| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=92fb4f996c6356bf&lang=auto |  104.18.94.41 | 200 OK | 122 kB |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=92fb4f996c6356bf&lang=auto IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size122 kB (121463 bytes) Hash9d015c86bf40eba461ae57603d0ae539 d4133b6e9265b4c221687a6a0f8882e55bcc8b02 b71c320ccb85cc1a254804088b457c4e12b83bfe3a311c57496720d6b0c23039
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=92fb4f996c6356bf&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:12 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 92fb4f9aff6556bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh | 104.18.94.41 | 200 OK | 229 kB |
URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size229 kB (228960 bytes) Hash6365e88349d16f9a236795cddc318652 faad4a8c9dba5e4b60cfd573fd7cd7968fdd66c0 751fd58de5f5eddaceafc26006854e056173fbb1e6e580771911b2d23fc14958
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 3931
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:12 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$5lRMaea9OqSPFMNk13mrUw==
priority: u=3,i=?0
server: cloudflare
cf-ray: 92fb4f9e7e3156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq | 172.67.184.84 | 200 OK | 4.2 kB |
URL POST mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq IP172.67.184.84:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeASCII text, with very long lines (4200), with no line terminators Hash58590bf596a2e1155ab4cd9f42236af3 867cdc0ab564e1cf5395ad3826f078735809975c b4acae24fc386e71de2829ee458f95acb1deb64c58b3ba2322c42a7e9adb26a8
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe
cf-chl: 6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4496
Origin: https://mrucznik-rp.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:26 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kb%2FKs9aSfkkTWg%2Bp1lXqfCTK1DVYBhNEEMgYqzyh3Cnq5xs02qjxLvnotfwY%2Bwl0tupWFJFI2SJVPc7c%2BWDkl6QrdNnDCKbWg09OHT%2Fw6g%2Bh9qFcjMXnZ7GcAtP6GphbTA%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-chl-out: qxL39jIuA07wJ3NqLeuDoq0xeMH9rkyH+33h7X0orJGLYfEYsCWsKOd0FuE34UGtwz+5CXrWV6+trAM2sg+vkA==$mMwvoIDq8pEE8Oz3XLXGOQ==
set-cookie: cf_clearance=X9H3RdXW8xokoC_nWFeyQFvXOq8jjdeEusP1dMiLw1Q-1744550966-1.2.1.1-CTT0HIFYdnbEWpzKyr14K1hINgrd7z6Rybu_eefOkjQCjL9La9FBBfN3H1sf36fIfbpM6OUIVoBRgTONWzkqayTNBXjyY6TAEidoE_OH3HSquB_4aeru0ny_3_hzTQoe8ibKbwfyjkfZsRA.tSHSDfbICW6rr.n0Pr7ijFKbFQyTsDExoCwvo1YAinbOTKhQDTHeFsrz0CUu.aGraA0IAzzE3deWn6RY7n8Bsrah.mgQLcFRm_99qPKrt1CNES5pu16cN4FPjTnhmAU2ALl8sne9lUGejSvqqjcpUmZxdnfxHwU952CKBzBhTwGftYgwkOrg8nRbDwCqwr_XPOg6WLZmatFMvzq.mkYWarJ3xnaO4ldUWvt57uhDZHy3zy7z; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=mrucznik-rp.pl; Expires=Mon, 13 Apr 2026 13:29:26 GMT
cf-chl-out-s: /qLJzSGtHin2YDUXbwko75i9ytvW9jptQVmPqrkja+plC7MZU9QPXgp8uPJYLW7XaHYKZVec4kMfBbc66kywTfBPyFaNyiXGiwB6wMtVaiP/kVGhk7nlWj3FgWdz+aA/OszB3v4+WoxnsRPG8YbE0whywE6bDY13ECnnCef/wSptSNwatjSbCdF9+2PhqMLnLFlEDxcqJvUd9rS/J4+a4eMWZ05xT7/SF+1SaBVNJUnF+dQaaD+tTsLtT86+UViESesXP41WtUkxg9OsVSpjv/UiOq4ey6vIrWcdo+rTovQp0iuBgDicdZwEZC6BPdHsl17Okr5VKl1uUy08TL4rCw==$+w4WWGkv+eplHyzFRo3Y9Q==
content-encoding: br
cf-ray: 92fb4ff37be556ca-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=16055&x=16"
|
|
| mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=92fb4f92b8d356cb | 172.67.184.84 | 200 OK | 99 kB |
URL GET mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=92fb4f92b8d356cb IP172.67.184.84:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash06c277805763f28a653892331d858eff 08435cb3815cd922ba6453a9503d7bc430d21c7d 2881757f161077f74f84b609357c46697f892b42216cf3896a95c7a0da58bc9d
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=92fb4f92b8d356cb HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe?__cf_chl_rt_tk=mZvkSOrCsaZ_2ClKhAQOMSc_Ukz4t4vkkr.2GyPBoeY-1744550950-1.0.1.1-Yh6GQM7.vDjUngzqv_Y7x6HUYQ_eN7.ni3L1Owq67hc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hTC5eKKUwRM1b8AfAEEtn3WMBB3pmpEySSb5orkFdCyvy62%2Fh4Wh0sSbYT%2F9FYY7GgIExlLAace7hz2531jJEavcLxdYRuzMv%2BrB8HQ6F0VOmjdvFvF0va%2FBgSgJdqeViw%3D%3D"}],"group":"cf-nel","max_age":604800}
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: br
cf-ray: 92fb4f9478a356ca-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=628&x=16"
|
|
| challenges.cloudflare.com/turnstile/v0/b/580ba44007a6/api.js?onload=cvpQy6&render=explicit | 104.18.94.41 | 200 OK | 48 kB |
URL GET challenges.cloudflare.com/turnstile/v0/b/580ba44007a6/api.js?onload=cvpQy6&render=explicit IP104.18.94.41:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeJavaScript source, ASCII text, with very long lines (48122) Hashd00e161860ff36cf8482d4768e280cab a6d5b477886524767e67d3edee385cd2c9f41a54 ca540bf2ebcfb08c9c8c92512c58707f1a62a572efd7ac409cba2229b55f012c
GET /turnstile/v0/b/580ba44007a6/api.js?onload=cvpQy6&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mrucznik-rp.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 04 Apr 2025 13:58:27 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fb4f959fb7b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mrucznik-rp.pl/favicon.ico | 172.67.184.84 | 403 Forbidden | 6.4 kB |
URL GET mrucznik-rp.pl/favicon.ico IP172.67.184.84:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeHTML document, ASCII text, with very long lines (6407), with no line terminators Hash38caf1d9f43ebd34d97ecefaa1cd64d0 4962c173170183fe5beb2eba075d870a2c91958e 10a37d2bc7f3512876686d2f5de6b5eed07713773085c0181854eddc349bbd6c
GET /favicon.ico HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lUr31EXXXi%2BcevFI4hw07nU8BAyosz8ewDkmlxdLh6CXGyH1rRtYX3QfS9YFXPGDTOc4cpS6hQxYji%2FjkvNsevO9IE4UZ%2FFAPGh07ZRqbtfJrmVe96cjTi2%2BPLULzSKGmg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="92fb4f95690656ca", cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=753&x=16"
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-chl-out: T0CA5GPRSpuSYfYTv9KTAb0KjkTcfVTvSVBvCmRJ6wgzkehhbG/4ow8RbwgiuXynG0/dNSZR3909MVIasXGRE1GvIwxwWmoGbJafXP8bkPOlrLHcCm53UGNlliO92AmFA2XQ1IZtI0p7Wa4C45RERQ==$R8/mnIFU10CFYLK6WeBxTg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 92fb4f95690656ca-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/92fb4f996c6356bf/1744550952772/dd1260aac12b98446cd327a450492910364d837bc83d9f74971053369182b526/kn-b6KA6yjKs_Aj | 104.18.94.41 | 401 Unauthorized | 1 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/92fb4f996c6356bf/1744550952772/dd1260aac12b98446cd327a450492910364d837bc83d9f74971053369182b526/kn-b6KA6yjKs_Aj IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/92fb4f996c6356bf/1744550952772/dd1260aac12b98446cd327a450492910364d837bc83d9f74971053369182b526/kn-b6KA6yjKs_Aj HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Sun, 13 Apr 2025 13:29:17 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g3RJgqsErmERs0yekUEkpEDZNg3vIPZ90lxBTNpGCtSYAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIN0SYKrBK5hEbNMnpFBJKRA2TYN7yD2fdJcQUzaRgrUmABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIN0SYKrBK5hEbNMnpFBJKRA2TYN7yD2fdJcQUzaRgrUmABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApdfJOCmmV2bSlh6nChLGapFSo88StypCpt1AQfbAJj8fqVBHhAw4VYNLUoqeDDC9vZnyhuQ7b7IcuT7_sDtj3LKJ6ssOG9q1GovjbH3ZjeL7KNmfbu8LMvGnPFy7qwIfGVfW0nHa1fOpkJ4eR4x5QgXB-XWU73m58kp2ZVTZSAA-1_27bIbqkY6sRVebtqBQTryTYS2kOot9b45LqOTJh0O-hJocxVSnkcaIXrf_wdbRyRy3SVKij2v_Kj8fatopaIs9rH7SyaJ6yGCU0FClhiKTpLgmaHYsGRPwtXzEWg4QjG185nGarn5gENDX-IU2ylRTEyyy3dSneYeOExB2MwIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 92fb4fbe2e9956bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe | 172.67.184.84 | 403 Forbidden | 8.0 kB |
URL User Request GET mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe IP172.67.184.84:443
CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeHTML document, ASCII text, with very long lines (8048), with no line terminators Hash7e9ee65a6c775c7814408e6a3d6d8b44 7db4440f5e944cfdd9da62434e16c70524ff0fd7 e5285571048f9cf202d4272179251d41de21587a2a4a68dab468921ab60e8f77
GET /public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 13 Apr 2025 13:29:10 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-chl-out: K1cjZwJ0ZTYEiPu8eBi3sxB4Ff/3VhvXphyOxD0N1BeEi2q+h3dLwdiwM2W7+YkzEVDNYBUyLBBmTY5ocU8LMo625JBciZ6F7B+airTdkq0a9iYcS+GG1129tGyPgTsJsCBWyibHD2lWnY6IDVxcTQ==$BUP3by63ckpbN3AHHbolfg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3IHpupym8JNxKZaZMX6SyTkwYXjlZ4BhS8zRTO5O2QV%2FGiwXEcnSkB0fARbxFG864Xda%2FbHtKN1xTy75RtL9dCsBnbQsTSGDDwbDQ8SsatD86mymfw692CwBv1V30VcaUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fb4f90adf856cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="92fb4f90adf856cb", cfL4;desc="?proto=TCP&rtt=634&min_rtt=478&rtt_var=364&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3280&recv_bytes=1284&delivery_rate=7607705&cwnd=238&unsent_bytes=0&cid=b963455f489e6706&ts=36&x=0"
X-Firefox-Spdy: h2
|
|
| mrucznik-rp.pl/favicon.ico | 172.67.184.84 | 403 Forbidden | 6.5 kB |
URL GET mrucznik-rp.pl/favicon.ico IP172.67.184.84:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeHTML document, ASCII text, with very long lines (6535), with no line terminators Hash2412177bbe904fb115587fc9862e0ec7 12aadc8f3369d19bfe41af669066a4cbe95f1887 57a8d902e58c1be1cdbe3dd0c92ea2566eaa6866000856da20794fbb4bbe9f5e
GET /favicon.ico HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe?__cf_chl_rt_tk=mZvkSOrCsaZ_2ClKhAQOMSc_Ukz4t4vkkr.2GyPBoeY-1744550950-1.0.1.1-Yh6GQM7.vDjUngzqv_Y7x6HUYQ_eN7.ni3L1Owq67hc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BqkHLADliEgEJJsYO9Xc4Ril4tKfnyEP5fHY6uyV3kMnfxIyRwLomOD343VuEgVE1riwldwgKxla%2BAHk%2BGddn6OSk%2BDpe9JO7JqRolqtzbulshcY4BqLzTSFYWea3ljWKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="92fb4f9518e556ca", cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=701&x=16"
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-chl-out: z2CEUHaKkKW3/5JnUOEUCWeA4iutJMCwqBDaNkD5m1niGGt+RY57XZ0/eUHn8If/ObSWU55NnnMrcS7PvobaC/z2UeJlxzOtaYzaRYL/YIw081OXTJ31HqeZulIMRhUK39FMkyN/gyvFC37xRcjf2A==$/hiiHfVctWU/2IDkqXHtvw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 92fb4f9518e556ca-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 | 104.18.94.41 | 200 OK | 61 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1 IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:12 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
priority: u=4,i=?0
server: cloudflare
cf-ray: 92fb4f9abf0f56bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/92fb4f996c6356bf/1744550952760/OlMnvR-wDfxiuM_ | 104.18.94.41 | 200 OK | 61 B |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/92fb4f996c6356bf/1744550952760/OlMnvR-wDfxiuM_ IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typePNG image data, 57 x 84, 8-bit/color RGB, non-interlaced Hashf76d58d0f7971adfe4a5cb59fc3d2e73 07b16cbf1fa314c2d0bb0b02995c3e53d0690f08 d51c4f6303aa9c6d90166c3cbec277084f1851d39ed5d9745697b5333ccd0452
GET /cdn-cgi/challenge-platform/h/b/d/92fb4f996c6356bf/1744550952760/OlMnvR-wDfxiuM_ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:15 GMT
content-type: image/png
content-length: 61
priority: u=4,i=?0
server: cloudflare
cf-ray: 92fb4fb06dfb56bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe | 172.67.184.84 | 200 OK | 24 MB |
URL User Request POST mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe IP172.67.184.84:443
CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typePE32 executable (GUI) Intel 80386, for MS Windows, 5 sections Size24 MB (24396480 bytes) Hash840cddf283e792b2839ccc15bbe7a6eb ad8d803ffcf0f40241e267b3d1238e753b7f97ef 88fb5fa574a7609564181ef982cf5d7686a19c7a6f6f837c583e61ee6874c69c
| Analyzer | Verdict | Alert |
|---|
| YARAhub by abuse.ch | malware | Detect pe file that no import table |
POST /public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe?__cf_chl_tk=mZvkSOrCsaZ_2ClKhAQOMSc_Ukz4t4vkkr.2GyPBoeY-1744550950-1.0.1.1-Yh6GQM7.vDjUngzqv_Y7x6HUYQ_eN7.ni3L1Owq67hc
Content-Type: application/x-www-form-urlencoded
Content-Length: 3950
Origin: https://mrucznik-rp.pl
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=X9H3RdXW8xokoC_nWFeyQFvXOq8jjdeEusP1dMiLw1Q-1744550966-1.2.1.1-CTT0HIFYdnbEWpzKyr14K1hINgrd7z6Rybu_eefOkjQCjL9La9FBBfN3H1sf36fIfbpM6OUIVoBRgTONWzkqayTNBXjyY6TAEidoE_OH3HSquB_4aeru0ny_3_hzTQoe8ibKbwfyjkfZsRA.tSHSDfbICW6rr.n0Pr7ijFKbFQyTsDExoCwvo1YAinbOTKhQDTHeFsrz0CUu.aGraA0IAzzE3deWn6RY7n8Bsrah.mgQLcFRm_99qPKrt1CNES5pu16cN4FPjTnhmAU2ALl8sne9lUGejSvqqjcpUmZxdnfxHwU952CKBzBhTwGftYgwkOrg8nRbDwCqwr_XPOg6WLZmatFMvzq.mkYWarJ3xnaO4ldUWvt57uhDZHy3zy7z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:27 GMT
content-type: application/x-msdownload
content-length: 24396480
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rOYmycayEPWnIFgmwEUaHA%2F8v3Q%2BALR4xwc0aVngbA5FzIfR%2BQTvWNGEprBp5QeaNi41bAJrxnpQL8OputvF%2Ft4q%2F59%2FGDWDQ6eNOz65TlTMqFyQp3THxmIzegcmw83mng%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 11:04:50 GMT
etag: "17442c0-67f7a5d2-b0f3943b3bf5b7ee;;;"
vary: User-Agent
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: no-referrer
feature-policy: accelerometer 'none'; ambient-light-sensor 'none'; autoplay 'none'; camera 'none'; encrypted-media 'none'; fullscreen 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; midi 'none'; payment 'none'; picture-in-picture 'none'; speaker 'self'; sync-xhr 'self'; usb 'none'; vr 'none'
content-security-policy: script-src 'unsafe-inline' 'unsafe-eval' 'self' data: https://www.google.com/ https://www.gstatic.com/ https://www.google-analytics.com/ https://www.googletagmanager.com/ https://www.google.com https://maps.google.com/ https://*.gstatic.com/feedback/ https://maps.googleapis.com https://ajax.googleapis.com http://cdnjs.cloudflare.com https://cdnjs.cloudflare.com https://js.stripe.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.google.com https://www.googletagmanager.com https://js.stripe.com; default-src 'self' *; img-src https: http: data:; object-src 'self'; frame-ancestors 'self';
x-powered-by: Ekipa forum
alt-svc: h3=":443"; ma=86400
cache-control: max-age=7200
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 92fb4ff6ac3056ca-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=16500&x=16"
|
|
| mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe | 172.67.184.84 | 301 Moved Permanently | 7.2 kB |
URL User Request GET mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe IP172.67.184.84:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 13 Apr 2025 13:29:10 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 13 Apr 2025 14:29:10 GMT
Location: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zwh7GzzWaL7oZjjKqejjb8zQV5QnRzF2ETVJnvyVt7a%2FCr9Bxfox6X1yxJYp8ruinFSVqGztmsJVKajHmDZGHtKmQXYCMapYeUmV1mFsmgPAvPn3JElO7bmLjfv9gkO6Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 92fb4f924bb6b51d-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=518&min_rtt=518&rtt_var=259&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=443&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
|
| mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq | 172.67.184.84 | 200 OK | 17 kB |
URL POST mrucznik-rp.pl/cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq IP172.67.184.84:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeASCII text, with very long lines (17052), with no line terminators Hash5a1b53c108692f6cfc9c559eef852d1b 15d907484df44a10ff6509ffed6889db9d4cc6d8 610d1b856c2b9ad4c0e229a744660d1d97c30b0ce377228ffd73cd02bf8ac93b
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1650278674:1744549806:tSbWYQLL8jkfrLMv1sYaHLi9s-WSKCAldLO9jTtd81w/92fb4f92b8d356cb/6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe
cf-chl: 6MD8dJbTxse_2GmitA6i3WDjqNmlB__StA_7IAe3.mg-1744550950-1.2.1.1-yyTpkaoQBx80ozaktJPgw8y4wl9omRg6QVV9Skd0YIFj7q.wSWmvbe.xY7aoZslq
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 2240
Origin: https://mrucznik-rp.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: text/plain; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G5Dfx5uRRWhVKQF2p%2FWkqAvK7EpSXjPkXfsXQ8BznEBKMsIk7UPMomIkJsAHx8o8FYHYT3JeN9FcTKXFfgIqZ3uz%2BS9D9pUJA%2FKruL44QFVfgV35k%2BtW38f79S5IKdnIag%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-chl-gen: V2kDw4Z/qFLhUXaOJMsgGq/hjvfXyp4gZT76dEhRlo4=$zdLhgHxOjLfG7hRvaV9Irw==
content-encoding: br
cf-ray: 92fb4f97392656ca-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3238&min_rtt=719&rtt_var=1420&sent=122&recv=180&lost=0&retrans=1&sent_bytes=9732&recv_bytes=10279&delivery_rate=1482&cwnd=12000&unsent_bytes=0&cid=93c91c60df7167ce&ts=1062&x=16"
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh | 104.18.94.41 | 200 OK | 28 kB |
URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeASCII text, with very long lines (28204), with no line terminators Hashd2dc6c9ac0be484dac670e3112321ffa 774ef6325c9eb82d26e3ec6cb8bc7b1739228988 105a9b83c9edb79b12b02477723da7c33e346dc9f4d7a3e524425623488679ab
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 34344
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:19 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: yE5FKBPy0kNqY3Yu1XG9YnXuhCYI3w78X3CNBa9bP/CxrG/eX18J6NHOESDeRJlh$QCAFV9Eo3w98vepM8r5gfw==
priority: u=3,i=?0
server: cloudflare
cf-ray: 92fb4fc72dc456bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh | 104.18.94.41 | 200 OK | 4.9 kB |
URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh IP104.18.94.41:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeASCII text, with very long lines (4864), with no line terminators Hasha8bcbb8d79b8609995920056a49fdd16 c1a411eac59bedf72506e8a53c2d424ac3f52c06 8f401cad345d1d5a1c56f1fcf51bfcdc827a86bcc1999d5b2c9abbf57405e095
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1371783535:1744550005:jglTgn5jdBAZ1w0kgymD8THg3sfJ8xzhT5uuN5AjFTU/92fb4f996c6356bf/t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: t5nRk3B_aU_uDuv4seMlB8nrUYeRiFG1O_6D7goXdYQ-1744550951-1.1.1.1-nCGUd4V.uu.gXN17JxMP8HkDAToa3MZvFgNb9a1YXlurrBbmOO04aVBf1SX56OOh
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 44895
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe | 172.67.184.84 | 403 Forbidden | 7.2 kB |
URL User Request GET mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe IP172.67.184.84:443
CertificateIssuerGoogle Trust Services Subjectmrucznik-rp.pl FingerprintA2:8C:76:5C:FF:E5:16:C5:4E:33:99:43:C3:A1:29:69:59:69:B5:73 ValidityWed, 19 Feb 2025 07:48:41 GMT - Tue, 20 May 2025 08:45:44 GMT
File typeHTML document, ASCII text, with very long lines (7152), with no line terminators Hash42a51577333ee0e82b2c9a83bcb51b64 bdcb0c8b8688b15cad299fa5d20cd6424ef3cd0b b17cc09e646b30975bbcd400bbfe183e1029e6cde714c153079a3ccb89cfc0ce
GET /public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe HTTP/1.1
Host: mrucznik-rp.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 13 Apr 2025 13:29:10 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-chl-out: jk/bwuwtzIH2PTskTOxhRfBeq2VjoK3i3CI6bihA/KaVOeA7zIks4TLVxPXEgzZU3mj/ndIIPl5VAl/KL2eDblZIAHaxazA6Iqnq7iFFt4tkdeUPV69dUTzJi9fKMFpCYDqJY7pJQfnpTCBp3lRlfQ==$OlJ48GRtXgJJ+aw6H+/tqw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UFQ35PwFnjoDashN91g%2FaUNJH1RR1lr81UoI%2FOcaeKykDJjTgHquAh28e1mlTeLGrzbJ2oCjcibfwQcBmbhFDwub5n7IrUDMtYTvdeudoqQmGQt86q3SCsgkEMLDZRtnMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92fb4f92b8d356cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="92fb4f92b8d356cb", cfL4;desc="?proto=TCP&rtt=1757&min_rtt=478&rtt_var=2383&sent=14&recv=13&lost=0&retrans=0&sent_bytes=10294&recv_bytes=1383&delivery_rate=7607705&cwnd=241&unsent_bytes=0&cid=b963455f489e6706&ts=368&x=0"
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ | 104.18.94.41 | 200 OK | 28 kB |
URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ IP104.18.94.41:443
Requested byhttps://mrucznik-rp.pl/public/samp/sa-mp-0.3.DL-R1-2-MP-install.exe CertificateIssuerGoogle Trust Services Subjectchallenges.cloudflare.com Fingerprint48:58:3E:CE:54:27:56:6B:A6:33:D4:C8:4B:BF:00:0E:BE:61:60:28 ValiditySat, 01 Mar 2025 17:19:38 GMT - Fri, 30 May 2025 18:19:35 GMT
File typeHTML document, ASCII text, with very long lines (22054) Hash9e478b26025174fbf5949609fdf18168 90a0a75f970daa36dfc144820988dd6558825c02 7cd6c6c5cae3dc39e13ce82cf6ce9a1f7d187bcc08c4b2b6b52d9b1dbf5873e2
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/mm3zr/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 13 Apr 2025 13:29:11 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-lTKfQKWwqR35NuBN' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 92fb4f996c6356bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
0.0.0.0