code.jquery.com/jquery-3.2.1.slim.min.js
200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1693126796.dop222.sk1.t,1693126796.cds264.sk1.hn,1693126796.cds253.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a423989c445f66ef1fe69025a8337f24
79df0189625f93f67c35c99c9bd06e5ea200c165
f457ea10f3219a750a8fcce03499c06d1679e20f1e12bbdf924f433534835a3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Aug 2023 08:59:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 0f98634f04a08f651bd38c7430a1264f
8cbc2e42c071e1a4c0d3df3ad9fd1aed474bbb40
e1f8d695582012778e79ce2ef271e29e94ae00863ec19efb01c8bfd8224a7ed2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Aug 2023 08:59:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
200 OK 83 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-88CJJ1TFNT
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint4E:35:EC:AC:A4:3A:09:F9:F3:9A:26:43:94:A7:BA:2C:01:54:DA:12
ValidityMon, 07 Aug 2023 12:16:40 GMT - Mon, 30 Oct 2023 12:16:39 GMT
File type ASCII text, with very long lines (3034)
Hash 42665c7346667716b944ea175e176782
bf381a24f7d24b489b04094dd9d7d2e1d64de545
9bb2463e618b25302eb50b64a97af349717c32d8e4facf03ce6ca3ed42329a1a
GET /gtag/js?id=G-88CJJ1TFNT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Aug 2023 08:59:56 GMT
expires: Sun, 27 Aug 2023 08:59:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82640
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 0f98634f04a08f651bd38c7430a1264f
8cbc2e42c071e1a4c0d3df3ad9fd1aed474bbb40
e1f8d695582012778e79ce2ef271e29e94ae00863ec19efb01c8bfd8224a7ed2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Aug 2023 08:59:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
200 OK 14 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: a6eb734a51fba67aebe8fc32930febca
cdn-cache: HIT
cf-cache-status: HIT
age: 1020833
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7fd31f0db8471bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scribd.vpdfs.com/document/621188513/Alex-Huneycutt-s-Curriculum-for-the-Solo-Artist-RadioRunner
302 Found 6.2 kB URL User Request GET HTTP/2 scribd.vpdfs.com/document/621188513/Alex-Huneycutt-s-Curriculum-for-the-Solo-Artist-RadioRunner
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
Hash 7b4114faa411d059a9a5ac4b5b4d9dee
277da4486916fa3a4ab3375f47bc98f58dbf90f6
60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /document/621188513/Alex-Huneycutt-s-Curriculum-for-the-Solo-Artist-RadioRunner HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 27 Aug 2023 08:59:55 GMT
content-type: text/html; charset=UTF-8
set-cookie: scribdvpdfssess=debc0vah8lvnj19fjc5ski6de4; path=/; domain=.vpdfs.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
location: /dokument/
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LOVEX7%2BRwWAjdrB00BdsFUTbudCtsPU65D6dbzRvZNq6GGUnqP0VPwjdf4XpC39%2BfK8Xf4HIY9fNHSlAbQh%2BaV%2BC9LXjRuPBGp9ZkyxdjgZy%2FUm4fD8rRlWTDgjvWR%2BUbUQr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fd31f058cdeb51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9ff321dba5f34d500a8f4a2ea4d3b0e4
cdn-cache: HIT
cf-cache-status: HIT
age: 48632
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7fd31f0e790f1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 48ce690e83fdc571d2f7fd617c2dfb73
64323ddedd153d7dcdb6a3a51f3c9f0dfaa803ce
274c166416d9423e3285ad737340c875c69efd1c66509c473d21f2351d83993c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Aug 2023 08:59:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type Web Open Font Format (Version 2), TrueType, length 14712, version 1.0\012- data
Hash 3afeae0d768769f5e5f30ac9805c5b70
3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d
0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:16:10 GMT
expires: Fri, 23 Aug 2024 15:16:10 GMT
cache-control: public, max-age=31536000
age: 236626
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type Web Open Font Format (Version 2), TrueType, length 14892, version 1.0\012- data
Hash 9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 07:39:48 GMT
expires: Thu, 22 Aug 2024 07:39:48 GMT
cache-control: public, max-age=31536000
age: 350408
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 48ce690e83fdc571d2f7fd617c2dfb73
64323ddedd153d7dcdb6a3a51f3c9f0dfaa803ce
274c166416d9423e3285ad737340c875c69efd1c66509c473d21f2351d83993c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Aug 2023 08:59:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scribd.vpdfs.com/android-icon-192x192.png
200 OK 15 kB URL GET HTTP/3 scribd.vpdfs.com/android-icon-192x192.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash f2294e51784deb608902690ca767cf88
b1dbae75d4d25dd111d5f4ecbb9b879c04ca2efd
b6edfb737d3d8ec5fea9f72eba2a7485718aaedc4528b66f6e000e9e16615e88
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /android-icon-192x192.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=debc0vah8lvnj19fjc5ski6de4; _ga_88CJJ1TFNT=GS1.1.1693126787.1.0.1693126787.0.0.0; _ga=GA1.1.1506810969.1693126787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: image/png
content-length: 14608
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-3910"
expires: Sun, 24 Sep 2023 09:47:33 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 170271
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ir%2FeYkpaHTXVrXsJsxSU257laQrLRGR9m9iQJRf4u2AljXtXnPVkMikXb%2BvfXPsGkMphYoqLcd4qFSwTBA2rUkDrXoQJHTc7oi%2BQ1IScMnKYfBNwlv6KfpvqTDqM8%2FOBMBii"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fd31f0fec99b529-OSL
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/favicon-16x16.png
200 OK 1.5 kB URL GET HTTP/3 scribd.vpdfs.com/favicon-16x16.png
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9e04892c5f2c0ae369413a9777302e96
9d0c66ab452e04973fb1730979434515ac4f48e9
b1e29c0b9fb80cc752e70d5519e372685d9a0ce607ba8bcebe13b2aa6f734a8d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon-16x16.png HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=debc0vah8lvnj19fjc5ski6de4; _ga_88CJJ1TFNT=GS1.1.1693126787.1.0.1693126787.0.0.0; _ga=GA1.1.1506810969.1693126787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: image/png
content-length: 1510
last-modified: Sun, 03 Jan 2021 11:16:10 GMT
etag: "5ff1a77a-5e6"
expires: Fri, 15 Sep 2023 14:44:21 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 930061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XpCueSyrTfsjOFaUOrcu3up7fBpVEkDdAMUpu3nndyWAJip5rKZ4SdRcBYLpipzYVPH8BpQ%2BB646x0WulfONLaluKiMP38f9N998v%2FrTEjfTKTmqQCHO8lZQlGBSY6tf2QCm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fd31f0fec9cb529-OSL
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
280 B IP
Hash 9aba67e10732634d5a82820faf03921f
1add906deca0c37c7df81c59db2b27cf7b4df18c
2418e1f8f83e21df9f6092d045a70e903a56d186bc19536dd633936591d9c36b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Aug 2023 08:59:56 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2023 15:45:00 GMT
Expires: Thu, 31 Aug 2023 15:44:59 GMT
Etag: "1add906deca0c37c7df81c59db2b27cf7b4df18c"
Cache-Control: max-age=370310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fd31f0fdb6c0b51-OSL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fd31f1008de1c16
200 OK 95 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fd31f1008de1c16
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash b7309a7f9c442b01256da310f21c1c04
ee4a7fdd3eb7e3c39adcfe7fb7527c194c00a23d
d39de4516857ed8190d18bbc46994214e94ad30fd0d67bd767533f08250c52fa
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7fd31f1008de1c16 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 7fd31f10d9811c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.a-ads.com/a-ads-banners/452146/728x90?region=eu-central-1
200 OK 34 kB URL GET HTTP/2 static.a-ads.com/a-ads-banners/452146/728x90?region=eu-central-1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://ad.a-ads.com/2102186?size=728x90&background_color=abbdff
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type GIF image data, version 89a, 728 x 90\012- data
Hash abee5b951901db7d5808cc14c1803f86
6abd0ca0c0d8ceba10b0105d92f54e3e32e0f9d9
df3f1522e3c1cfad89800cef7a2a5b3287cccf8efaf9b509153f5481a3bc5210
GET /a-ads-banners/452146/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 27 Aug 2023 08:59:57 GMT
content-type: image/gif
content-length: 34060
x-amz-id-2: oa6s9UbR06X1upwOMg6QGyq2rse+k844bXCrNLmTfBN5sJDayNIWgx2RBN20AB5vSmjL0igyi3o=
x-amz-request-id: Z20V8CXQDQ1X2KGB
x-amz-replication-status: COMPLETED
last-modified: Sat, 29 Apr 2023 12:10:47 GMT
etag: "abee5b951901db7d5808cc14c1803f86"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: 76whst7qvmX0l_vkmSfQJ7pFURrIqrZI
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb
200 OK 131 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 131 kB (130668 bytes)
Hash 15682100d41d0f3ecddfcf460a571a70
b045e11164601e1c5b28aa8190ec9a19b79492ee
9db46f7bedd0cba0d98272abae8cfbb6be61b2f688f835a03e026cdb9c7dac60
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 86dc2362f2027bb
Content-Length: 2243
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:57 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$zRX+m4ZuOy4F3MjOO+UZGQ==
server: cloudflare
cf-ray: 7fd31f134be91c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/assets/css/bootstrap.min.css
200 OK 167 kB URL GET HTTP/3 scribd.vpdfs.com/assets/css/bootstrap.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65184)
Size 167 kB (166995 bytes)
Hash 22f429a09e4df21a76606bb9abf6043d
6fd61e8119720e1117668b37f4e61e51be3ee12b
4ad19d5d7668eb40975d9ff8f9335571c3a03dc39278b0aadd97f39979db40cf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/dokument/
Cookie: scribdvpdfssess=debc0vah8lvnj19fjc5ski6de4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: text/css
last-modified: Sat, 31 Oct 2020 00:27:46 GMT
vary: Accept-Encoding
etag: W/"5f9caf82-28c53"
expires: Thu, 14 Sep 2023 21:16:20 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
cf-cache-status: HIT
age: 992943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rU84dBTFlMZZguumazo7fJ3R7X49oYnz2ddpjeX%2BTfJIb1TY94%2B%2BvxGF3jBP%2Bc9kmdJhf0V4RoCtpoUiDcjupKjyTsedZj6n4uRHrMkBmsr4jUV6CMiasveVHA1jVEXDdmr7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fd31f0c3f4db529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
200 OK 9.9 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA
ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT
File type ASCII text, with very long lines (10137), with no line terminators
Hash 15408dfe751cb9e47451aa3da1faf636
2c3660fb27f7dfb54cf39bf14f063fe24fcab529
1d799e4480b85e5c52fa8f544af846f4ae038df305a5c4e65812f101439c0b25
GET /css2?family=Source+Sans+Pro:ital,wght@0,300;0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Aug 2023 08:59:56 GMT
date: Sun, 27 Aug 2023 08:59:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6cf219faedeeb5fa58df4c5eec537e3c
cdn-cache: HIT
cf-cache-status: HIT
age: 1020833
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7fd31f0caf4f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ad.a-ads.com/2102186?size=728x90&background_color=abbdff
200 OK 12 kB URL GET HTTP/2 ad.a-ads.com/2102186?size=728x90&background_color=abbdff
IP
ASN #24940 Hetzner Online GmbH
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE
ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash dbdd8192b2687859cbce0a47fd64783f
49085b45a756b856bb7fa56288b0198d34b8cf1a
a122c53ce4c3eee224875e732ef73aab1ac18d0e0025dabf231f4672cfecf7d9
GET /2102186?size=728x90&background_color=abbdff HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://scribd.vpdfs.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb
200 OK 3.4 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3420), with no line terminators
Hash 5d0b885c2474f9fec93a9972b635013f
d42f0bd0f1c7eb9569a56f294fd7aaee01a3ee65
97f0ac1ca31dc1ef54a5ff0e290a04ab244483b1e494eacd8408e63b04ffe8f6
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1033611144:1693124782:YdAe8FYAjHPkJ0D2SWwQAVnMBrKbljXkzaR47nH3xCY/7fd31f1008de1c16/86dc2362f2027bb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 86dc2362f2027bb
Content-Length: 24951
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:59 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: qM13MXHbAgxuwRXJ6RVXrrqiWVoKrgQXDt4ItK6ZTBburx2a3nERaIJxcZINi3E68PJQPvJa437B32yxc7OTwQwdrpOgOYDnpTvGj4wIOsYYFKbvL0XXwy0Z4fRzuJqx$hT+eHPDXLnGmwt6jxfDt1w==
cf-chl-out-s: GB2HtR+YDyh0uDVvv0xZ8UD4qIuvhxElZd0Vn8jJoPcXqgNrLFmC7H/i4kFaph4+YryvX4iyNj9moGC9LFbLjIZ8GluS0+earmrhfqEFesZwV+XuVVX8hbXrhdfsKmrFTpClpLOUD+OaWvdwz6lExwlSzYPiyo+93pJqJLClEViaEfbKJoc3DrptLftDWpHM$vJGEHRaqKXR4EpnRyKiE3w==
server: cloudflare
cf-ray: 7fd31f1ebfbd1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/api.js
302 Found 30 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 27 Aug 2023 08:59:56 GMT
access-control-allow-origin: *
location: /turnstile/v0/g/313d8a27/api.js
cache-control: max-age=300, public
vary: accept-encoding
server: cloudflare
cf-ray: 7fd31f0df9d80b31-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js
200 OK 30 kB URL GET HTTP/3 challenges.cloudflare.com/turnstile/v0/g/313d8a27/api.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (29469)
Hash edbcde7402e6acb63167572645982f3f
1e2d65ed3606a7946422b3977ff79affe34fc16d
1ae488283b6cebf52b5bd97cd3dbe44e84ab7e87234525258a07e59a1904c2ed
GET /turnstile/v0/g/313d8a27/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scribd.vpdfs.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fd31f0effa91c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/7fd31f1008de1c16/1693126797333/51c34873f331e5bef0c1d4bc7e9d6319fa3ffe24c7b58922d9cf9638aefebe30/L2j7Sg1uEiqDPmt
401 Unauthorized 1 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/7fd31f1008de1c16/1693126797333/51c34873f331e5bef0c1d4bc7e9d6319fa3ffe24c7b58922d9cf9638aefebe30/L2j7Sg1uEiqDPmt
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/7fd31f1008de1c16/1693126797333/51c34873f331e5bef0c1d4bc7e9d6319fa3ffe24c7b58922d9cf9638aefebe30/L2j7Sg1uEiqDPmt HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Sun, 27 Aug 2023 08:59:57 GMT
content-type: text/plain; charset=UTF-8
www-authenticate: PrivateToken challenge=AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gUcNIc_Mx5b7wwdS8fp1jGfo__iTHtYki2c-WOK7-vjAAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=, token-key=MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAubOcoOBrr9fuRmfOIN88oLf5DWJ-Kf7SYvYKOhTPRuwObMOSsgyqAb4skMUBqCVN88HoYR_nt0QPDKWwJVyKA3tbmhfZZlvT3jJGSfrj8rHSJRKXSPiNk6AxZ_SD2IA8l5Ed7cRzNo_O44VBMwo-o3i0QYT5xzi4g8kPnGg4nwiaceoVk8g4PUUTAZOX4pKFjG4zIzVX2IkGtTyHm2gvoPIGEFugVWNUVfQyMRbnST7_5m9NW_gScfWf4--1U5EpIo9Oz-y1BsW5LDhCZ3AfRmB3y7O4aofDW6FM2G_90xj4h_pxLY4Zy2IyKUrLoq_rc9y55HnliRYkuN3KoEoynwIDAQAB, max-age=20
server: cloudflare
cf-ray: 7fd31f17381c1c16-OSL
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
200 OK 19 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scribd.vpdfs.com
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10506692
expires: Fri, 16 Aug 2024 08:59:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oYAEHjQlfTBOHivOqwH5HFeFNav1Yrp7bN2x2NV10eBO30UqQUbGARdAOfy8gegWBPMVA9Pp8C8rxylAe5BTRcnf3TRXmj2Dra1pK7nHQ7lXYXnCxGW4t8p7rvgMBwyILnSdP%2FVr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7fd31f0e599bb4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
200 OK 25 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
IP
Requested by https://scribd.vpdfs.com/dokument/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10966)
Hash 4cb486432c4e4e6ec252723496972b15
210dccc5f9d43f53daea3c718b1dee68e99761db
618bc082a4f62a788136f43d4e79ee323446d79b7e78bfff317c882a9045582f
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scribd.vpdfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:56 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7fd31f1008de1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/7fd31f1008de1c16/1693126797334/NVbTh8xqHSyjX4f
200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/7fd31f1008de1c16/1693126797334/NVbTh8xqHSyjX4f
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File type PNG image data, 75 x 54, 8-bit/color RGB, non-interlaced\012- data
Hash c7fbe822bf8d3dfb01c797802c6fec19
4e6a477d741647dc3b945e5239fa767be45a27d5
c6a39992defa2acb9edcfc1381b41caf7e9fe815d0dfaa1e59ef2fdc5a825e78
GET /cdn-cgi/challenge-platform/h/g/i/7fd31f1008de1c16/1693126797334/NVbTh8xqHSyjX4f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tz8sp/0x4AAAAAAAAwMKerMJvPIGU7/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 27 Aug 2023 08:59:58 GMT
content-type: image/png
server: cloudflare
cf-ray: 7fd31f1b6c3c1c16-OSL
alt-svc: h3=":443"; ma=86400
scribd.vpdfs.com/dokument/
200 OK 9.3 kB URL User Request GET HTTP/2 scribd.vpdfs.com/dokument/
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint93:09:B5:BF:B2:84:C5:CF:65:C8:1B:2C:FA:B8:0D:F8:DB:F7:86:D3
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9630), with no line terminators
Hash d2442d7c499b4dd9b07725a87c7d80e3
ca8c1211486bcb6f7a16ba4f02468bf1f0998249
248dfe301f85b6f1eb885113d7b689db7abe75ff4abcab610e78a31a1edd4a53
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /dokument/ HTTP/1.1
Host: scribd.vpdfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scribdvpdfssess=debc0vah8lvnj19fjc5ski6de4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 27 Aug 2023 08:59:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceF0heJiScZMtBynyk%2B69gxtJ6R0iYTaJcPEBzHGAEIgiqOD%2FPPHSPD%2F%2F78mrBqzWQEM4opx6w6fqtq0IgfHeQ%2BRbA%2BVhii%2FDUT%2BPgDpuFekcWVRYEv%2F8H7oshzb1gdQgc4s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fd31f08a9ccb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
188.114.96.1
104.18.15.101
69.16.175.42
136.243.61.83