| | 104.21.20.208 | 403 Forbidden | 6.0 kB |
URL User Request GET HTTP/1.1IP104.21.20.208:80
File typeHTML document, ASCII text, with very long lines (14592), with no line terminators Hash3b8fc6e8ba5b4d9505ba8c95b81f4e73 52354be5b4da1238cb6fbc66d268d55980f68742 e54e0dfb2886a38db0d022d4456baac78d56b16a463aa26cbc1d36377f6878aa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: lsENNXwE2MqZJT2RDGolmOmJuZDHcAjosmZ20MUB5yCIBvA+ZZmlK0txdhMcc6wAM0LR09efcGyz1/MMg5sH/bUAJs69FRRNpqZvFVTFe7mAKVYrGabWdaZxqsaRp2SX1afRpicIJtCzePaL3udvCw==$g6D3135yxuCX9ra8pqXfqw==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SUFDJBvNxJ%2BT0m5OwH9jtvPQ2UjC9izdeEeUnqTH19n%2B5OQ1RLwTaJbtHwzQJ5eY2iF0JwSb2sOmBtKK%2F4uHx07HZmkouLkhjY21zrtg2Hv224yo2f7jX5Ga0sBDEJmJeTrfzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab70c8f690b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab70c8f690b49 | 172.67.194.105 | | 112 kB |
URL pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab70c8f690b49 IP172.67.194.105:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size112 kB (111605 bytes) Hashe2da96c5704993da7a30a6ee2792ff40 0d30605639cea05167c19a049e71c2c556f5a1cb 740c199384e5898ef10600cb6757776663c780bfcf49eeff9130833c5deaf2e7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab70c8f690b49 HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/?__cf_chl_rt_tk=JsIHMHjZiILzkFfzE2CJZK3y0q_9N3c6tv0RVOHmh7c-1714849031-0.0.1.1-1557
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:11 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iluTmNTPL1RIJuABdc38AVqNtnzhOWBHdDgY3uO4xN%2FRwDGmsx%2F9PsHAiu55bM8YtzJMz1hMqUpaX%2FbJcTtgGon1Gyp2h2m6zBtb80sPAeN4tswektUV3sV2RJz7TalYZw3ZSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab70f0e950b41-OSL
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/favicon.ico | 172.67.194.105 | 403 Forbidden | 6.1 kB |
URL GET HTTP/1.1pl-aukacja1107.pl/favicon.ico IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeHTML document, ASCII text, with very long lines (14765), with no line terminators Hash55bddc8f57f25d22473f946cd1e9c9a0 4a677d83f1532d7a1ed05dae58f009037faf796f aebcaab573fac8de96bea9623bc4e0a9eee85cbb07e294140b56224eef5fc762
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/?__cf_chl_rt_tk=JsIHMHjZiILzkFfzE2CJZK3y0q_9N3c6tv0RVOHmh7c-1714849031-0.0.1.1-1557
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: Nx54JsE6XJESz+zN7bEQZRXi4ddDfqkBgWgII1BDqWlavRuOZ7AnNj7+aa+Qw+ZUAE9CM9yGWXbNN3kuH0K8fILhVbXcTUsuQrqKElDjQY2PMdP5iB2+cjhYfCFgr4nYO4LvXPEuvKxQzln5VJHqHQ==$TAHLz4DGlBWzrzc+uZQa+g==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Ps%2FPhZo%2BjJh4T%2FZ%2Bo5Za7pLM512K8VRJqyCS2Pd0do7taHuDmI1rH%2FSMT8oPcBRIn7lZTKpG6WDmkOp1cOilHF2%2FIzT6wsDYINbwa0wgiQPMhfJXWVO0ySdYDazhZp5ufX5Vw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab70f6f180b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/favicon.ico | 172.67.194.105 | 403 Forbidden | 6.1 kB |
URL GET HTTP/1.1pl-aukacja1107.pl/favicon.ico IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeHTML document, ASCII text, with very long lines (14657), with no line terminators Hashe495c821fc52bc937075ea7cdb0b6152 b2f037c96e06e257ebdb788750841eedd474554c fdbaf0d0dc6073f2843603a0bb93d2378bd4053c44f6ce9ff4afa4e2232265ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: OpuGjhANW6oK1Lgihe7gkSlxNKnq/1LkwfKPwbkDDJNxxSkj1Z11SLXJZ/FpfcbfEornPoLY4kdw3qyQ67iPSLgl6+o4qth5VT6J57HlyZSQPvtMKvnObUVTHmrKQLUPWJNv8tjJXNC7Bf2TBtpUBg==$XsGE6hbKgyNEe8y0GHI39A==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5oLEwrs3wBaHnAu%2BZMKvv8RAVYC%2FJyOMiRdNFaczlDSajaprcjo4o2TOSMCqT7Mzvwy4YTs6ry2TJSU2pN10Jqf2rGsOutC19L13MvEjhinH3IaUQB%2BoNTyJChFtAKakWlp%2FtA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab70fccf00afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 | 172.67.194.105 | | 12 kB |
URL pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 IP172.67.194.105:0
File typeASCII text, with very long lines (16416), with no line terminators Hashe0186b946a8f7af3c0d4d72eaafa41ea bfb3508c7fc0c00e57a9039351fa33ca06bc0b25 5c44193366b42165d5258f4e63435cbe5959fa746054a7deaf5538eaa50440f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
Content-type: application/x-www-form-urlencoded
CF-Challenge: fb9773d73e684c9
Content-Length: 1828
Origin: http://pl-aukacja1107.pl
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:11 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: KzvASlaP2SC7KYYgDwxp6g9M8gmFqTyvzfpw/e9o9+Dxwkp1mnxuZ+kj2MRq70cy$ndKRFUb2OSfZdDDFR34pfg==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ixg%2F%2BSG1aS4Hgu21VGrX8FjOq7wWPDNhvWRkqMr66WkpWrPGAzUkt4n0TQZxC3p6uvldztxqp0li7eTnGS4%2Byz2dLDITj6OPRXRsE0wezT4IsuE4gdCHazl2tjRcaSKT3csrEA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab710ffc0569c-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:12 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87eab712981a1c02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce | 104.17.2.184 | | 117 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce IP104.17.2.184:0
File typeASCII text, with very long lines (65536), with no line terminators Size117 kB (116604 bytes) Hash72b60a260fa9598a8464e844755f2ede e08df905e499d86d4bef4faa9e90bcb82580c376 d91983a01295cc2a8ed73e332c45a6262d047e36e08be69afab485354f56e674
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 6e74b7ce45509ce
Content-Length: 3481
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:12 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: ikcj4ZZe/qm+nN/uWsAURzitgx3EG7KvVGZDDa6hAPWOQSKwq/a/yxAmtfH8NsP1MroLEfuRviUcqIUX4YwchsrusrmVR8PyXHKjptvYHL0Vpb46nRvto1Nlr0SIaD1px2lbXoe/7iu87Tcf8JvduGyOnUf7wR2YXMyr3C5GPmMYbCqwNCsYBWUkTUZrETDf158sy90y2UA+iceNb4T2CdND3RIoB1lNFBFuT4erNPUMteXFsam8kEnV7WxUQd3gNuuuP79df7injoHGO0HDV8DDttJE6V8SiwZzJr+ZTnf5F6cTYLgUyULb9QyfsDUmhU4Gsc1lMIkD7w3PN1TAddS6NlXWIpBJquKCGM1U6/qD1UqF9MT+lBw4YPLab8aInlYluTc3wDH+9dRVkd3Jl/3tFXiKIeMhjLIxcGrFHZGYuumZl82OwDzRVY+MF4eEV0T3wOeQyZzGKmElZS8TZg==$CFrL/tUAE4Greztu6eW+Xg==
vary: accept-encoding
server: cloudflare
cf-ray: 87eab7146a731c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal | 104.17.2.184 | | 35 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (41702) Hashaadadd6cb71b9f6d46ffeaf9a85dd7ae 92adc941dbb0a92986e771686ae6cca6a127ca29 3453e61d4cd9a5cfe8fdf2b82ce6149512721ab5031c0dde89726ba932017540
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:11 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
cross-origin-embedder-policy: require-corp
origin-agent-cluster: ?1
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
document-policy: js-profiling
referrer-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
vary: accept-encoding
server: cloudflare
cf-ray: 87eab711df031c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 | 172.67.194.105 | | 1.8 kB |
URL pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 IP172.67.194.105:0
File typeASCII text, with very long lines (2328), with no line terminators Hash0becd5d0525f9f48fed12e9bdd329745 dfe37135c31567a81e5a61838631c920c231291c dfd4459959bf7a64961b9897d3d06d0e33448f407c219955b131f61b19eb92ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/740432088:1714847606:6MKU5PUSTZ9RZNELh8yUU0hFPorOJNVdr8iHOlXckqk/87eab70c8f690b49/fb9773d73e684c9 HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
Content-type: application/x-www-form-urlencoded
CF-Challenge: fb9773d73e684c9
Content-Length: 2501
Origin: http://pl-aukacja1107.pl
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out: uU4gKcJ44E97LPUbDjxixVNMX1TjFDfTQYUJ/6yNKVuPxObby4Tsuor3lCStOv0d2Vka3Bto8SVpI5jA6bDTgGEVxtisOAtHTWaQM9ENyjY=$9I4i7Se+fl4Hla7ko5ntXg==
cf-chl-out-s: edl/ssvr+7nTOzZL9oPtlQ==$Bx968vjqa9bCdrg5Ry+yqw==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OMhoMpW5U7Y5KS2Haf08K6%2F%2BK0Haab42VT4STp77Eq9ne%2FT0jWaKVcU75EvA4r638gyTTZbgqbq4FMokvBYbL%2FjW0sixNxTisQJq2jD%2FcVuuUwAwLrcOfSMCdqZBT0VSQJUXbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab742886d569c-OSL
alt-svc: h2=":443"; ma=60
|
|
| | 172.67.194.105 | 403 Forbidden | 6.1 kB |
URL User Request GET HTTP/1.1IP172.67.194.105:80
File typeHTML document, ASCII text, with very long lines (14635), with no line terminators Hash5b14dc43627eae47483033d47dfe50b8 85aaa87c31f070d3056e4814a33f5b8c447308d6 60bcc48a393c901b7fe2d0b57b5f01e0ce97b4a3188344ef5f3c2f70c23b8654
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: x4guh8RKWqnUxuR8+WQj0sSRLsWmSri0nMcV9wx1+IJdkl6BAlHm28Xdyl71tSvSti+bkJxmEiAtW2hg+2A7gIJz9Qptw9lKL2CRxRWTFzVnWZS/AprocgXUZky8ruJwkSHFrdPdDfZesYh7foOlEg==$VJfbmn284alkeBcKS3kU7g==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NUz1RJpojRfIv5p9vHOs1jCIYG309RHzKmw0OYHEltkeJgmLoWhZfBZbtFKYhyLIdGxP0x3vbsCpAoWPeQt0Q760HEFIKWH6yuDi7Rzh3BMlnStqTMJutUWQym6IGpOQL5yckw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab74f6d11569c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab74f6d11569c | 172.67.194.105 | 200 OK | 115 kB |
URL GET HTTP/1.1pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab74f6d11569c IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size115 kB (114751 bytes) Hash52721250168801397a1cb9a5bc0d4ee7 d9c91fd6f640d304edd603cfe1eb0bbd95f3e984 0df5971ccfe61ce5440c8adf3196fed87b26ef70b14db8d55555af9fb03405b1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=87eab74f6d11569c HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/?__cf_chl_rt_tk=RMw2sHKbeTU57y3bqbrMrOBQsNq1oRxD4PQbWFq73.c-1714849041-0.0.1.1-1557
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:21 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D9NKJFC106WxIsOn5JEksTriYn7S6%2FusR8wQPMhNsx9hD4mncUfmG9TmPdlHwOtSbT4OPq8%2FxbUkor4RP4qvWxvLlwd88RVOaaUPYERnLTc0LLj%2Bf4MuilrpIS6psUiihLReLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab74fbd8bb523-OSL
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/favicon.ico | 172.67.194.105 | 403 Forbidden | 6.2 kB |
URL GET HTTP/1.1pl-aukacja1107.pl/favicon.ico IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeHTML document, ASCII text, with very long lines (14786), with no line terminators Hashb79a9cc5c4686d9d6adbae5d2ad7c62b 9aebc5f692eb315e8fdb888032224adde29d27e3 0baa691a0719ae9c19929b867e68f55a15f0ed79f5950a1b4deffa3470334c0b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/?__cf_chl_rt_tk=RMw2sHKbeTU57y3bqbrMrOBQsNq1oRxD4PQbWFq73.c-1714849041-0.0.1.1-1557
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: CjN9sK7/oD5k5BI2FeKSLDjU2EVLzjCGqUNuKt50Fjp6KMAbxK0jsZ7k5f0u/hOv7bp9tXWiwMGD7uAiodUyLMOgBCLQx3gizfeCTcgnu7DMn/blLvt/rT6b0gswZxHgTloS06gDxmzaZYE1TCEPdQ==$0nfypmXxg7I5TmRsmrJdgg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5l%2FndoXfnpAvBXAOIqlwtWOL%2BWMwXDjvfjHy1ejkPA05sLO66IMrWeDN1q%2BC5SnCvBTsBTYuMcsUT3zH1RIonVI%2FmJN6SADUDWIxeTnIiFbWriHzBrH2K4sUurbFmUc7%2B3Q%2FFg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab7500e0bb523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/favicon.ico | 172.67.194.105 | 403 Forbidden | 6.1 kB |
URL GET HTTP/1.1pl-aukacja1107.pl/favicon.ico IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeHTML document, ASCII text, with very long lines (14701), with no line terminators Hash386187857434543fd1f9295370c6af0e 12e87059e1d8819e8212c95a320dd064513fad0f 38a5ee2d66a94cee1491b1a93b255ef19e050a82db503d85f4966bd89109b193
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 18:57:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: +qJC6HhIGjSjYrO6KchHwvUg/7HRcsU6cv8rm39jdgqfcMsOQlb3Veh9fWGS71zh8/AWdnLWvG8ylqha0CNCUgjXRGuIP/ngO4WunoOn1WEURph0Puk38gXQ/KOsu/XImInKjK9Is5s3Gb44NjvYJg==$Z4AFZ7otq4JTh4d1T36qCw==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yV8DFvfL9Y6pPUEfUKriyOeM5c%2Fs76HF2ztZQR2mwr60LjchURCGtV%2FxWLg7bo92GB0Z%2FR0L3Ej2m7fI%2BVVh6emaRGTFrNC7MukDgyF9y3k0EdG3cAB2%2F5OQmVSldkdwt67fWg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eab75079f956b7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 | 172.67.194.105 | 200 OK | 12 kB |
URL POST HTTP/1.1pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeASCII text, with very long lines (16400), with no line terminators Hash630ef8497d5614be2f5c4930637fda13 f24f0381c142bb45f8f5db89c3dfdf5b256f80c8 51f5612222ad01ea35fe8b9d181a3d803075205297ebc7e4a73295bb8aec6d81
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3d1744fcac26425
Content-Length: 1831
Origin: http://pl-aukacja1107.pl
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:22 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: Ea6YBJdzWvHzCCirIxWGK1uexkXvCCmRIv7xc2ujB7yhI6IW65S+iaU1ZWujb7vd$xfJnDEgDE8Od2Ts3LNNBjg==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6ylFmd%2FB26NlB5todFnlfyOenhIYwbPgpKoEUyPt1lsAVBN3mo%2BncdC0hNqvXs7yynbby3GOF%2BIJszH0FyXNQprzjNkh5A3knAC7uKJ3fn311Dzq3rb%2FQSyXMIUecpkkOmFgbA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab7513bd05697-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ztniw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal | 104.17.2.184 | 200 OK | 26 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ztniw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal IP104.17.2.184:443
Requested byhttp://pl-aukacja1107.pl/ CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hashbbaef17da40ce0275294e56390e54ba9 deb500f7e8bc729eef55308a45a3284ad020b287 242c892113bfaef164c78ec8109fc82003e536623508ab93895e65e0a5f1ab28
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ztniw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:22 GMT
content-type: text/html; charset=UTF-8
document-policy: js-profiling
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-embedder-policy: require-corp
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 87eab75219131c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce | 104.17.2.184 | | 32 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce IP104.17.2.184:0
File typeASCII text, with very long lines (22312), with no line terminators Hashc156f8926df75f84166916736a8d639c 25bf6102a05ddf179fb6c4c791439f20fbbae0ac 4ba58a73854f0260df6bd5ed586812e39b91d8bb77fc09ea2901b2d080e7c1f8
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/984052975:1714847500:N2A9UZV8wuYdzzxqTGhrb9jzzKX_hUpj9u8xtQxHvss/87eab711df031c02/6e74b7ce45509ce HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b0rrq/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 6e74b7ce45509ce
Content-Length: 27540
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:15 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: IEYok6+ZD9vvfPZUCpo0A67qOGvO0JrSjveiwW+VxG1vuLndc1xnLsK8WbWqDStC$EhD+yr/Mwp25wyBiDJ4/ng==
vary: accept-encoding
server: cloudflare
cf-ray: 87eab7264df31c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87eab75219131c02/1714849042769/6ZCBbpsd6j4asYS | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87eab75219131c02/1714849042769/6ZCBbpsd6j4asYS IP104.17.2.184:0
File typePNG image data, 7 x 38, 8-bit/color RGB, non-interlaced Hash70504b630fda632adebb26174fc24729 a59f0856d1aa292c7c49fd3fa5785035dc64b613 49195f6e99f3b759d8c936fdbf8302d696bf40139548521e89adf34c2a00005e
GET /cdn-cgi/challenge-platform/h/g/i/87eab75219131c02/1714849042769/6ZCBbpsd6j4asYS HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ztniw/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:26 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87eab769efbd1c02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 | 172.67.194.105 | 200 OK | 1.8 kB |
URL POST HTTP/1.1pl-aukacja1107.pl/cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 IP172.67.194.105:80
Requested byhttp://pl-aukacja1107.pl/
File typeASCII text, with very long lines (2328), with no line terminators Hashc8674d44d95408ac5a9f3acf8b69fd21 2b211da6edbeb0842c332a58da071ffc215376c8 6c20d4dd1cf35f037db3cacd3ed6febb7876cdf5dccaf4a3f845d80b95646cc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/172950111:1714847562:fcQLsJ12gu_-3UAZ4XvDJI88UvNTHP6LVHoKdzjik_U/87eab74f6d11569c/3d1744fcac26425 HTTP/1.1
Host: pl-aukacja1107.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pl-aukacja1107.pl/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3d1744fcac26425
Content-Length: 2501
Origin: http://pl-aukacja1107.pl
DNT: 1
Connection: keep-alive
Cookie: cf_chl_rc_m=1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 18:57:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out: x7gaEpxgJP9S3XJgysCf4FR7PqkGK85X9RHuiAy6KEXosGYBymCjr9dJE8/bwEd1OlT10N4p1HQvI1iPe25ac1jHVmDgTEho31he+nsQQ50=$n5Y/q8iHEh6THU4I1UKrpA==
cf-chl-out-s: lgdD20XQF1BemhTcxaQFDw==$fIvVtkdrj5ynFXp+qWIRvQ==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B1u6gizEhDxuq4gW9JawnXbKlhf36%2FndtO%2FU6542GxV%2B%2FG08DjPQKFDmNCj2gkKQ1WjJ9aWq7zvohgsBW6UDs%2F3etJ%2Fs%2BiCpYb%2FSzhIbuhwrcSjugUT8%2FHej22pJGPV%2F2raw8w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87eab78bdba75697-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js?onload=XagHGl3&render=explicit | 104.17.2.184 | 200 OK | 43 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js?onload=XagHGl3&render=explicit IP104.17.2.184:443
Requested byhttp://pl-aukacja1107.pl/ CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42565) Hash65b0a652c40c95d12c4ddb3b4567c1ea c654efa19d01d6553ed4e0f500d350011e023ad1 c6b5cd0b65ebbb519dd845ba2979b40e58b056ca2c90f67a8bfea871d39615a7
GET /turnstile/v0/g/d0ff3ebede6b/api.js?onload=XagHGl3&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pl-aukacja1107.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 18:57:22 GMT
content-type: application/javascript; charset=utf-8
content-encoding: br
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
cache-control: max-age=604800, public
access-control-allow-origin: *
etag: "30103b4:a646:662910b6:0"
vary: accept-encoding
server: cloudflare
cf-ray: 87eab7507efd1c02-OSL
alt-svc: h3=":443"; ma=86400
|
|