
content-length: 1922313
last-modified: Wed, 18 Nov 2020 18:01:56 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ZjkZAKrNj4yMZTV4%2Bh0%2FvK6boPWV6Hywgh6ERh5X9mNv2mcvddYrYls2NduDxryiV27Eit97ZdERK2OloMscmQDR93VJcMZ0MGUd6CL6BMU%2BJmITNLf0hs4UYMTBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7abfa187a56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf

104.21.48.146

22 kB

URL
yes-pdf.com/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
OpenPGP Public Key
Size
22 kB (21769 bytes)
Hash
a163cc1c793757da69e525cb79544929
3912ba6350afb499d08a096644572fd07d039162
d69db43edc34d49e95295f526f3e1958816cd4dd1736d66d24baf141a46a2328

HTTP Headers

GET /eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.html?file=/eBooks/2020/November/5fb48ea548f8a/9781982154615.pdf
range: bytes=1900544-1922312
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Tue, 30 Apr 2024 12:52:57 GMT
content-type: application/pdf
content-length: 21769
last-modified: Wed, 18 Nov 2020 18:01:56 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
content-range: bytes 1900544-1922312/1922313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=55RfH2lEYvsmHIM0XRZ5wWGgmZSRGHji%2FZCh7ZHCdz2ucaeBehnbPCyQt76sPJey34MXTZqx6Xt1htf6sa1%2BSWj%2B3tASEfjYYqUODetAO%2FoQD21hsIP4Mln3Y9MUTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7ac01188556b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/loading-small.png

104.21.48.146

7.4 kB

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/loading-small.png
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 17, 8-bit/color RGBA, non-interlaced
Size
7.4 kB (7402 bytes)
Hash
9244a600a36f650764a9512791792ec8
c1abf9b89af7392824f2228312785a899df224a0
826d7d78fc6fb07d0546261d93f82e109225ab81ba612b7eeefec942da66f7e9

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/loading-small.png HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:58 GMT
content-type: image/png
content-length: 7402
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 08:40:24 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 15153
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BMfr5lDCThigJ1H%2Fr%2BeICc7Jdm5OxtZVkzMNqohoa7rMCPOb53QRbHQyNuB01mpw%2BYe1h%2FggMqEbRw%2BT6RL9vsWzoCmoO19L7qx7zL9Xa5Fvqe%2BMYlqia6ivmXe%2Few%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7ac07e8be56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/pdfjs/web/images/loading-icon.gif

104.21.48.146

2.5 kB

URL
yes-pdf.com/themes/default/resources/js/pdfjs/web/images/loading-icon.gif
IP
104.21.48.146:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 24 x 24
Size
2.5 kB (2545 bytes)
Hash
faa74e8c61fc64d5edb11613c7eead2c
e043879d3ee94a3edf10260f21f44bfa4a6fc66e
483c4a0396691993a641ec409c44b8b7e1daab0ae7e2b2944c4bc59520bb7655

HTTP Headers

GET /themes/default/resources/js/pdfjs/web/images/loading-icon.gif HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/themes/default/resources/js/pdfjs/web/viewer.css
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fba15c2d-56cd-40d4-be1a-03c37835f049%3A1%3A1; pp_main_523900b911cd53a7e857cecb4de50693=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:58 GMT
content-type: image/gif
content-length: 2545
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 08:40:26 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 15152
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0%2FZgPM8n7BU8mb1uGjTUt9pAxgOsmEC16UyaxbII7NlEPPBVCEQX3TEkigr6%2BOmdgzI62tAWyRdY5XJWwlFDktIKAEZjtt1NAdvO%2FKHpS%2BhLwwr0I9HxrycVJfempQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87c7ac07e8bb56b4-OSL
alt-svc: h3=":443"; ma=86400

yes-pdf.com/themes/default/resources/js/jquery.min.js

104.21.48.146

200 OK

87 kB

URL GET HTTP/3
yes-pdf.com/themes/default/resources/js/jquery.min.js
IP
104.21.48.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://yes-pdf.com/book/2984/read
Certificate
IssuerGoogle Trust Services LLC
Subjectyes-pdf.com
FingerprintF7:F2:22:54:EB:F2:33:06:5E:59:F3:E3:7D:03:B6:60:17:61:CC:0B
ValidityWed, 17 Apr 2024 11:38:41 GMT - Tue, 16 Jul 2024 11:38:40 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /themes/default/resources/js/jquery.min.js HTTP/1.1
Host: yes-pdf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yes-pdf.com/book/2984/read
Cookie: PHPSESSID=a88702e17c8e037f2a087a9423211648
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Apr 2024 12:52:52 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=604800
expires: Fri, 01 Dec 2023 04:41:14 GMT
last-modified: Tue, 25 Dec 2018 13:04:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: HIT
age: 1830
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2BwZDvlr3tQB4asqpy6Gb80cSuQdJ03f9wkUiLKy1ob629wG1J0A7BJzlALnx%2BFKytm7HsJdWJ3WGcVwnQSrTrat58eF8a3XyYPwqf%2FuLpjSbUK4cwgiX67fDuKpvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87c7abe29eb256b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

URL

IP

ASN

File type

Size

Hash

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations